CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2125 matches found

Cvelist•added 6 days ago•18 views

CVE-2026-46969

...

7.2CVSS0.00453EPSS

Exploits0References1

CVE•added 6 days ago•5 views

CVE-2026-46904

Technical details are not publicly available in the provided documents. Monitor for updates.

9.8CVSS5.2AI score0.00473EPSS

Exploits0References1Affected Software1

Cvelist•added 6 days ago•10 views

CVE-2026-46768

...

6CVSS0.00157EPSS

Exploits0References1

CNNVD•added 2026/06/09 12:0 a.m.•8 views

Microsoft Azure 资源管理错误漏洞

Microsoft Azure is an open enterprise-level cloud computing platform provided by the American company Microsoft. There is a resource management vulnerability in Microsoft Azure. Currently, there is no information regarding this vulnerability. Please stay informed by following CNNVD or the vendor’...

8.2CVSS5.3AI score0.00277EPSS

Exploits0References2

RedhatCVE•added 2026/05/08 6:12 p.m.•6 views

CVE-2026-43287

A flaw was found in the Linux kernel. An unprivileged local user can exploit a vulnerability in the DRMIOCTLMODECREATEPROPBLOB function, which allows for the allocation of arbitrary-sized property blobs in kernel memory. This memory is not properly accounted for, leading to unbounded kernel memor...

5.5CVSS5.8AI score0.00123EPSS

Exploits0References4

GithubExploit•added 2026/04/19 6:0 p.m.•76 views

XSS

No d...

5.7AI score

Exploits0

NVD•added 2026/04/06 7:16 p.m.•8 views

CVE-2025-48651

In importWrappedKey of KMKeymasterApplet.java, there is a possible way access keys that should be restricted due to improper input validation. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS0.00096EPSS

Exploits0References1

ATTACKERKB•added 2026/03/23 10:31 p.m.•4 views

CVE-2026-32908

This CVE ID has been rejected...

5.7AI score

Exploits0References1

RedhatCVE•added 2026/03/18 4:2 p.m.•3 views

CVE-2026-32609

Glances is an open-source system cross-platform monitoring tool. The GHSA-gh4x fix commit 5d3de60 addressed unauthenticated configuration secrets exposure on the /api/v4/config endpoints by introducing asdictsecure redaction. However, the /api/v4/args and /api/v4/args/item endpoints were not...

7.5CVSS5.8AI score0.00499EPSS

Exploits1References2

CNNVD•added 2026/02/19 12:0 a.m.•4 views

ChurchCRM 跨站脚本漏洞

ChurchCRM is ChurchCRM open source an open source CRM system for churches. ChurchCRM suffers from a cross-site scripting vulnerability that originates from an authenticated user being able to store a JavaScript payload, no details of the vulnerability are provided at this time...

5.4CVSS5.6AI score0.00189EPSS

Exploits1References1

RedhatCVE•added 2026/02/16 9:42 p.m.•8 views

CVE-2026-23184

In the Linux kernel, the following vulnerability has been resolved: binder: fix UAF in bindernetlinkreport Oneway transactions sent to frozen targets via binderproctransaction return a BRTRANSACTIONPENDINGFROZEN error but they are still treated as successful since the target is expected to thaw a...

7.8CVSS5.1AI score0.0012EPSS

Exploits0References4

RedhatCVE•added 2026/02/16 6:27 a.m.•3 views

CVE-2025-71220

In the Linux kernel, the following vulnerability has been resolved: smb/server: call ksmbdsessionrpcclose on error path in createsmb2pipe When ksmbdiovpinrsp fails, we should call ksmbdsessionrpcclose...

7.8CVSS4.9AI score0.0013EPSS

Exploits0References4

GithubExploit•added 2026/02/11 8:19 a.m.•131 views

Exploit for CVE-2025-49132

No d...

10CVSS5.4AI score0.13105EPSS

Exploits28

CNVD•added 2026/02/11 12:0 a.m.•3 views

HCL AION Cross-Site Scripting Vulnerability

HCL AION is an AI lifecycle management platform from HCL India. HCL AION suffers from a cross-site scripting vulnerability, which is caused by a lack of content security policy, no details of the vulnerability are provided at this time...

6.1CVSS5.6AI score0.0012EPSS

Exploits0

RedhatCVE•added 2026/02/05 12:38 a.m.•3 views

CVE-2026-23103

A race condition vulnerability was found in the Linux kernel's ipvlan driver. The per-device addrslock was incorrectly used instead of a per-port lock, and some code paths ipvlanopen/ipvlanclose failed to acquire the lock entirely. For IPv6 address changes that don't require RTNL lock, concurrent...

5.5CVSS5.5AI score0.00107EPSS

Exploits0References4

RedhatCVE•added 2026/02/05 12:30 a.m.•4 views

CVE-2026-23080

In the Linux kernel, the following vulnerability has been resolved: can: mcbausb: mcbausbreadbulkcallback: fix URB memory leak Fix similar memory leak as in commit 7352e1d5932a "can: gsusb: gsusbreceivebulkcallback: fix URB memory leak". In mcbausbprobe - mcbausbstart, the URBs for USB-in transfe...

5.5CVSS5.1AI score0.00123EPSS

Exploits0References4

CNVD•added 2026/02/05 12:0 a.m.•2 views

Unspecified Vulnerability in Delta Electronics DIAView

Delta Electronics DIAView is an industrial configuration software from Delta Electronics China. A security vulnerability exists in Delta Electronics DIAView that stems from failure to authenticate critical functions. No details of the vulnerability are available at this time...

9.8CVSS5.8AI score0.00448EPSS

Exploits0

GithubExploit•added 2026/01/21 1:4 p.m.•134 views

Exploit for CVE-2025-7771

No d...

8.7CVSS5.4AI score0.08963EPSS

Exploits8

RedhatCVE•added 2026/01/20 3:57 p.m.•3 views

CVE-2026-0905

Insufficient policy enforcement in Network in Google Chrome prior to 144.0.7559.59 allowed an attack who obtained a network log file to potentially obtain potentially sensitive information via a network log file. Chromium security severity: Medium...

9.8CVSS5.2AI score0.00221EPSS

Exploits0References5

CNNVD•added 2026/01/16 12:0 a.m.•3 views

Delta Electronics DIAView 安全漏洞

9.8CVSS5.8AI score0.00525EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by