CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

106097 matches found

GithubExploit•added 2026/06/05 9:21 a.m.•56 views

Drift-Protocol-Exploit-2026

Case Study: Drift Protocol $285M Logic Exploit April 2026 A...

6AI score

Exploits0

F5 Networks•added 2026/06/05 6:59 a.m.•23 views

K000161596: Multiple Apache Tomcat vulnerabilities

Security Advisory Description CVE-2026-25854 Occasional URL redirection to untrusted Site 'Open Redirect' vulnerability in Apache Tomcat via the LoadBalancerDrainingValve. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.18, from 10.1.0-M1 through 10.1.52, from 9.0.0.M23 through...

9.1CVSS5.8AI score0.03645EPSS

Exploits2

Oracle linux•added 2026/06/05 12:0 a.m.•11 views

kernel security update

4.18.0-553.129.1 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list olkmodsigningkey.pem Orabug: 29539237 - Update x509.genkey Orabug: 24817676 - Conflict with shim-ia32 and...

7.8CVSS5.6AI score0.0031EPSS

Exploits4

Tenable Nessus•added 2026/06/05 12:0 a.m.•17 views

Oracle Database Server (May 2026 CSPU)

The versions of Oracle Database Server installed on the remote host are affected by multiple vulnerabilities as referenced in the May 2026 CSPU advisory. - Vulnerability in the Net Service component of Oracle Database Server. Supported versions that are affected are 23.4.0-23.26.2. Difficult to...

9CVSS5.6AI score0.00328EPSS

Exploits0References4

Tenable Nessus•added 2026/06/05 12:0 a.m.•10 views

Oracle Linux 8 : bind9.16 (ELSA-2026-23360)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-23360 advisory. - Fix GSS-API resource leak CVE-2026-3039 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. Note...

7.5CVSS5.6AI score0.00966EPSS

Exploits0References3

Tenable Nessus•added 2026/06/05 12:0 a.m.•7 views

Oracle REST Data Services (CSPU May 2026)

The version of Oracle REST Data Services ORDS installed on the remote host is 24.2.0 through 26.1.0. It is, therefore, affected by multiple vulnerabilities as referenced in the May 2026 Critical Security Patch Update CSPU advisory. - Vulnerability in Oracle REST Data Services component:...

10CVSS5.6AI score0.00725EPSS

Exploits1References12

Tenable Nessus•added 2026/06/05 12:0 a.m.•11 views

Oracle Linux 8 : kernel (ELSA-2026-23258)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-23258 advisory. - smb: client: reject userspace cifs.spnego descriptions Paulo Alcantara RHEL-178938 CVE-2026-46243 - smb: client: fix OOB reads parsing symlink error response...

9.8CVSS6.2AI score0.00378EPSS

Exploits4References2

OSV•added 2026/06/04 7:50 p.m.•7 views

GHSA-XGX4-4H9W-53PV AdGuard Home: DoQ-to-UDP State Reduction and Source-Port Oracle

Summary This report covers the client-triggered DoQ forwarding path in: - dnsproxy v0.81.2 adguard/dnsproxy:v0.81.2 - AdGuard Home v0.107.74 adguard/adguardhome:latest, image version label v0.107.74 The issue was reproduced on 2026-04-25 with the products configured through their documented DoQ...

6.9CVSS5.7AI score0.00047EPSS

Exploits0References3

Github Security Blog•added 2026/06/04 7:50 p.m.•15 views

AdGuard Home: DoQ-to-UDP State Reduction and Source-Port Oracle

5.7AI score0.00047EPSS

Exploits0References3Affected Software2

RedHat Linux•added 2026/06/04 3:20 p.m.•7 views

mysql: DML unspecified vulnerability (CPU Apr 2026)

Oracle CPU describes the issue as following: Vulnerability in the MySQL Server product of Oracle MySQL component: Server: DML. Supported versions that are affected are 8.0.0-8.0.45, 8.4.0-8.4.8 and 9.0.0-9.6.0. Easily exploitable vulnerability allows high privileged attacker with network access v...

4.9CVSS5.8AI score0.00242EPSS

Exploits0References6

RedHat Linux•added 2026/06/04 3:20 p.m.•5 views