CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

UbuntuCve•added 2026/04/07 4:16 p.m.•2 views

CVE-2026-5745

5.5CVSS5.8AI score0.00163EPSS

Snyk•added 2026/04/07 3:52 p.m.•2 views

NULL Pointer Dereference

Overview electron is a framework which lets you write cross-platform desktop applications using JavaScript, HTML and CSS. Affected versions of this package are vulnerable to NULL Pointer Dereference in the clipboard.readImage function when processing malformed clipboard image data. An attacker ca...

5CVSS5.9AI score0.00144EPSS

Snyk•added 2026/04/07 3:52 p.m.•0 views

NULL Pointer Dereference

Overview org.webjars.npm:electron is a framework which lets you write cross-platform desktop applications using JavaScript, HTML and CSS. Affected versions of this package are vulnerable to NULL Pointer Dereference in the clipboard.readImage function when processing malformed clipboard image data...

5CVSS5.9AI score0.00144EPSS

Cvelist•added 2026/04/07 2:57 p.m.•20 views

CVE-2026-5745 Libarchive: a null pointer dereference vulnerability exists in the acl parser of libarchive

5.5CVSS0.00163EPSS

ATTACKERKB•added 2026/04/07 2:57 p.m.•3 views

CVE-2026-5745

CVE•added 2026/04/07 2:57 p.m.•25 views

Exploits0References4

CVE-2026-5745

Libarchive exposes a NULL pointer dereference in the ACL parser (archive_acl_from_text_nl) when processing malformed ACL strings, leading to DoS via a crash in applications using the libarchive API (e.g., bsdtar). Affected component: the ACL parsing logic in libarchive. Underlying cause: insuffic...

Exploits0References3Affected Software4

Debian CVE•added 2026/04/07 2:57 p.m.•1 views

CVE-2026-5745

5.5CVSS5.4AI score0.00163EPSS

Exploits0

Vulnrichment•added 2026/04/07 2:57 p.m.•5 views

CVE-2026-5745 Libarchive: a null pointer dereference vulnerability exists in the acl parser of libarchive

RedhatCVE•added 2026/04/07 2:57 p.m.•4 views

CVE-2026-5745

5.5CVSS5.8AI score0.00163EPSS

RedHat Linux•added 2026/04/07 12:25 p.m.•4 views

freerdp: FreeRDP has a NULL Pointer Dereference in rdp_write_logon_info_v2()

A null pointer dereference has been discovered in FreeRDP. A NULL pointer dereference vulnerability in rdpwritelogoninfov2 allows a malicious RDP server to crash FreeRDP proxy by sending a specially crafted LogonInfoV2 PDU with cbDomain=0 or cbUserName=0...

7.5CVSS5.8AI score0.00467EPSS

Exploits0References6

RedHat Linux•added 2026/04/07 12:25 p.m.•5 views

Important: Red Hat Security Advisory: freerdp security update

An update for freerdp is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

9.8CVSS6.5AI score0.00534EPSS

Exploits5References15

OSV•added 2026/04/07 11:9 a.m.•5 views

SUSE-SU-2026:21031-1 Security update for expat

This update for expat fixes the following issues: - CVE-2026-32776: NULL pointer dereference when processing empty external parameter entities inside an entity declaration value bsc1259726. - CVE-2026-32777: denial of service due to infinite loop in DTD content parsing bsc1259711. - CVE-2026-3277...

5.5CVSS5.8AI score0.00216EPSS

Exploits1References7

RedHat Linux•added 2026/04/07 7:47 a.m.•8 views

freerdp: FreeRDP has a NULL Pointer Dereference in rdp_write_logon_info_v2()

7.5CVSS5.8AI score0.00467EPSS

Exploits0References6

OSV•added 2026/04/07 12:0 a.m.•8 views

UBUNTU-CVE-2026-28388

Issue summary: When a delta CRL that contains a Delta CRL Indicator extension is processed a NULL pointer dereference might happen if the required CRL Number extension is missing. Impact summary: A NULL pointer dereference can trigger a crash which leads to a Denial of Service for an application...

7.5CVSS6AI score0.00885EPSS

Exploits0References5

Tenable Nessus•added 2026/04/07 12:0 a.m.•7 views

VMware Workstation 17.x, 25H2 < 25H2u1 NULL Pointer Dereference (VMSA-2026-0002)

The version of VMware Workstation installed on the remote host is 17.x, 25H2.x prior to 25H2u1. It is, therefore, affected by a vulnerability: - A malicious actor with authenticated user privileges on a Windows based Workstation host may be able to cause a null pointer dereference error...

6.1CVSS5.9AI score0.00148EPSS

Snyk•added 2026/04/07 12:0 a.m.•2 views

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference via the archiveaclfromtextnl function. An attacker can cause applications to crash by supplying a specially crafted archive containing a malformed ACL string. Remediation There is no fixed version for libarchive...

6.8CVSS5.7AI score0.00163EPSS

Tenable Nessus•added 2026/04/07 12:0 a.m.•7 views

SUSE SLES15 Security Update : kernel RT (Live Patch 9 for SUSE Linux Enterprise 15 SP7) (SUSE-SU-2026:1187-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1187-1 advisory. This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.7.31 fixes various security issues The following security issues were fixed: -...

7.8CVSS6AI score0.00236EPSS

Exploits6References12

CNNVD•added 2026/04/07 12:0 a.m.•9 views

libarchive 代码问题漏洞

Libarchive is an open-source multi-format archiving and compression library developed by Libarchive. There are code issues in Libarchive, specifically a vulnerability related to ACL parsing logic. This vulnerability involves null pointer dereferencing, which may cause applications to crash or...