CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1155 matches found

Microsoft CVE•added 2026/05/29 8:6 a.m.•6 views

batman-adv: stop caching unowned originator pointers in BAT IV

...

8.8CVSS5.4AI score0.00262EPSS

Exploits0

CVE•added 2026/05/28 9:40 a.m.•34 views

CVE-2026-46227

CVE-2026-46227 describes a race in the Linux kernel SCTP SENDALL path. The sctp_sendmsg() loop over ep->asocs caches the next entry in @tmp, then calls sctp_sendmsg_to_asoc() after dropping the socket lock, allowing a second thread to peel off the cached association and migrate it to a new end...

7.8CVSS5.8AI score0.00125EPSS

Exploits0References8Affected Software1

ATTACKERKB•added 2026/05/27 12:57 p.m.•6 views

CVE-2026-46047

In the Linux kernel, the following vulnerability has been resolved: net: qrtr: ns: Fix use-after-free in driver remove In the remove callback, if a packet arrives after destroyworkqueue is called, but before sockrelease, the qrtrnsdataready callback will try to queue the work, causing...

5.7AI score0.00126EPSS

Exploits0References9Affected Software1

SUSE CVE•added 2026/05/27 2:52 a.m.•9 views

SUSE CVE-2026-6918

In Eclipse Open9J versions 0.21 to 0.58, a pre-authentication remote attacker can crash JITServer by sending a 32-byte crafted TCP message...

8.7CVSS5.8AI score0.00378EPSS

Exploits1References3

UbuntuCve•added 2026/05/27 12:0 a.m.•7 views

CVE-2026-45930

net: mctp: ensure our nlmsg responses are initialised...

5.8AI score0.00128EPSS

Exploits0References2

UbuntuCve•added 2026/05/26 4:16 p.m.•11 views

CVE-2026-48686

FastNetMon Community Edition through 1.2.9 contains a stack-based buffer overflow in the BGP NLRI Network Layer Reachability Information decoder. The function decodebgpsubnetencodingipv4raw in src/bgpprotocol.cpp reads prefixbitlength directly from the BGP packet line 99 without validating it is ...

9.8CVSS6.3AI score0.00565EPSS

Exploits0References6

Tenable Nessus•added 2026/05/25 12:0 a.m.•13 views

Fedora 44 : chromium (2026-c758d44a9a)

The remote Fedora 44 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-c758d44a9a advisory. Update to 148.0.7778.178 CVE-2026-9111: Use after free in WebRTC CVE-2026-9110: Inappropriate implementation in UI CVE-2026-9112: Use after free in...

8.8CVSS6AI score0.00796EPSS

Exploits0References17

Vulnrichment•added 2026/05/20 7:12 p.m.•6 views

CVE-2026-9114

Use after free in QUIC in Google Chrome on prior to 148.0.7778.179 allowed a remote attacker to execute arbitrary code inside a sandbox via malicious network traffic. Chromium security severity: High...

6.2AI score0.00365EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

A flaw was discovered in the Linux kernel’s NVMe driver. This issue may allow an unauthenticated malicious actor to send a set of crafted TCP packets when using NVMe over TCP. This can lead to the NVMe driver dereferencing a NULL pointer, resulting in kernel panic and a denial of service...

7.5CVSS6.7AI score0.01537EPSS

Exploits0References2

Packet Storm News•added 2026/05/20 12:0 a.m.•10 views

Wireshark Analyzer 4.6.6

Wireshark is a GTK+-based network protocol analyzer that lets you capture and interactively browse the contents of network frames. The goal of the project is to create a commercial-quality analyzer for Unix and Win32 and to give Wireshark features that are missing from closed-source sniffers. Thi...

5.9AI score

Exploits0

Vulnrichment•added 2026/05/18 1:30 a.m.•10 views

CVE-2026-8780 omec-project amf NGAP Message dispatcher.go memory corruption

A vulnerability was identified in omec-project amf up to 2.1.3-dev. The affected element is an unknown function of the file ngap/dispatcher.go of the component NGAP Message Handler. The manipulation leads to memory corruption. The attack may be initiated remotely. The exploit is publicly availabl...

5.3CVSS5.5AI score0.00303EPSS

Exploits0References7

RedHat Linux•added 2026/05/15 5:23 p.m.•21 views

kernel: "Dirty Frag" ESP XFRM variant is a new universal Local Privilege Escalation (LPE) vulnerability in the Linux kernel

A flaw was found in the Linux kernel's xfrm-ESP and RxRPC subsystems. Unsafe in-place cryptographic processing of shared socket buffer fragments allows a low-privileged local attacker to corrupt page-cache contents of readable files, including sensitive system files, and gain root privileges. The...

8.8CVSS6.1AI score0.93418EPSS

Exploits30References6

RedhatCVE•added 2026/05/13 8:22 p.m.•8 views

CVE-2026-34351

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows TCP/IP allows an authorized attacker to elevate privileges locally...

7.8CVSS5.9AI score0.00205EPSS

Exploits0References1

NVD•added 2026/05/12 6:17 p.m.•14 views

CVE-2026-40399

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows TCP/IP allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00328EPSS

Exploits0References1

Vulnrichment•added 2026/05/12 4:59 p.m.•12 views

CVE-2026-33837 Windows TCP/IP Local Elevation of Privilege Vulnerability

...

7.8CVSS5.8AI score0.01838EPSS

Exploits0References1

CVE•added 2026/05/12 4:58 p.m.•56 views

CVE-2026-40415

Technical details (affected product, component, root cause, impact, remediation) are not publicly available in the provided documents. Monitor for updates from official advisories.

8.1CVSS6AI score0.00789EPSS

Exploits0References1Affected Software11

Vulnrichment•added 2026/05/12 4:58 p.m.•8 views

CVE-2026-40414 Windows TCP/IP Denial of Service Vulnerability

...

7.4CVSS5.8AI score0.00528EPSS

Exploits0References1