CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

205 matches found

CNNVD•added 2026/06/10 12:0 a.m.•12 views

ESP-IDF 输入验证错误漏洞

ESP-IDF is an open-source development framework for Espressif’s Espressif SoC, supported on Windows, Linux, and macOS. Versions 5.5.4 and 6.0 of ESP-IDF contain input validation vulnerabilities. These vulnerabilities stem from the ESP-TEE security service wrapper, which only validates the pointer...

7.1CVSS5.3AI score0.00117EPSS

Exploits0References1

Amazon•added 2026/04/30 12:0 a.m.•6 views

Important: mesa

Issue Overview: In Mesa before 25.3.6 and 26 before 26.0.1, out-of-bounds memory access can occur in WebGPU because the amount of to-be-allocated data depends on an untrusted party, and is then used for alloca. CVE-2026-40393 Affected Packages: mesa Issue Correction: Run dnf update mesa...

9.8CVSS5.2AI score0.00348EPSS

Exploits0

Debian CVE•added 2026/04/15 7:4 p.m.•4 views

CVE-2026-6362

Use after free in Codecs in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to potentially perform out of bounds memory access via a crafted video file. Chromium security severity: High...

4.3CVSS5.3AI score0.00221EPSS

Exploits0

Positive Technologies•added 2026/04/13 12:0 a.m.•9 views

PT-2026-35846

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 147.0.7727.138 Description An inappropriate implementation in Tint allows a remote attacker to perform out of bounds memory access, which occurs when a program reads or writes data outside the boundaries of the...

9.6CVSS6.1AI score0.00433EPSS

Exploits0References40

RedHat Linux•added 2026/03/25 2:47 p.m.•16 views

Moderate: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability...

7.8CVSS6.4AI score0.00214EPSS

Exploits0References4

CNNVD•added 2026/03/25 12:0 a.m.•6 views

Apple Xcode 安全漏洞

Apple Xcode is an integrated development environment provided by the American company Apple for developers. It is primarily used for developing applications for Mac OS X and iOS platforms. Versions of Apple Xcode prior to 26.4 contained a security vulnerability caused by excessive memory access,...

5.5CVSS5.8AI score0.00103EPSS

Exploits0References1

NVD•added 2026/03/20 2:16 a.m.•3 views

CVE-2026-4439

Out of bounds memory access in WebGL in Google Chrome on Android prior to 146.0.7680.153 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: Critical...

8.8CVSS0.00341EPSS

Exploits0References2

CNNVD•added 2026/03/16 12:0 a.m.•5 views

bareiron 安全漏洞

Bareiron is a Minecraft game server developed by the P2R3 individual developer. Bareiron has a security vulnerability, which stems from excessive memory access. This vulnerability could allow unverified attackers to access sensitive information or cause denial-of-service attacks...

9.1CVSS5.8AI score0.00347EPSS

Exploits0References2

RedhatCVE•added 2026/01/09 10:17 a.m.•7 views

CVE-2019-18845

The MsIo64.sys and MsIo32.sys drivers in Patriot Viper RGB before 1.1 allow local users including low integrity processes to read and write to arbitrary memory locations, and consequently gain NT AUTHORITY\SYSTEM privileges, by mapping \Device\PhysicalMemory into the calling process via...

7.1CVSS6.9AI score0.00416EPSS

Exploits1References1

CVE•added 2025/12/12 7:20 p.m.•615 views

CVE-2025-14174

CVE-2025-14174 = Out-of-bounds memory access in ANGLE within Google Chrome on macOS prior to 143.0.7499.110. A remote attacker could trigger memory access errors via a crafted HTML page. Affected software: Google Chrome on macOS; vulnerable component: ANGLE. Impact: high enough to potentially ena...

8.8CVSS6.2AI score0.22359EPSS

In wildExploits10References4Affected Software1

CISA KEV Catalog•added 2025/12/12 12:0 a.m.•13 views

Google Chromium Out of Bounds Memory Access Vulnerability

Google Chromium contains an out of bounds memory access vulnerability in ANGLE that could allow a remote attacker to perform out of bounds memory access via a crafted HTML page. This vulnerability could affect multiple web browsers that utilize Chromium, including, but not limited to, Google...

8.8CVSS6.7AI score0.22359EPSS

In wildExploits10

Vulnrichment•added 2025/12/02 1:4 p.m.•4 views

CVE-2025-11789 Out-of-bounds read vulnerability in Circutor SGE-PLC1000/SGE-PLC50

Out-of-bounds read vulnerability in Circutor SGE-PLC1000/SGE-PLC50 v9.0.2. The 'DownloadFile' function converts a parameter to an integer using 'atoi' and then uses it as an index in the 'FilesDownload' array with '&FilesDownloadiVar2'. If the parameter is too large, it will access memory beyond...

7.1CVSS6.4AI score0.00221EPSS

Exploits0References1

OSV•added 2025/11/25 12:15 a.m.•4 views

ALPINE-CVE-2025-64505

LIBPNG is a reference library for use in applications that read, create, and manipulate PNG Portable Network Graphics raster image files. Prior to version 1.6.51, a heap buffer over-read vulnerability exists in libpng's pngdoquantize function when processing PNG files with malformed palette...

6.1CVSS7.1AI score0.00184EPSS

Exploits2References1