CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

An update for firefox is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerabili...

10CVSS6AI score0.00622EPSS

Exploits0References39

OSV•added 2026/02/26 4:27 p.m.•3 views

GO-2026-4536 Unicode case-folding causes incorrect split_path index in github.com/caddyserver/caddy/v2

Unicode case-folding causes incorrect splitpath index in github.com/caddyserver/caddy/v2...

9.8CVSS5.4AI score0.00542EPSS

Exploits1References3

OSV•added 2026/02/26 6:9 a.m.•2 views

BELL-CVE-2026-21863

Bulletin has no description...

7.5CVSS5.9AI score0.00388EPSS

Exploits0References1

OSV•added 2026/02/26 6:9 a.m.•4 views

BELL-CVE-2026-2243

Bulletin has no description...

5.1CVSS5.8AI score0.00114EPSS

Exploits1References1

OSV•added 2026/02/25 9:16 p.m.•0 views

DEBIAN-CVE-2026-25953

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, xfAppUpdateWindowFromSurface reads from a freed xfAppWindow because the RDPGFX DVC thread obtains a bare pointer via xfrailgetwindow without any lifetime protection, while the main thread can concurrently...

9.8CVSS5.3AI score0.00587EPSS

Exploits1References1

OSV•added 2026/02/25 10:16 a.m.•4 views

MINI-X2CV-FV8H-MV2R

Bulletin has no description...

7.5CVSS5.1AI score0.00552EPSS

Exploits1

OSV•added 2026/02/25 4:16 a.m.•3 views

DEBIAN-CVE-2026-3147

A vulnerability was found in libvips up to 8.18.0. This affects the function vipsforeignloadcsvbuild of the file libvips/foreign/csvload.c. The manipulation results in heap-based buffer overflow. The attack requires a local approach. The exploit has been made public and could be used. The patch i...

7.8CVSS5.4AI score0.00209EPSS

Exploits1References1

OSV•added 2026/02/24 2:16 p.m.•3 views

DEBIAN-CVE-2026-2784

Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

9.8CVSS5.2AI score0.0043EPSS

Exploits0References1

OSV•added 2026/02/24 2:16 p.m.•1 views

DEBIAN-CVE-2026-2783

Information disclosure due to JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

7.5CVSS5.2AI score0.00285EPSS

Exploits0References1

OSV•added 2026/02/24 2:16 p.m.•1 views

DEBIAN-CVE-2026-2773

Incorrect boundary conditions in the Web Audio component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

9.8CVSS5.2AI score0.00622EPSS

Exploits0References1

OSV•added 2026/02/24 2:16 p.m.•2 views

DEBIAN-CVE-2026-2764

JIT miscompilation, use-after-free in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 148, Firefox ESR 115.33, Firefox ESR 140.8, Thunderbird 148, and Thunderbird 140.8...

9.8CVSS5.3AI score0.00474EPSS

Exploits0References1

OSV•added 2026/02/24 1:19 p.m.•2 views

MINI-6VFH-882G-MFF5

Bulletin has no description...

8.7CVSS4.9AI score0.005EPSS

Exploits1

OSV•added 2026/02/23 3:31 p.m.•0 views

MINI-HC68-49VJ-V2MR

Bulletin has no description...

7.5CVSS4.9AI score0.00407EPSS

Exploits1