CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2026/05/26 12:56 p.m.•45 views

CVE-2026-48131

CVE-2026-48131 concerns a VPN service handling of an unexpected IKE fragment value received on UDP/500 during early connection. The connected CVE data from CVELIST explicitly identifies the root cause as a Heap Out-of-Bounds Write via Sequence Number Zero during IKE fragment reassembly. This issu...

8.1CVSS5.8AI score0.00024EPSS

RedHat Linux•added 2026/05/26 6:51 a.m.•6 views

gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly

A heap buffer overflow vulnerability exists in the DTLS handshake fragment reassembly logic of GnuTLS. The issue arises in mergehandshakepacket where incoming handshake fragments are matched and merged based solely on handshake type, without validating that the messagelength field remains...

RedHat Linux•added 2026/05/26 6:40 a.m.•7 views

gnutls: GnuTLS: Denial of Service via heap buffer overflow in DTLS handshake fragment reassembly

AstraLinux•added 2026/05/20 5:53 a.m.•6 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: inet: frags: dropping fraglist and conntrack references Jakub added a warning in nfconntrackcleanupnetlist to make debugging leaked skbs/conntrack references more obvious. syzbot reports this as triggering, and I can also reprodu...

5.5CVSS5.7AI score0.00025EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в linux

A vulnerability was discovered in the Linux kernel 5.8.9. The implementations of WEP, WPA, WPA2, and WPA3 reassemble fragments, even though some of them were sent in plain text. This vulnerability can be exploited to inject packets and/or exfiltrate selected fragments when another device sends...

5.4CVSS6.9AI score0.00136EPSS

RedhatCVE•added 2026/05/15 6:18 p.m.•7 views

CVE-2026-42786

A flaw was found in bandit. A remote, unauthenticated attacker can exploit an Allocation of Resources Without Limits or Throttling vulnerability in the fragment reassembly path of the WebSocket connection handling. This allows the attacker to send an unbounded number of continuation frames, leadi...

8.7CVSS5.7AI score0.00081EPSS

Exploits0References7

OSV•added 2026/05/14 5:22 p.m.•10 views

CLSA-2026-1778774223 gnutls: Fix of CVE-2026-33845

CVE-2026-33845: fix DTLS handshake fragment reassembly integer underflow and heap overrun by tracking fraglength instead of endoffset...

9.1CVSS5.8AI score0.001EPSS

OSV•added 2026/05/08 11:18 a.m.•5 views

CLSA-2026-1778238907 gnutls: Fix of CVE-2026-33845

CVE-2026-33845: fix DTLS handshake fragment reassembly integer underflow and heap overrun by tracking fraglength instead of endoffset...

9.1CVSS5.8AI score0.001EPSS

OSV•added 2026/05/07 4:45 p.m.•5 views

CLSA-2026-1778172299 gnutls: Fix of CVE-2026-33845

CVE-2026-33845: fix DTLS handshake fragment reassembly integer underflow and heap overrun by tracking fraglength instead of endoffset...

9.1CVSS5.8AI score0.001EPSS

Snyk•added 2026/05/04 10:26 a.m.•4 views

Improper Handling of Length Parameter Inconsistency

Overview Affected versions of this package are vulnerable to Improper Handling of Length Parameter Inconsistency in the mergehandshakepacket process. An attacker can cause application crashes or memory corruption by sending crafted DTLS handshake fragments with inconsistent messagelength values,...

8.7CVSS6AI score0.00089EPSS

Exploits0References2

OSV•added 2026/05/04 10:15 a.m.•7 views

ALPINE-CVE-2026-33846

NVD•added 2026/05/04 10:15 a.m.•9 views

CVE-2026-33846

7.5CVSS0.00089EPSS

Exploits0References6

CVE•added 2026/05/04 9:8 a.m.•23 views

CVE-2026-33846

GnuTLS DTLS handshake fragment reassembly (merge_handshake_packet) fails to enforce consistent message_length across fragments, enabling a heap-based out-of-bounds write when fragments with conflicting lengths are received. This remote, unauthenticated vulnerability can cause application crashes ...

ATTACKERKB•added 2026/05/04 9:8 a.m.•3 views

Exploits0References6

CVE-2026-33846

Cvelist•added 2026/05/04 9:8 a.m.•39 views

Exploits0References7

CVE-2026-33846 Gnutls: gnutls: denial of service via heap buffer overflow in dtls handshake fragment reassembly

7.5CVSS0.00089EPSS

Exploits0References6

AstraLinux•added 2026/05/03 11:59 p.m.•4 views

Astra Linux - уязвимость в linux-6.1, linux, linux-5.10, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: inet: inetdefrag: prevent sk from being released while still in use The functions iplocalout and others can pass skb-sk as a function argument. If the skb is a fragment and reassembly occurs before such a function call returns, t...

5.5CVSS6.4AI score0.00078EPSS

Exploits1References2

OSV•added 2026/05/01 8:34 p.m.•3 views

EEF-CVE-2026-42786 WebSocket fragmented message reassembly unbounded in bandit

Summary Allocation of Resources Without Limits or Throttling vulnerability in mtrudel bandit allows unauthenticated remote denial of service via memory exhaustion. The fragment reassembly path in 'Elixir.Bandit.WebSocket.Connection':handleframe/3 in lib/bandit/websocket/connection.ex appends ever...

8.7CVSS5.8AI score0.00081EPSS

Cvelist•added 2026/05/01 8:34 p.m.•23 views

CVE-2026-42786 WebSocket fragmented message reassembly unbounded in bandit

Allocation of Resources Without Limits or Throttling vulnerability in mtrudel bandit allows unauthenticated remote denial of service via memory exhaustion. The fragment reassembly path in 'Elixir.Bandit.WebSocket.Connection':handleframe/3 in lib/bandit/websocket/connection.ex appends every incomi...

8.7CVSS0.00081EPSS