CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

215 matches found

CVE-2026-41207 netty-incubator-codec-ohttp's HPKEContext operations may produce empty byte[] on failures

The netty incubator codec.bhttp is a java language binary http parser. Prior to version 0.0.21.Final, HKDFexpand returns non-NULL on failure. The byte is filled with zeros and has no way to distinguish success from failure. Since this output is used as HKDF key material for the response AEAD, a...

6.9CVSS

Exploits0References2

Cvelist•added last week•26 views

CVE-2026-4387 Unencrypted storage of authentication state in StrongDM Desktop Application state.kv file

StrongDM Desktop Application before 23.74.0 Desktop Client before 53.77.0 on Microsoft Windows stores authentication state, including a JSON Web Token and asymmetric key material, in cleartext in a per-user state file located at C:\Users\.sdm\state.kv. The file is protected only by default...

2CVSS0.00007EPSS

Exploits0References2

EUVD•added last week•13 views

EUVD-2026-33417

2CVSS5.9AI score0.00007EPSS

Exploits0References1

OSV•added 2026/05/26 11:8 p.m.•4 views

GHSA-F659-372H-6X3X netty-incubator-codec-ohttp's HPKEContext operations may produce empty byte[] on failures

HKDFexpand: returns non-NULL on failure. The byte is filled with zeros and has no way to distinguish success from failure. Since this output is used as HKDF key material for the response AEAD, a failure silently produces an all-zero key. When EVPHPKECTXexport fails it also returns an empty byte...

6.9CVSS5.8AI score

Exploits0References2

OSV•added 2026/05/20 12:57 p.m.•3 views

MAL-2026-4220 Malicious code in web3-secrets-detector (npm)

A coordinated supply-chain attack comprising 10 npm packages published by maintainer ddjidd5640 [email protected] within a 48-hour window 2026-05-19T03:55Z – 2026-05-21T04:31Z. All packages masquerade as legitimate Web3/DeFi developer security tools MCP servers while silently exfiltrating...

5.9AI score

Exploits0References17

SUSE CVE•added 2026/05/13 3:35 a.m.•4 views

SUSE CVE-2026-43304

In the Linux kernel, the following vulnerability has been resolved: libceph: define and enforce CEPHMAXKEYLEN When decoding the key, verify that the key material would fit into a fixed-size buffer in processauthdone and generally has a sane length. The new CEPHMAXKEYLEN check replaces the existin...

9.8CVSS5.8AI score0.00072EPSS

Exploits0References3

UbuntuCve•added 2026/05/08 2:16 p.m.•4 views

CVE-2026-43304

9.8CVSS5.8AI score0.00072EPSS

Exploits0References9

OSV•added 2026/05/08 2:16 p.m.•3 views

UBUNTU-CVE-2026-43304

9.8CVSS5.8AI score0.00072EPSS

Exploits0References10

ATTACKERKB•added 2026/05/08 1:11 p.m.•6 views

CVE-2026-43304

5.8AI score0.00072EPSS

Exploits0References8Affected Software1

CVE•added 2026/05/08 1:11 p.m.•12 views

CVE-2026-43304

CVE-2026-43304 affects the Linux kernel libceph component. The flaw arises when decoding key material in process_auth_done(), where the code failed to enforce an upper bound on key length. The fix defines and enforces CEPH_MAX_KEY_LEN and clamps key material to a fixed-size buffer, addressing a v...

9.8CVSS5.8AI score0.00072EPSS

Exploits0References7Affected Software1

CNNVD•added 2026/05/08 12:0 a.m.•3 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from undefined and forced checks on the maximum length of keys in the libceph library. This...

9.8CVSS6.1AI score0.00072EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•3 views

Astra Linux - уязвимость в munge

MUNGE is an authentication service for creating and validating user credentials. From 0.5 to 0.5.17, local attacker can exploit a buffer overflow vulnerability in munged the MUNGE authentication daemon to leak cryptographic key material from process memory. With the leaked key material, the...

7.8CVSS7.6AI score0.00029EPSS

Exploits0References2

EUVD•added 2026/04/17 6:31 p.m.•1 views

EUVD-2026-23450

OpenHarness before commit bd4df81 contains a permission bypass vulnerability that allows attackers to read sensitive files by exploiting incomplete path normalization in the permission checker. Attackers can invoke the built-in grep and glob tools with sensitive root directories that are not...

8.7CVSS5.8AI score0.00034EPSS

Exploits1References4

Tenable Nessus•added 2026/04/17 12:0 a.m.•1 views

Unity Linux 20.1070a Security Update: munge (UTSA-2026-007303)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007303 advisory. MUNGE is an authentication service for creating and validating user credentials. From 0.5 to 0.5.17, local attacker can exploit a buffer overflow vulnerability in...

7.8CVSS6.4AI score0.00029EPSS

Exploits0References4

RedhatCVE•added 2026/03/26 3:2 p.m.•2 views

CVE-2026-32614

Go ShangMi Commercial Cryptography Library GMSM is a cryptographic library that covers the Chinese commercial cryptographic public algorithms SM2/SM3/SM4/SM9/ZUC. Prior to 0.41.1, the current SM9 decryption implementation contains an infinity-point ciphertext forgery vulnerability. The root cause...

7.5CVSS5.8AI score0.00009EPSS

Exploits0References1

SUSE CVE•added 2026/03/25 12:24 a.m.•1 views

SUSE CVE-2026-32614

7.5CVSS5.9AI score0.00009EPSS

Exploits0References3

CVE•added 2026/03/20 4:24 a.m.•9 views

CVE-2026-32953

Tillitis TKey Client (Go module tkeyclient) versions

4.7CVSS5.9AI score0.00008EPSS

Exploits1References3Affected Software1

Snyk•added 2026/03/19 8:46 p.m.•3 views

Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG)

Overview Affected versions of this package are vulnerable to Incorrect Usage of Seeds in Pseudo-Random Number Generator PRNG via induced transient faults in the Keccak-based expansion process. An attacker can compromise key material and cryptographic outcomes by physically manipulating seed or...

5.7CVSS5.8AI score0.00008EPSS

Exploits0References2