CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

292 matches found

AstraLinux•added 2026/05/03 11:59 p.m.•5 views

Astra Linux - уязвимость в binutils

A vulnerability, classified as critical, was discovered in GNU Binutils 2.43. The affected function is bfdelfrelocsymboldeletedp in the file bfd/elflink.c of the ld component. This manipulation leads to memory corruption. The attack can be launched remotely. The complexity of the attack is...

5.1CVSS5.5AI score0.00104EPSS

Exploits1References2

EUVD•added 2026/05/01 9:30 p.m.•2 views

EUVD-2026-26722

A security vulnerability has been detected in libssh2 up to 1.11.1. The impacted element is the function userauthpassword of the file src/userauth.c. Such manipulation of the argument usernamelen/passwordlen leads to integer overflow. The attack may be launched remotely. The name of the patch is...

7.5CVSS5.8AI score0.00075EPSS

Exploits0References6

UbuntuCve•added 2026/02/25 3:16 a.m.•3 views

CVE-2026-3146

A vulnerability has been found in libvips up to 8.18.0. The impacted element is the function vipsforeignloadmatrixheader of the file libvips/foreign/matrixload.c. The manipulation leads to null pointer dereference. The attack needs to be performed locally. The identifier of the patch is...

5.5CVSS5.3AI score0.00016EPSS

Exploits1References8

OSV•added 2026/01/10 2:15 p.m.•3 views

CVE-2026-0822

A vulnerability was identified in quickjs-ng quickjs up to 0.11.0. This issue affects the function jstypedarraysort of the file quickjs.c. The manipulation leads to heap-based buffer overflow. Remote exploitation of the attack is possible. The exploit is publicly available and might be used. The...

8.8CVSS6.5AI score

Exploits0References8

RedhatCVE•added 2026/01/09 8:44 a.m.•6 views

CVE-2022-23644

BookWyrm is a decentralized social network for tracking reading habits and reviewing books. The functionality to load a cover via url is vulnerable to a server-side request forgery attack. Any BookWyrm instance running a version prior to v0.3.0 is susceptible to attack from a logged-in user. The...

8.8CVSS6.8AI score0.00299EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:17 a.m.•10 views

CVE-2025-1893

A vulnerability was found in Open5GS up to 2.7.2. It has been declared as problematic. Affected by this vulnerability is the function gmmstateauthentication of the file src/amf/gmm-sm.c of the component AMF. The manipulation leads to denial of service. The attack can be launched remotely. This...

7.5CVSS7AI score0.00051EPSS

Exploits1References1

Positive Technologies•added 2026/01/01 12:0 a.m.•3 views

PT-2026-20305

Name of the Vulnerable Software and Affected Versions Rack versions prior to 2.2.22 Rack versions prior to 3.1.20 Rack versions prior to 3.2.5 Description The Rack::Directory component had a path check that used a string prefix match on the expanded path. A crafted request, such as /../root...

10CVSS5.5AI score0.16071EPSS

Exploits6References55

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2016-4367

Malware in sbrugna...

9.3CVSS7.7AI score0.05377EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2015-6489

Malware in sbrugna...

10CVSS9.5AI score0.03012EPSS

Exploits0References3