CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3365 matches found

USN-8349-1: rsync vulnerabilities

Calum Hutton discovered that rsync contained a heap-based out-of-bounds read when handling file transfers. A remote attacker with read access to an rsync server could possibly use this issue to cause a denial of service. CVE-2025-10158 Batuhan Sancak, Damien Neil, and Michael Stapelberg discovere...

8.1CVSS5.9AI score0.00063EPSS

Exploits1

SUSE CVE•added 5 days ago•5 views

SUSE CVE-2026-49127

Music Player Daemon MPD before version 0.24.11 contains a stack buffer overflow vulnerability in the pcmunpack24be function in src/pcm/Pack.cxx that allows unauthenticated attackers to corrupt stack memory by triggering an off-by-one write in the PCM decoder plugin. Attackers can issue two MPD...

8.8CVSS6.1AI score0.00083EPSS

Exploits0References3

RedhatCVE•added 6 days ago•5 views

CVE-2026-49127

8.8CVSS6AI score0.00083EPSS

Exploits0References1

SUSE Linux•added 6 days ago•7 views

Security update for gnutls

This update for gnutls fixes the following issues CVE-2026-3833: x509/name-constraints: compare domain names case-insensitive bsc1263707. CVE-2026-5260: lib/pkcs11privkey: guard against overreading on short ciphertexts bsc1263715. CVE-2026-5419: gnutlscipherdecrypt3: make PKCS7 unpadding branch...

8.8CVSS5.8AI score0.00486EPSS

Exploits1References48

OSV•added 6 days ago•7 views

OESA-2026-2505 rsync security update

Rsync is an open source utility that provides fast incremental file transfer. It uses the "rsync algorithm" which provides a very fast method for bringing remote files into sync. It does this by sending just the differences in the files across the link, without requiring that both sets of files a...

8.1CVSS6AI score0.00056EPSS

Exploits0References3

OSV•added 6 days ago•4 views

OESA-2026-2503 rsync security update

8.1CVSS6AI score0.00056EPSS

Exploits0References3

SUSE CVE•added 6 days ago•10 views

SUSE CVE-2026-42250

bzip2 contains an off-by-one error in the bzip2recover utility. When processing a specially crafted file, the application performs an out-of-bounds write to a global buffer, resulting in memory corruption and a crash denial of service. This issue was fixed in bzip2 patch...

5.1CVSS5.8AI score0.00021EPSS

Exploits0References3

UbuntuCve•added 6 days ago•2 views

CVE-2026-42250

bzip2 contains an off‑by‑one error in the bzip2recover utility. When processing a specially crafted file, the application performs an out‑of‑bounds write to a global buffer, resulting in memory corruption and a crash denial of service. This issue was fixed in bzip2...

5.1CVSS5.8AI score0.00021EPSS

Exploits0References3

Tenable Nessus•added 6 days ago•10 views

AlmaLinux 9 : httpd (ALSA-2026:21391)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:21391 advisory. httpd: modproxyajp: heap-based buffer over-read and memory disclosure in ajpparsedata CVE-2026-34059 httpd: modproxyajp: heap-based buffer over-read due ...

9.8CVSS6.3AI score0.00581EPSS

Exploits0References7

Tenable Nessus•added 6 days ago•7 views

Linux Distros Unpatched Vulnerability : CVE-2026-49127

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Music Player Daemon MPD before version 0.24.11 contains a stack buffer overflow vulnerability in the pcmunpack24be function in src/pcm/Pack.cxx that allows...

8.8CVSS6.1AI score0.00083EPSS

Exploits0References3