CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 5 hours ago•6 views

CVE-2026-57452

Vim (affected: Vim 9.2.x prior to 9.2.0671) is vulnerable when opening files encrypted with VimCrypt~04!/VimCrypt~05! using the libsodium secretstream path, where an unsigned length underflow for bodies shorter than a secretstream header causes a decryption call to read past the input buffer, cra...

5.5CVSS5.9AI score

Cvelist•added 5 hours ago•7 views

CVE-2026-57452 Vim: Out-of-bounds Read with libsodium-encrypted Files

5.5CVSS

Tenable Nessus•added 2026/06/06 12:0 a.m.•8 views

EulerOS Virtualization 2.13.1 : libsodium (EulerOS-SA-2026-2136)

According to the versions of the libsodium package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : libsodium before ad3004e, in atypical use cases involving certain custom cryptography or untrusted data to...

4.5CVSS5.6AI score0.00166EPSS

Tenable Nessus•added 2026/06/06 12:0 a.m.•9 views

EulerOS Virtualization 2.10.1 : libsodium (EulerOS-SA-2026-2026)

4.5CVSS5.5AI score0.00166EPSS

Tenable Nessus•added 2026/06/06 12:0 a.m.•9 views

EulerOS Virtualization 2.13.0 : libsodium (EulerOS-SA-2026-2175)

4.5CVSS5.6AI score0.00166EPSS

Tenable Nessus•added 2026/06/06 12:0 a.m.•10 views

EulerOS Virtualization 2.10.0 : libsodium (EulerOS-SA-2026-2053)

4.5CVSS5.5AI score0.00166EPSS

Tenable Nessus•added 2026/05/05 12:0 a.m.•4 views

SUSE SLES16 Security Update : python-PyNaCl (SUSE-SU-2026:21431-1)

The remote SUSE Linux SLES16 / SLESSAP16 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2026:21431-1 advisory. Security fixes: - CVE-2025-69277: incorrect validation of elliptic curve points certain custom cryptography or untrusted data to...

4.5CVSS5.8AI score0.00166EPSS

Exploits0References6

IBM Security Bulletins•added 2026/05/04 5:56 p.m.•5 views

Security Bulletin:libsodium vulnerability: invalid elliptic curve point validation in crypto_core_ed25519_is_valid_point

Summary libsodium before ad3004e, in atypical use cases involving certain custom cryptography or untrusted data to cryptocoreed25519isvalidpoint, mishandles checks for whether an elliptic curve point is valid because it sometimes allows points that aren't in the main cryptographic group...

Exploits0Affected Software1

Tenable Nessus•added 2026/05/02 12:0 a.m.•4 views

openSUSE 16 Security Update : python-PyNaCl (openSUSE-SU-2026:20650-1)

The remote openSUSE 16 host has a package installed that is affected by a vulnerability as referenced in the openSUSE- SU-2026:20650-1 advisory. Security fixes: - CVE-2025-69277: incorrect validation of elliptic curve points certain custom cryptography or untrusted data to...

4.5CVSS5.8AI score0.00166EPSS

Tenable Nessus•added 2026/05/02 12:0 a.m.•5 views

openSUSE 16 Security Update : libsodium (openSUSE-SU-2026:20642-1)

The remote openSUSE 16 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2026:20642-1 advisory. Security fixes: - CVE-2025-15444: Cryptographic bypass via improper elliptic curve point validation bsc1256070. - CVE-2025-69277: incorrect...

OPENSUSE Linux•added 2026/04/30 12:0 a.m.•4 views

Exploits0References6

Security update for libsodium (moderate)

openSUSE security update: security update for libsodium ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20642-1 Rating: moderate References: bsc1255764 bsc1256070 Cross-References: CVE-2025-15444 CVE-2025-69277 CVSS scores: CVE-2025-15444 SUSE : 6.8...

6.8CVSS5.5AI score0.00228EPSS

OPENSUSE Linux•added 2026/04/30 12:0 a.m.•4 views

Security update for python-PyNaCl (moderate)

openSUSE security update: security update for python-pynacl ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20650-1 Rating: moderate References: bsc1161557 bsc1199282 bsc1255764 Cross-References: CVE-2025-69277 CVSS scores: CVE-2025-69277 SUSE : 4.4...

4.8CVSS5.9AI score0.00166EPSS

OSV•added 2026/04/29 2:17 p.m.•2 views

OPENSUSE-SU-2026:20650-1 Security update for python-PyNaCl

This update for python-PyNaCl fixes the following issues: Security fixes: - CVE-2025-69277: incorrect validation of elliptic curve points certain custom cryptography or untrusted data to cryptocoreed25519isvalidpoint function bsc1255764. Other fixes: - update to 1.6.2 bsc1255764, CVE-2025-69277:...

OSV•added 2026/04/29 2:15 p.m.•5 views

SUSE-SU-2026:21431-1 Security update for python-PyNaCl

OSV•added 2026/04/28 3:28 p.m.•2 views

SUSE-SU-2026:21422-1 Security update for libsodium

This update for libsodium fixes the following issues: Security fixes: - CVE-2025-15444: Cryptographic bypass via improper elliptic curve point validation bsc1256070. - CVE-2025-69277: incorrect validation of elliptic curve points certain custom cryptography or untrusted data to...

OSV•added 2026/04/28 3:28 p.m.•2 views

SUSE-SU-2026:21393-1 Security update for libsodium

OSV•added 2026/04/28 3:27 p.m.•3 views

OPENSUSE-SU-2026:20642-1 Security update for libsodium

OpenVAS•added 2026/04/03 12:0 a.m.•4 views

SUSE: Security Advisory (SUSE-SU-2026:20913-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Tenable Nessus•added 2026/03/30 12:0 a.m.•3 views

Amazon Linux 2023 : libsodium, libsodium-devel, libsodium-static (ALAS2023-2026-1493)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1493 advisory. libsodium before ad3004e, in atypical use cases involving certain custom cryptography or untrusted data to cryptocoreed25519isvalidpoint, mishandles checks for whether an elliptic curve point is valid...