CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

23284 matches found

OSV•added 2026/01/05 12:0 a.m.•2 views

UBUNTU-CVE-2026-21444

libtpms, a library that provides software emulation of a Trusted Platform Module, has a flaw in versions 0.10.0 and 0.10.1. The commonly used integration of libtpms with OpenSSL 3.x contained a vulnerability related to the returned IV initialization vector when certain symmetric ciphers were used...

5.5CVSS5.8AI score0.0007EPSS

Exploits1References5

NVD•added 2026/01/02 7:15 p.m.•3 views

CVE-2026-21444

5.5CVSS0.0007EPSS

Exploits1References3

Cvelist•added 2026/01/02 7:5 p.m.•31 views

CVE-2026-21444 libtpms returns wrong initialization vector when certain symmetric ciphers are used

5.5CVSS0.0007EPSS

Exploits1References3

EUVD•added 2026/01/02 7:5 p.m.•6 views

EUVD-2026-0753

5.5CVSS6.3AI score0.0007EPSS

Exploits1References3

Vulnrichment•added 2026/01/02 7:5 p.m.•1 views

CVE-2026-21444 libtpms returns wrong initialization vector when certain symmetric ciphers are used

5.5CVSS6.5AI score0.0007EPSS

Exploits1References3

OSV•added 2026/01/02 7:5 p.m.•5 views

CVE-2026-21444 libtpms returns wrong initialization vector when certain symmetric ciphers are used

5.5CVSS6.5AI score0.0007EPSS

Exploits1References5

Positive Technologies•added 2026/01/02 12:0 a.m.•6 views

PT-2026-1122

Name of the Vulnerable Software and Affected Versions libtpms versions 0.10.0 through 0.10.1 Description libtpms, a library providing software emulation of a Trusted Platform Module, contains a flaw impacting data confidentiality. When integrated with OpenSSL 3.x, the library incorrectly returns...

5.5CVSS6.7AI score0.0007EPSS

Exploits1References22

Tenable Nessus•added 2026/01/02 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2026-21444

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libtpms, a library that provides software emulation of a Trusted Platform Module, has a flaw in versions 0.10.0 and 0.10.1. The commonly used integration of...

5.5CVSS5.5AI score0.0007EPSS

Exploits1References2

Positive Technologies•added 2026/01/01 12:0 a.m.•5 views

PT-2026-20455

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's virtio crypto component related to spinlock protection when handling virtqueue notifications. Specifically, when a virtual machine boots with a single...

5.5CVSS5.2AI score0.00121EPSS

Exploits0

Tenable Nessus•added 2025/12/31 12:0 a.m.•6 views

Unity Linux 20.1070e Security Update: glib-networking (UTSA-2025-993332)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993332 advisory. glib-networking's OpenSSL backend fails to properly check the return value of a call to BIOwrite, resulting in an out of bounds read. Tenable has extracted the...

4.8CVSS5.5AI score0.00288EPSS

Exploits0References4

OpenVAS•added 2025/12/31 12:0 a.m.•5 views

Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2025-2613)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.01744EPSS

Exploits0References2

OpenVAS•added 2025/12/31 12:0 a.m.•3 views

Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2025-2627)

7.5CVSS6.7AI score0.01744EPSS

Exploits0References2

OSV•added 2025/12/30 12:17 p.m.•3 views

OESA-2025-2897 compat-openssl11 security update

OpenSSL is a robust, commercial-grade, and full-featured toolkit for the Transport Layer Security TLS and Secure Sockets Layer SSL protocols. Security Fixes: Issue summary: An application trying to decrypt CMS messages encrypted using password based encryption can trigger an out-of-bounds read an...

7.5CVSS7.2AI score0.01744EPSS

Exploits0References2

Debian•added 2025/12/30 5:46 a.m.•6 views

[SECURITY] [DLA 4426-1] osslsigncode security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-4426-1 [email protected] https://www.debian.org/lts/security/ Abhijith PA December 30, 2025 https://wiki.debian.org/LTS -...

7.8CVSS7.4AI score0.00286EPSS

Exploits0

GithubExploit•added 2025/12/27 10:6 a.m.•173 views

Exploit for Deserialization of Untrusted Data in Facebook React

🎯 CVE-2025-55182-advanced-scanner- - Detect and Exploit Vulner...

10CVSS7.5AI score0.99562EPSS

Exploits370

RedhatCVE•added 2025/12/24 10:29 p.m.•3 views

CVE-2025-14406

Soda PDF Desktop Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of Soda PDF Desktop. An attacker must first obtain the ability to execute low-privileged code on the target system...

7.8CVSS7.8AI score0.00138EPSS

Exploits0References1

EUVD•added 2025/12/24 12:30 a.m.•6 views

EUVD-2025-205001

PDFsam Enhanced Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows phyiscally-present attackers to escalate privileges on affected installations of PDFsam Enhanced. An attacker must first obtain the ability to mount a malicious drive onto the targ...

6.6CVSS7.1AI score0.00278EPSS

Exploits0References2

OSV•added 2025/12/23 10:15 p.m.•2 views

CVE-2025-14405

6.8CVSS6.1AI score0.00278EPSS

Exploits0References1

NVD•added 2025/12/23 10:15 p.m.•5 views

CVE-2025-14405

6.8CVSS0.00278EPSS

Exploits0References1

Vulnrichment•added 2025/12/23 9:23 p.m.•3 views

CVE-2025-14406 Soda PDF Desktop Uncontrolled Search Path Element Local Privilege Escalation Vulnerability