CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

161 matches found

Positive Technologies•added 2026/05/15 12:0 a.m.•5 views

PT-2026-41323

Name of the Vulnerable Software and Affected Versions radare2 version 6.1.5 Description A use-after-free issue exists in the gdbr threads list function. This occurs when a valid qfThreadInfo response is followed by a malformed qsThreadInfo response, allowing remote attackers to trigger memory...

9.8CVSS6.2AI score0.00399EPSS

Exploits1References7

OSV•added 2026/04/16 11:50 p.m.•2 views

BIT-PYTHON-2026-5713 Out-of-bounds read/write during remote profiling and asyncio process introspection when connecting to malicious target

The "profiling.sampling" module Python 3.15+ and "asyncio introspection capabilities" 3.14+, "python -m asyncio ps" and "python -m asyncio pstree" features could be used to read and write addresses in a privileged process if that process connected to a malicious or "infected" Python process via t...

5.3CVSS5.7AI score0.00018EPSS

Exploits0References6

SUSE CVE•added 2026/04/15 1:42 p.m.•5 views

SUSE CVE-2026-5713

6CVSS5.8AI score0.00018EPSS

Exploits0References3

RedhatCVE•added 2026/04/14 9:25 p.m.•5 views

CVE-2026-5713

A flaw was found in Python. A malicious Python process could exploit the "profiling.sampling" module and "asyncio introspection capabilities" to read and write memory addresses within a privileged process. This vulnerability occurs when the privileged process connects to the malicious process via...

6CVSS6AI score0.00018EPSS

Exploits0References6

EUVD•added 2026/04/14 6:30 p.m.•4 views

EUVD-2026-22311

The Python remote debugging feature could be used to read and write addresses in a privileged process if that process connected to a malicious or "infected" Python process via the remote debugging feature. This vulnerability requires persistently and repeatedly connecting to the process to be...

5.3CVSS5.8AI score0.00018EPSS

Exploits0References5

OSV•added 2026/04/14 4:16 p.m.•3 views

DEBIAN-CVE-2026-5713

5.3CVSS5.4AI score0.00018EPSS

Exploits0References1

NVD•added 2026/04/14 4:16 p.m.•3 views

CVE-2026-5713

5.3CVSS0.00018EPSS

Exploits0References5

OSV•added 2026/04/14 4:16 p.m.•4 views

UBUNTU-CVE-2026-5713

5.3CVSS5.8AI score0.00018EPSS

Exploits0References6

UbuntuCve•added 2026/04/14 4:16 p.m.•3 views

CVE-2026-5713

5.3CVSS5.8AI score0.00018EPSS

Exploits0References5

Cvelist•added 2026/04/14 3:11 p.m.•21 views

CVE-2026-5713 Out-of-bounds read/write during remote profiling and asyncio process introspection when connecting to malicious target

5.3CVSS0.00018EPSS

Exploits0References4

Snyk•added 2026/04/14 3:11 p.m.•4 views

Stack-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Stack-based Buffer Overflow in the profiling.sampling module of asyncio introspection capabilities feature when a privileged process connects to a malicious process via the remote debugging tool. An attacker can read and write memory...

6CVSS6AI score0.00018EPSS

Exploits0References2

Debian CVE•added 2026/04/14 3:11 p.m.•4 views

CVE-2026-5713

5.3CVSS5.3AI score0.00018EPSS

Exploits0

CVE•added 2026/04/14 3:11 p.m.•11 views

CVE-2026-5713

The CVE-2026-5713 entry covers a vulnerability in Python related to the profiling.sampling module (Python 3.15+) and asyncio introspection capabilities (3.14+). The issue enables out-of-bounds read/write in a privileged process when that process is connected to a malicious or infected Python proc...

5.3CVSS5.8AI score0.00018EPSS

Exploits0References5

OSV•added 2026/04/14 3:11 p.m.•4 views

PSF-2026-19

5.3CVSS5.8AI score0.00018EPSS

Exploits0References4

Vulnrichment•added 2026/04/14 3:11 p.m.•2 views

CVE-2026-5713 Out-of-bounds read/write during remote profiling and asyncio process introspection when connecting to malicious target

5.3CVSS5.8AI score0.00018EPSS

Exploits0References4

Tenable Nessus•added 2026/04/14 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2026-5713

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The profiling.sampling module Python 3.15+ and asyncio introspection capabilities 3.14+, python -m asyncio ps and python -m asyncio pstree features could be use...

5.3CVSS5.8AI score0.00018EPSS

Exploits0References3

Positive Technologies•added 2026/04/14 12:0 a.m.•1 views

PT-2026-32696

Name of the Vulnerable Software and Affected Versions CPython versions 3.14 and later Description The profiling.sampling module and asyncio introspection capabilities, specifically the 'python -m asyncio ps' and 'python -m asyncio pstree' commands, allow for out-of-bounds read and write operation...

5.3CVSS5.8AI score0.00018EPSS

Exploits0References25

ATTACKERKB•added 2026/03/29 12:44 p.m.•3 views

CVE-2026-32972

OpenClaw before 2026.3.11 contains an authorization bypass vulnerability allowing authenticated operators with only operator.write permission to access admin-only browser profile management routes through browser.request. Attackers can create or modify browser profiles and persist...

7.1CVSS5.9AI score0.00016EPSS

Exploits0References3

Cvelist•added 2026/03/29 12:44 p.m.•17 views

CVE-2026-32972 OpenClaw < 2026.3.11 - Authorization Bypass in Browser Profile Management via browser.request

7.1CVSS0.00016EPSS

Exploits0References2