CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2026/06/10 9:0 p.m.•8 views

CVE-2026-34702

7.8CVSS6.2AI score0.00175EPSS

RedhatCVE•added 2026/06/10 9:0 p.m.•6 views

CVE-2026-34708

InCopy versions 21.3, 20.5.3 and earlier are affected by a Stack-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.2AI score0.00175EPSS

Cvelist•added 2026/06/10 8:28 p.m.•25 views

CVE-2026-46689 Kanidm: Unauthenticated process abort via SCIM filter stack exhaustion

Kanidm is an identity management platform. Prior to version 1.9.3, a single unauthenticated GET to any /scim/v1/... endpoint with a ?filter= query string of a few thousand nested parentheses ≈ 4–12 KB drives the recursive-descent PEG parser past the worker thread's stack guard page. Rust responds...

8.7CVSS0.00317EPSS

Exploits0References2

EUVD•added 2026/06/10 8:28 p.m.•7 views

EUVD-2026-36133

8.7CVSS5.4AI score0.00317EPSS

Exploits0References2

CVE•added 2026/06/10 8:28 p.m.•15 views

CVE-2026-46689

Kanidm vuln CVE-2026-46689: An unauthenticated GET to any /scim/v1/... endpoint with a crafted ?filter= (thousands of nested parentheses, ~4–12 KB) can exhaust the parser’s stack due to an unbounded depth in the SCIM filter grammar. This causes a stack overflow and std::process::abort(), terminat...

8.7CVSS5.4AI score0.00317EPSS

Exploits0References2

NVD•added 2026/06/10 4:17 p.m.•6 views

CVE-2026-49760

Stack-based Buffer Overflow vulnerability in Erlang OTP erlinterface allows Stack-based Buffer Overflow. This vulnerability is associated with program file lib/erlinterface/src/misc/eiprintterm.c and program routine eisprintterm. The C function eisprintterm uses an internal 2000-character stack...

6.9CVSS0.00138EPSS

Vulnrichment•added 2026/06/10 2:35 p.m.•5 views

CVE-2026-49759 Stack buffer overflow in SCTP error cause parsing in inet_drv allows remote VM crash

Stack-based Buffer Overflow vulnerability in Erlang OTP erts inetdrv allows an unauthenticated remote attacker to crash the BEAM VM by sending a crafted SCTP ERROR chunk. The sctpparseerrorchunk function in erts/emulator/drivers/common/inetdrv.c parses SCTP ERROR chunks and writes cause codes int...

8.8CVSS5.6AI score0.00466EPSS

Debian CVE•added 2026/06/10 2:35 p.m.•5 views

CVE-2026-49759

8.8CVSS5.6AI score0.00466EPSS

Exploits0

Cvelist•added 2026/06/10 2:35 p.m.•27 views

CVE-2026-49759 Stack buffer overflow in SCTP error cause parsing in inet_drv allows remote VM crash

8.8CVSS0.00466EPSS

OSV•added 2026/06/10 2:35 p.m.•6 views

EEF-CVE-2026-49759 Stack buffer overflow in SCTP error cause parsing in inet_drv allows remote VM crash

Summary Stack-based Buffer Overflow vulnerability in Erlang OTP erts inet\drv allows an unauthenticated remote attacker to crash the BEAM VM by sending a crafted SCTP ERROR chunk. The sctp\parse\error\chunk function in erts/emulator/drivers/common/inet\drv.c parses SCTP ERROR chunks and writes...

8.8CVSS5.6AI score0.00466EPSS

Exploits0References4

Cvelist•added 2026/06/10 2:35 p.m.•26 views

CVE-2026-49760 Stack Buffer Overflow in ei_s_print_term at Very Large Integer

6.9CVSS0.00138EPSS

CVE•added 2026/06/10 2:35 p.m.•14 views

CVE-2026-49760

CVE-2026-49760 is a stack-based buffer overflow in Erlang OTP’s erl_interface ei_s_print_term due to a 2000-character local buffer when formatting very large integers. An encoded term exceeding this size can overflow the buffer, with overflow bytes limited to ASCII 0-9 and A-F, restricting practi...

Exploits0References5Affected Software2

EUVD•added 2026/06/10 2:35 p.m.•10 views

EUVD-2026-36052

Vulnrichment•added 2026/06/10 2:35 p.m.•9 views

CVE-2026-49760 Stack Buffer Overflow in ei_s_print_term at Very Large Integer

OSV•added 2026/06/10 2:35 p.m.•7 views

EEF-CVE-2026-49760 Stack Buffer Overflow in ei_s_print_term at Very Large Integer

Summary Stack-based Buffer Overflow vulnerability in Erlang OTP erl\interface allows Stack-based Buffer Overflow. This vulnerability is associated with program file lib/erl\interface/src/misc/ei\printterm.c and program routine ei\s\print\term. The C function ei\s\print\term uses an internal...

RedHat Linux•added 2026/06/10 12:31 p.m.•6 views

Exploits0References4

ngtcp2: ngtcp2: Denial of service via stack buffer overflow during QUIC handshake

A flaw was found in ngtcp2, a C implementation of the IETF QUIC Quick UDP Internet Connections protocol. A remote attacker can exploit a stack buffer overflow vulnerability by sending specially crafted, large transport parameters during the QUIC handshake. This occurs when the qlog callback is...

7.5CVSS5.7AI score0.00579EPSS

Exploits1References6

OSV•added 2026/06/10 10:12 a.m.•6 views

BIT-LIBPYTHON-2026-9669 bz2.BZ2Decompressor reuse after error can cause a stack buffer overflow

bz2.BZ2Decompressor objects could be reused after a decompression error. If an application caught the resulting OSError and retried with the same decompressor, crafted input could cause the decompressor to resume from an invalid internal state and perform out-of-bounds writes to a stack buffer...

8.2CVSS5.4AI score0.00375EPSS

Exploits0References9

RedhatCVE•added 2026/06/10 3:0 a.m.•6 views

CVE-2026-36794

Shenzhen Tenda Technology Co., Ltd Tenda W3 Wireless Router v1.0.0.32204 was discovered to contain multiple stack overflows in the R7WebsSecurityHandler function via the username and password parameters. These vulnerabilities allow attackers to cause a Denial of Service DoS via a crafted HTTP...

7.5CVSS5.5AI score0.00397EPSS

RedhatCVE•added 2026/06/10 3:0 a.m.•7 views

CVE-2026-36796

Shenzhen Tenda Technology Co., Ltd Tenda G0 v15.11.0.5 was discovered to contain a stack overflow in the picCropName parameter of the formCropAndSetWewifiPic function. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted HTTP request...

7.5CVSS5.5AI score0.00397EPSS