CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

23276 matches found

RedhatCVE•added 2026/04/13 5:10 a.m.•3 views

CVE-2026-31789

A flaw was found in OpenSSL. This vulnerability, a heap buffer overflow, affects 32-bit systems when processing an unusually large X.509 certificate. If an application or service attempts to print or log such a specially crafted certificate, it could lead to a system crash or potentially allow an...

9.8CVSS6.1AI score0.00225EPSS

Exploits0References3

Tenable Nessus•added 2026/04/13 12:0 a.m.•17 views

Amazon Linux 2023 : openssl, openssl-devel, openssl-fips-provider-latest (ALAS2023-2026-1586)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1586 advisory. Potential use-after-free in DANE client code CVE-2026-28387 NULL Pointer Dereference When Processing a Delta CRL NOTE: https://openssl-library.org/news/secadv/20260407.txt CVE-2026-28388...

8.1CVSS7.4AI score0.00981EPSS

Exploits0References12

Tenable Nessus•added 2026/04/13 12:0 a.m.•14 views

Ubuntu 22.04 LTS / 24.04 LTS / 25.10 : OpenSSL vulnerabilities (USN-8155-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8155-1 advisory. Viktor Dukhovni discovered that OpenSSL incorrectly negotiated the expected preferred key exchange group when used as a TLS 1.3 serve...

9.8CVSS8.4AI score0.00981EPSS

Exploits0References8

Amazon•added 2026/04/13 12:0 a.m.•7 views

Important: openssl

Issue Overview: Potential use-after-free in DANE client code CVE-2026-28387 NULL Pointer Dereference When Processing a Delta CRL NOTE: https://openssl-library.org/news/secadv/20260407.txt CVE-2026-28388 Possible NULL dereference when processing CMS KeyAgreeRecipientInfo CVE-2026-28389 Possible NU...

7.5CVSS5.9AI score0.00981EPSS

Exploits0

OpenVAS•added 2026/04/13 12:0 a.m.•4 views

Ubuntu: Security Advisory (USN-8155-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS7.2AI score0.00981EPSS

Exploits0References2

OpenVAS•added 2026/04/13 12:0 a.m.•5 views

SUSE: Security Advisory (SUSE-SU-2026:1256-1)

9.8CVSS5.8AI score0.00981EPSS

Exploits0References8

OpenVAS•added 2026/04/13 12:0 a.m.•5 views

SUSE: Security Advisory (SUSE-SU-2026:1255-1)

9.8CVSS5.8AI score0.00885EPSS

Exploits0References7

OpenVAS•added 2026/04/13 12:0 a.m.•4 views

SUSE: Security Advisory (SUSE-SU-2026:1257-1)

9.8CVSS5.8AI score0.00981EPSS

Exploits0References8

OpenVAS•added 2026/04/13 12:0 a.m.•4 views

Mageia: Security Advisory (MGASA-2026-0091)

9.8CVSS5.8AI score0.00981EPSS

Exploits0References4

OpenVAS•added 2026/04/13 12:0 a.m.•3 views

Slackware: Security Advisory (SSA:2026-101-01)

8.1CVSS5.8AI score0.00885EPSS

Exploits0References10

Slackware Linux•added 2026/04/11 9:10 p.m.•6 views

[slackware-security] openssl

New openssl packages are available for Slackware 15.0 and -current to fix security issues. Here are the details from the Slackware 15.0 ChangeLog: patches/packages/openssl-1.1.1zg-i586-1slack15.0.txz: Upgraded. Apply patch to fix the following security issues: Potential Use-after-free in DANE...

8.1CVSS5.8AI score0.00885EPSS

Exploits0

NVD•added 2026/04/11 1:16 a.m.•4 views

CVE-2026-4158

KeePassXC OpenSSL Configuration Uncontrolled Search Path Element Local Privilege Escalation Vulnerability. This vulnerability allows local attackers to escalate privileges on affected installations of KeePassXC. An attacker must first obtain the ability to execute low-privileged code on the targe...

7.3CVSS0.00226EPSS

Exploits0References2

UbuntuCve•added 2026/04/11 1:16 a.m.•2 views

CVE-2026-4158

7.3CVSS7.4AI score0.00226EPSS

Exploits0References3

OSV•added 2026/04/11 1:16 a.m.•2 views

UBUNTU-CVE-2026-4158

7.3CVSS6.2AI score0.00226EPSS

Exploits0References4

Cvelist•added 2026/04/11 12:17 a.m.•31 views

CVE-2026-4158 KeePassXC OpenSSL Configuration Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

7.3CVSS0.00226EPSS

Exploits0References2

ATTACKERKB•added 2026/04/11 12:17 a.m.•3 views

CVE-2026-4158

7.3CVSS7.5AI score0.00226EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2026/04/11 12:17 a.m.•2 views

CVE-2026-4158 KeePassXC OpenSSL Configuration Uncontrolled Search Path Element Local Privilege Escalation Vulnerability

7.3CVSS6.2AI score0.00226EPSS

Exploits0References2

EUVD•added 2026/04/11 12:17 a.m.•2 views

EUVD-2026-21645

7.3CVSS7.5AI score0.00226EPSS

Exploits0References2

Debian CVE•added 2026/04/11 12:17 a.m.•1 views

CVE-2026-4158

7.3CVSS7.8AI score0.00226EPSS

Exploits0

CVE•added 2026/04/11 12:17 a.m.•38 views

CVE-2026-4158

CVE-2026-4158 affects KeePassXC due to an OpenSSL configuration issue where the program loads configuration from an unsecured location, enabling a local attacker who can run low-privileged code to escalate privileges and execute arbitrary code within KeePassXC. Connected documents corroborate a l...

7.3CVSS7.5AI score0.00226EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by