CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2026/06/10 5:7 a.m.•6 views

MGASA-2026-0188 Updated jq packages fix security vulnerabilities

An integer overflow arises when assigning value using an index of 2147483647, the signed integer limit. This causes a denial of service. CVE-2024-23337 It was discovered that jq did not correctly handle certain string concatenations. An attacker could possibly use this issue to cause a denial of...

8.7CVSS6AI score0.00484EPSS

Exploits7References10

Mageia•added 2026/06/10 5:7 a.m.•12 views

Updated jq packages fix security vulnerabilities

8.7CVSS6.9AI score0.00484EPSS

Exploits7References9

NVD•added 2026/06/10 4:17 a.m.•11 views

CVE-2025-66280

An integer overflow or wraparound vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to compromise the security of the system. We have already fixed the vulnerability in the...

7.2CVSS0.00435EPSS

EUVD•added 2026/06/10 3:5 a.m.•8 views

EUVD-2025-210101

5.1CVSS5.5AI score0.00435EPSS

Vulnrichment•added 2026/06/10 3:5 a.m.•8 views

CVE-2025-66280 QTS, QuTS hero

5.1CVSS5.5AI score0.00435EPSS

CVE•added 2026/06/10 3:5 a.m.•23 views

CVE-2025-66280

CVE-2025-66280 describes an integer overflow/wraparound vulnerability affecting several QNAP operating system versions. According to connected sources, a remote attacker who obtains an administrator account can exploit the flaw to compromise system security. Remediation is in fixed releases: QTS ...

7.2CVSS5.5AI score0.00435EPSS

Exploits0References1Affected Software2

SUSE CVE•added 2026/06/10 2:31 a.m.•7 views

SUSE CVE-2026-11640

Integer overflow in libyuv in Google Chrome prior to 149.0.7827.103 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

8.3CVSS5.5AI score0.00231EPSS

SUSE CVE•added 2026/06/10 2:31 a.m.•8 views

SUSE CVE-2026-11659

Integer overflow in UI in Google Chrome on Linux prior to 149.0.7827.103 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

9.6CVSS5.5AI score0.00252EPSS

EUVD•added 2026/06/10 12:31 a.m.•11 views

EUVD-2026-35850

CAI Content Credentials versions [email protected], c2pa-v0.80.1 and earlier are affected by an Integer Overflow or Wraparound vulnerability. An attacker could exploit this vulnerability to crash the application, leading to a denial-of-service condition. Exploitation of this issue does not require...

7.5CVSS5.5AI score0.0043EPSS

Tenable Nessus•added 2026/06/10 12:0 a.m.•4 views

RHEL 10 : libsndfile (RHSA-2026:25092)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:25092 advisory. libsndfile is a C library for reading and writing files containing sampled sound, such as AIFF, AU, or WAV. Security Fixes: libsndfile: integer...

7.5CVSS5.6AI score0.00405EPSS

Exploits1References4

CNNVD•added 2026/06/10 12:0 a.m.•15 views

libnfs 安全漏洞

libnfs is a network file system access client library developed by Ronnie Sahlberg. Versions of libnfs prior to 55c18ea contained security vulnerabilities; these vulnerabilities stemmed from unvalidated string sizes, which could lead to integer overflows when connecting to specially crafted NFS...

7.1CVSS5.4AI score0.00192EPSS

Positive Technologies•added 2026/06/10 12:0 a.m.•12 views

PT-2026-48362

5.1CVSS5.5AI score0.00435EPSS

Tenable Nessus•added 2026/06/10 12:0 a.m.•7 views

EulerOS 2.0 SP13 : openjpeg2 (EulerOS-SA-2026-2304)

According to the versions of the openjpeg2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was identified in uclouvain openjpeg up to 2.5.4. This impacts the function opjpiinitialiseencode in the library...

4.8CVSS4.9AI score0.00112EPSS

Oracle linux•added 2026/06/10 12:0 a.m.•11 views

poppler security update

20.11.0-14 - Fix integer overflow in tilingPatternFill CVE-2026-10118 - Resolves: RHEL-180567...

7.8CVSS5.5AI score0.00252EPSS

Exploits0

Tenable Nessus•added 2026/06/10 12:0 a.m.•6 views

FreeBSD : Elixir -- Denial of service via unbounded integer parsing in Version (45accfb8-56e4-41b7-8463-572ce643fde0)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 45accfb8-56e4-41b7-8463-572ce643fde0 advisory. PJUllrich reports: The Version module parses numeric version components without length limits. Untruste...

5.1CVSS5.5AI score0.00152EPSS

Tenable Nessus•added 2026/06/10 12:0 a.m.•7 views

FreeBSD : Elixir -- Denial of service via unbounded integer parsing in Version (f778ad20-0d5f-49c4-af45-4493ff0696d9)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the f778ad20-0d5f-49c4-af45-4493ff0696d9 advisory. PJUllrich reports: The Version module parses numeric version components without length limits. Untruste...

5.1CVSS5.5AI score0.00152EPSS

Positive Technologies•added 2026/06/10 12:0 a.m.•12 views

PT-2026-48450

Name of the Vulnerable Software and Affected Versions libnfs versions prior to 55c18ea Description An integer overflow occurs during a connection to a crafted NFS server because the software does not validate a string size. This issue is located in the libnfs zdr string function within the...

7.1CVSS5.9AI score0.00192EPSS

Exploits0References10

CNNVD•added 2026/06/10 12:0 a.m.•16 views

QNAP qts 缓冲区错误漏洞

QNAP Systems QTS and QNAP Systems QuTS are both products of QNAP Systems Corporation. QNAP Systems QTS is an entry-level operating system. QNAP Systems QuTS hero is a software with data storage and management capabilities. Both QNAP Systems QTS and QNAP Systems QuTS hero have security...

7.2CVSS6AI score0.00435EPSS