CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2026/05/24 12:15 a.m.•20 views

CVE-2026-9345

The CVE concerns Edimax EW-7438RPn (firmware up to 1.31) in the webs component, specifically the formWizSurvey function located in /goform/formWizSurvey. The vulnerability arises from a buffer overflow triggered by manipulating arguments such as ssid, manualssid, ip, mask, or gateway. This is des...

9CVSS7.7AI score0.00589EPSS

CNNVD•added 2026/05/24 12:0 a.m.•9 views

Edimax EW-7438RPn 操作系统命令注入漏洞

The Edimax EW-7438RPn is a wireless signal extender produced by Edimax of Taiwan, China. Versions of Edimax EW-7438RPn prior to 1.31 contained a vulnerability related to operating system command injection. This vulnerability stemmed from the formWizSurvey function in the webs component files or...

6.5CVSS6.6AI score0.01788EPSS

Tenable Nessus•added 2026/05/22 12:0 a.m.•20 views

Linux Distros Unpatched Vulnerability : CVE-2026-32741

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libheif is a HEIF and AVIF file format decoder and encoder. Versions 1.21.2 and below contain a heap buffer overflow in MaskImageCodec::decodemaskimage. When...

7.1CVSS6AI score0.0027EPSS

Exploits0References3

Tenable Nessus•added 2026/05/22 12:0 a.m.•9 views

Linux Distros Unpatched Vulnerability : CVE-2026-33376

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When using an IPv6 allow-list for the Auth Proxy feature, it defaults to /32 addresses. Addresses specifying a mask explicitly are not affected; to mitigate...

7.4CVSS5.9AI score0.00271EPSS

SUSE CVE•added 2026/05/21 2:29 a.m.•12 views

SUSE CVE-2026-32741

libheif is a HEIF and AVIF file format decoder and encoder. Versions 1.21.2 and below contain a heap buffer overflow in MaskImageCodec::decodemaskimage. When decoding a HEIF file containing a mask image mski, the function copies the full iloc extent data into a pixel buffer using memcpydst,...

6.1CVSS5.9AI score0.0027EPSS

Exploits0References3

Packet Storm News•added 2026/05/21 12:0 a.m.•8 views

TriSweep: A Four-Drone Swarm Framework for Electromagnetic Side-Channel Analysis

Electromagnetic EM side-channel analysis traditionally assumes a stationary, close-proximity probe - a threat model that underestimates aerial adversaries. TriSweep is a simulation framework that designs and evaluates a four-drone swarm architecture for autonomous standoff EM-SCA of embedded...

5.8AI score

Exploits0

AstraLinux•added 2026/05/20 5:53 a.m.•4 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: arch/arm64: Fixed the topology initialization for core scheduling Arm64 systems rely on storecputopology to call updatesiblingsmasks, in order to transfer the topology information to the various CPU masks. This needs to be don...

5.5CVSS6.2AI score0.00226EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: ipv6: ioam: Fixed a heap buffer overflow in ioam6fillTraceData. In the receive path, ioam6fillTraceData uses trace-nodelen to determine how much data to write for each node. It relies on this field directly from the incoming...

9.8CVSS5.9AI score0.00642EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•6 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: PM: sleep: The spurious WARNON message was removed from pmrestoregfpmask. Commit 35e4a69b2003f “PM: sleep: Allow pmrestrictgfpmask stacking” introduced a refcount-based GFP mask management mechanism. This mechanism would issue a...

5.5CVSS5.5AI score0.00128EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•4 views

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: sched/deadline: Only the freecpus field is set for online runqueues. Commit 16b269436b72 “sched/deadline: Modified cpudl::freecpus to reflect rd-online“” introduced the cpudlset/clearfreecpu functions, allowing the...

6AI score0.00173EPSS

RedhatCVE•added 2026/05/19 11:9 p.m.•8 views

CVE-2026-32741

A flaw was found in libheif, a library for decoding and encoding HEIF High Efficiency Image File Format and AVIF files. A remote attacker could exploit a heap buffer overflow vulnerability in the MaskImageCodec::decodemaskimage function by providing a specially crafted HEIF file containing a mask...

7.1CVSS6AI score0.0027EPSS

Snyk•added 2026/05/19 9:51 p.m.•5 views

Heap-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Heap-based Buffer Overflow in the decodemaskimage function. An attacker can cause a heap buffer overflow by providing a crafted HEIF file containing a mask image where the iloc extent exceeds the allocated pixel buffer, leading to...

7.1CVSS6AI score0.0027EPSS

OSV•added 2026/05/19 9:16 p.m.•9 views

DEBIAN-CVE-2026-32741

7.1CVSS5.9AI score0.0027EPSS

NVD•added 2026/05/19 9:16 p.m.•11 views

CVE-2026-32741

7.1CVSS0.0027EPSS

UbuntuCve•added 2026/05/19 9:16 p.m.•7 views

CVE-2026-32741

7.1CVSS5.9AI score0.0027EPSS

Exploits0References3

OSV•added 2026/05/19 9:16 p.m.•2 views

UBUNTU-CVE-2026-32741

7.1CVSS5.9AI score0.0027EPSS

OSV•added 2026/05/19 9:3 p.m.•7 views

CLSA-2026-1779224622 samba: Fix of CVE-2023-4091

CVE-2023-4091: fix openfile access check that allowed a client with read-only share access to truncate files via SMB2 OVERWRITE; the access check now uses openaccessmask instead of the requested accessmask...

6.5CVSS6.8AI score0.01174EPSS