CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

22 matches found

RedhatCVE•added 2026/06/11 2:59 a.m.•10 views

CVE-2026-46411

FlashMQ is a MQTT broker/server, designed for multi-CPU environments. Prior to version 1.26.2, authorized clients have the ability to exceed the permitted over-commit of their write buffer and triggering an internal safe-guard exception. This exception was in a path that was not catchable, and...

6.5CVSS5.7AI score0.00301EPSS

Exploits0References1

NVD•added 2026/06/10 12:16 a.m.•12 views

CVE-2026-46411

6.5CVSS0.00301EPSS

Exploits0References3

Cvelist•added 2026/06/09 11:1 p.m.•28 views

CVE-2026-46411 FlashMQ: Client can trigger uncaught exception on FlashMQ 1.26.1 and older

6.5CVSS0.00301EPSS

Exploits0References3

Vulnrichment•added 2026/06/09 11:1 p.m.•6 views

CVE-2026-46411 FlashMQ: Client can trigger uncaught exception on FlashMQ 1.26.1 and older

6.5CVSS5.6AI score0.00301EPSS

Exploits0References3

EUVD•added 2026/06/09 11:1 p.m.•8 views

EUVD-2026-35872

6.5CVSS5.6AI score0.00301EPSS

Exploits0References3

Positive Technologies•added 2026/06/09 12:0 a.m.•11 views

PT-2026-48296

6.5CVSS5.6AI score0.00301EPSS

Exploits0References4

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в isc-dhcp

In ISC DHCP 4.4.0 - 4.4.3, and ISC DHCP 4.1-ESV-R1 - 4.1-ESV-R16-P1, when the function optioncodehashlookup is called from addOption, it increments the refcount field of the option. However, there is no corresponding call to optiondereference to decrement the refcount field. The function addOptio...

6.5CVSS6.8AI score0.00664EPSS

Exploits0References2

OSV•added 2026/02/23 8:28 p.m.•2 views

ALPINE-CVE-2026-27623

Valkey is a distributed key-value database. Starting in version 9.0.0 and prior to version 9.0.3, a malicious actor with network access to Valkey can cause the system to abort by triggering an assertion. When processing incoming requests, the Valkey system does not properly reset the networking...

7.5CVSS5.9AI score0.00269EPSS

Exploits0References1

NVD•added 2026/02/23 8:28 p.m.•8 views

CVE-2026-27623

7.5CVSS0.00269EPSS

Exploits0References1

OSV•added 2026/02/18 4:22 p.m.•4 views

UBUNTU-CVE-2026-23220

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix infinite loop caused by nextsmb2rcvhdroff reset in error paths The problem occurs when a signed request fails smb2 signature verification check. In processrequest, if checksignreq returns an error, setsmb2rspstatuswork...

5.5CVSS5.7AI score0.00118EPSS

Exploits0References6

OSV•added 2026/02/18 2:53 p.m.•4 views

CVE-2026-23220 ksmbd: fix infinite loop caused by next_smb2_rcv_hdr_off reset in error paths

5.5CVSS5.3AI score0.00118EPSS

Exploits0References9

Amazon•added 2025/02/25 12:0 a.m.•5 views

Important: ecs-service-connect-agent

Issue Overview: Envoy is a cloud-native high-performance edge/middle/service proxy. In affected versions sendOverloadError is going to assume the active request exists when envoy.loadshedpoints.http1serverabortdispatch is configured. If activerequest is nullptr, only onMessageBeginImpl is called...

7.5CVSS6.8AI score0.00687EPSS

Exploits1

RedHat Linux•added 2023/05/16 8:42 a.m.•5 views

dhcp: option refcount overflow when leasequery is enabled leading to dhcpd abort

An integer overflow vulnerability was found in the DHCP server. When the "optioncodehashlookup" function is called from "addoption", it increases the option's "refcount" field. However, there is not a corresponding call to "optiondereference" to decrement the "refcount" field. The "addoption"...

6.5CVSS7.4AI score0.00664EPSS

Exploits0References5

Prion•added 2022/10/07 5:15 a.m.•27 views

Code injection

In ISC DHCP 4.4.0 - 4.4.3, ISC DHCP 4.1-ESV-R1 - 4.1-ESV-R16-P1, when the function optioncodehashlookup is called from addoption, it increases the option's refcount field. However, there is not a corresponding call to optiondereference to decrement the refcount field. The function addoption is on...

3.3CVSS6.4AI score0.00664EPSS

Exploits0References6Affected Software3

CVE•added 2022/10/07 4:45 a.m.•279 views

CVE-2022-2928

CVE-2022-2928 affects ISC DHCP (versions including 4.4.0–4.4.3 and 4.1-ESV-R1–4.1-ESV-R16-P1). Root cause: option_code_hash_lookup() increments an option’s refcount in add_option() without a corresponding option_dereference(), and add_option() is invoked for multiple options in lease query respon...

6.5CVSS6.8AI score0.00664EPSS

Exploits0References6Affected Software1

AlpineLinux•added 2022/10/07 4:45 a.m.•35 views

CVE-2022-2928

6.5CVSS6.9AI score0.00664EPSS

Exploits0References10

Tenable Nessus•added 2022/10/07 12:0 a.m.•19 views

Debian DSA-5251-1 : isc-dhcp - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5251 advisory. Several vulnerabilities have been discovered in the ISC DHCP client, relay and server. CVE-2022-2928 It was discovered that the DHCP server does not correctly...

6.5CVSS6.9AI score0.00664EPSS

Exploits0References8

UbuntuCve•added 2022/10/05 12:0 a.m.•35 views

CVE-2022-2928

6.5CVSS6.8AI score0.00664EPSS

Exploits0References6

OSV•added 2022/10/05 12:0 a.m.•2 views

UBUNTU-CVE-2022-2928

6.5CVSS6.8AI score0.00664EPSS

Exploits0References7

OSV•added 2019/04/10 10:29 p.m.•3 views

DEBIAN-CVE-2019-11072

lighttpd before 1.4.54 has a signed integer overflow, which might allow remote attackers to cause a denial of service application crash or possibly have unspecified other impact via a malicious HTTP GET request, as demonstrated by mishandling of /%2F? in burlnormalize2Ftoslashfix in burl.c. NOTE:...

9.8CVSS7.6AI score0.73762EPSS

Exploits1References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by