CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

23276 matches found

CVE•added 2026/04/10 3:7 a.m.•46 views

CVE-2026-5501

CVE-2026-5501 involves wolfSSL’s X509_verify_cert in the OpenSSL compatibility layer. The vulnerability arises when a certificate chain is presented where the leaf’s signature is not checked if an untrusted intermediate (CA:FALSE) signed by a trusted root is supplied. An attacker with any leaf ce...

8.6CVSS6AI score0.00184EPSS

Exploits0References1Affected Software1

ATTACKERKB•added 2026/04/10 3:7 a.m.•0 views

CVE-2026-5501

wolfSSLX509verifycert in the OpenSSL compatibility layer accepts a certificate chain in which the leaf's signature is not checked, if the attacker supplies an untrusted intermediate with Basic Constraints CA:FALSE that is legitimately signed by a trusted root. An attacker who obtains any leaf...

8.6CVSS6AI score0.00184EPSS

Exploits0References2

Cvelist•added 2026/04/10 3:7 a.m.•34 views

CVE-2026-5501 Improper Certificate Signature Verification in X.509 Chain Validation Allows Forged Leaf Certificates

8.6CVSS0.00184EPSS

Exploits0References1

UbuntuCve•added 2026/04/10 12:0 a.m.•1 views

CVE-2026-5501

8.6CVSS5.9AI score0.00184EPSS

Exploits0References2

OpenVAS•added 2026/04/10 12:0 a.m.•3 views

SUSE: Security Advisory (SUSE-SU-2026:1213-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS5.8AI score0.00981EPSS

Exploits0References8

OpenVAS•added 2026/04/10 12:0 a.m.•3 views

openSUSE Security Advisory (SUSE-SU-2026:1215-1)

9.8CVSS5.8AI score0.00981EPSS

Exploits0References8

OpenVAS•added 2026/04/10 12:0 a.m.•4 views

SUSE: Security Advisory (SUSE-SU-2026:1214-1)

9.8CVSS5.8AI score0.00981EPSS

Exploits0References8

OpenVAS•added 2026/04/10 12:0 a.m.•2 views

SUSE: Security Advisory (SUSE-SU-2026:1215-1)

9.8CVSS5.8AI score0.00981EPSS

Exploits0References8

OSV•added 2026/04/09 5:35 p.m.•7 views

USN-8155-2 openssl, openssl1.0 vulnerabilities

USN-8155-1 fixed vulnerabilities in OpenSSL. This update provides the corresponding updates for CVE-2026-28387 for openssl in Ubuntu 20.04 LTS. CVE-2026-28388 for openssl and openssl1.0 in Ubuntu 14.04 LTS, Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, and Ubuntu 20.04 LTS, and CVE-2026-28389 and...

8.1CVSS6AI score0.00885EPSS

Exploits0References5

Tenable Nessus•added 2026/04/09 12:0 a.m.•1 views

SUSE SLES15 Security Update : openssl-3 (SUSE-SU-2026:1213-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1213-1 advisory. - CVE-2026-28387: Potential use-after-free in DANE client code bsc1260441. - CVE-2026-28388: NULL Pointer Dereference When Processi...

9.8CVSS8.4AI score0.00981EPSS

Exploits0References16

Tenable Nessus•added 2026/04/09 12:0 a.m.•4 views

SUSE SLES15 / openSUSE 15 Security Update : openssl-3 (SUSE-SU-2026:1215-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1215-1 advisory. - CVE-2026-28387: Potential use-after-free in DANE client code bsc1260441. - CVE-2026-28388: NULL Pointer Dereference...

9.8CVSS8.4AI score0.00981EPSS

Exploits0References16

OpenVAS•added 2026/04/09 12:0 a.m.•5 views

Ubuntu: Security Advisory (USN-8155-1)

9.8CVSS5.9AI score0.00981EPSS

Exploits0References2

OpenVAS•added 2026/04/09 12:0 a.m.•10 views

SUSE: Security Advisory (SUSE-SU-2026:1192-1)

9.8CVSS6AI score0.005EPSS

Exploits0References5

GithubExploit•added 2026/04/08 11:0 p.m.•101 views

pentestfr

Pentest Framework — Kali Linux / VirtualBox Framework Python...

5.9AI score

Exploits0

OSV•added 2026/04/08 3:0 p.m.•5 views

SUSE-SU-2026:21037-1 Security update for openssl-3

This update for openssl-3 fixes the following issues: - CVE-2026-28387: Potential use-after-free in DANE client code bsc1260441. - CVE-2026-28388: NULL Pointer Dereference When Processing a Delta CRL bsc1260442. - CVE-2026-28389: Possible NULL dereference when processing CMS KeyAgreeRecipientInfo...

9.8CVSS6.1AI score0.00981EPSS

Exploits0References11

OSV•added 2026/04/08 12:28 p.m.•4 views

SUSE-SU-2026:1216-1 Security update for openssl-1_1

This update for openssl-11 fixes the following issues: - CVE-2026-28387: Potential use-after-free in DANE client code bsc1260441. - CVE-2026-28388: NULL Pointer Dereference When Processing a Delta CRL bsc1260442. - CVE-2026-28389: Possible NULL dereference when processing CMS KeyAgreeRecipientInf...

9.8CVSS6.1AI score0.00981EPSS

Exploits0References11

SUSE Linux•added 2026/04/08 12:28 p.m.•4 views

Security update for openssl-1_1

This update for openssl-11 fixes the following issues: CVE-2026-28387: Potential use-after-free in DANE client code bsc1260441. CVE-2026-28388: NULL Pointer Dereference When Processing a Delta CRL bsc1260442. CVE-2026-28389: Possible NULL dereference when processing CMS KeyAgreeRecipientInfo...

7.3CVSS6.2AI score0.00981EPSS

Exploits0References20

OSV•added 2026/04/08 12:27 p.m.•3 views

SUSE-SU-2026:1215-1 Security update for openssl-3

9.8CVSS6.1AI score0.00981EPSS

Exploits0References11

SUSE Linux•added 2026/04/08 12:27 p.m.•5 views

Security update for openssl-3

This update for openssl-3 fixes the following issues: CVE-2026-28387: Potential use-after-free in DANE client code bsc1260441. CVE-2026-28388: NULL Pointer Dereference When Processing a Delta CRL bsc1260442. CVE-2026-28389: Possible NULL dereference when processing CMS KeyAgreeRecipientInfo...

7.3CVSS6.2AI score0.00981EPSS

Exploits0References20

SUSE Linux•added 2026/04/08 12:27 p.m.•8 views

Security update for openssl-3

7.3CVSS6.2AI score0.00981EPSS

Exploits0References20

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by