CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Shadow mode tracing code uses a set of per-CPU variables to avoid cumbersome parameter passing. Some of these variables are written to with guest controlled data, of guest controllable size. That size can be larger than the variable, and bounding of the writes was missing...

8.8CVSS5.4AI score0.00022EPSS

Exploits0References1

OSV•added 2026/01/28 3:16 p.m.•2 views

DEBIAN-CVE-2026-23014

In the Linux kernel, the following vulnerability has been resolved: perf: Ensure swevent hrtimer is properly destroyed With the change to hrtimertrytocancel in perfsweventcancelhrtimer it appears possible for the hrtimer to still be active by the time the event gets freed. Make sure the event doe...

7.8CVSS5.3AI score0.00025EPSS

Exploits0References1

OSV•added 2026/01/28 1:32 p.m.•1 views

MINI-4XCW-7R24-FFG5

Bulletin has no description...

7.7CVSS5.8AI score0.00104EPSS

Exploits1

OSV•added 2026/01/28 6:7 a.m.•0 views

BELL-CVE-2026-24515

Bulletin has no description...

2.5CVSS5.8AI score0.00007EPSS

Exploits0References1

OSV•added 2026/01/28 6:7 a.m.•1 views

BELL-CVE-2025-69420

Bulletin has no description...

7.5CVSS5.8AI score0.01131EPSS

Exploits1References1

OSV•added 2026/01/27 7:16 p.m.•5 views

DEBIAN-CVE-2026-22263

Suricata is a network IDS, IPS and NSM engine. Starting in version 8.0.0 and prior to version 8.0.3, inefficiency in http1 headers parsing can lead to slowdown over multiple packets. Version 8.0.3 patches the issue. No known workarounds are available...

5.3CVSS5.3AI score0.00025EPSS

Exploits0References1

OSV•added 2026/01/27 6:15 p.m.•5 views

DEBIAN-CVE-2026-22260

Suricata is a network IDS, IPS and NSM engine. Starting in version 8.0.0 and prior to version 8.0.3, Suricata can crash with a stack overflow. Version 8.0.3 patches the issue. As a workaround, use default values for request-body-limit and response-body-limit...

7.5CVSS5.4AI score0.00023EPSS

Exploits0References1

OSV•added 2026/01/27 5:16 p.m.•3 views

DEBIAN-CVE-2026-22258

Suricata is a network IDS, IPS and NSM engine. Prior to versions 8.0.3 and 7.0.14, crafted DCERPC traffic can cause Suricata to expand a buffer w/o limits, leading to memory exhaustion and the process getting killed. While reported for DCERPC over UDP, it is believed that DCERPC over TCP and SMB...

7.5CVSS5.6AI score0.00088EPSS

Exploits0References1

OSV•added 2026/01/27 5:6 p.m.•3 views

CGA-WXJ8-62J7-P5VH

Bulletin has no description...

7.5CVSS5.8AI score0.00272EPSS

Exploits0

OSV•added 2026/01/27 4:16 p.m.•2 views

DEBIAN-CVE-2026-22795

Issue summary: An invalid or NULL pointer dereference can happen in an application processing a malformed PKCS12 file. Impact summary: An application processing a malformed PKCS12 file can be caused to dereference an invalid or NULL pointer on memory read, resulting in a Denial of Service. A type...

5.5CVSS6.5AI score0.00048EPSS

Exploits1References1

OSV•added 2026/01/27 4:16 p.m.•2 views

DEBIAN-CVE-2025-28162

Buffer Overflow vulnerability in libpng 1.6.43-1.6.46 allows a local attacker to cause a denial of service via the pngimage with AddressSanitizer ASan, the program leaks memory in various locations, eventually leading to high memory usage and causing the program to become unresponsive...

5.5CVSS5.4AI score0.0003EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by