CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2026/04/17 10:32 a.m.•3 views

CLSA-2026-1776421961 libwebp: Fix of 2 CVEs

CVE-2018-25013, CVE-2018-25014: wait for all threads to be done in DecodeRemaining, make sure partition 0 is read before VP8 data...

9.8CVSS5.8AI score0.00575EPSS

Tenable Nessus•added 2026/04/17 12:0 a.m.•2 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007268)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007268 advisory. In the Linux kernel, the following vulnerability has been resolved: vfio/pci: Create persistent INTx handler A vulnerability exists where the eventfd for INTx...

5.5CVSS6AI score0.00013EPSS

Exploits0References4

Tenable Nessus•added 2026/04/17 12:0 a.m.•2 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007419)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007419 advisory. In the Linux kernel, the following vulnerability has been resolved: PM / devfreq: Synchronize devfreqmonitorstart/stop There is a chance if a frequent switch of the...

5.5CVSS6.4AI score0.00024EPSS

Exploits0References3

Tenable Nessus•added 2026/04/16 12:0 a.m.•3 views

SUSE SLED15 / SLES15 Security Update : xwayland (SUSE-SU-2026:1328-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1328-1 advisory. - CVE-2026-33999: XKB integer underflow in XkbSetCompatMap bsc1260922. - CVE-2026-34000: XKB out-of-bounds rea...

9.1CVSS6AI score0.00027EPSS

Exploits0References16

Tenable Nessus•added 2026/04/16 12:0 a.m.•4 views

SUSE SLES15 / openSUSE 15 Security Update : xorg-x11-server (SUSE-SU-2026:1331-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1331-1 advisory. - CVE-2026-33999: XKB integer underflow in XkbSetCompatMap bsc1260922. - CVE-2026-34000: XKB out-of-bounds read in...

9.1CVSS6AI score0.00027EPSS

Exploits0References16

RedhatCVE•added 2026/04/15 7:24 p.m.•0 views

CVE-2026-32088

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Biometric Service allows an unauthorized attacker to bypass a security feature with a physical attack...

6.1CVSS6AI score0.00058EPSS

RedhatCVE•added 2026/04/15 7:24 p.m.•3 views

CVE-2026-33827

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows TCP/IP allows an unauthorized attacker to execute code over a network...

8.1CVSS6.5AI score0.00088EPSS

Exploits1References1

RedhatCVE•added 2026/04/15 7:23 p.m.•1 views

CVE-2026-32091

Concurrent execution using shared resource with improper synchronization 'race condition' in Microsoft Brokering File System allows an unauthorized attacker to elevate privileges locally...

8.4CVSS5.9AI score0.00047EPSS

RedhatCVE•added 2026/04/15 7:23 p.m.•2 views

CVE-2026-32093

Concurrent execution using shared resource with improper synchronization 'race condition' in Function Discovery Service fdwsd.dll allows an authorized attacker to elevate privileges locally...

7CVSS5.9AI score0.00063EPSS

RedhatCVE•added 2026/04/15 7:23 p.m.•2 views

CVE-2026-27927

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Projected File System allows an authorized attacker to elevate privileges locally...

RedhatCVE•added 2026/04/15 7:23 p.m.•2 views

CVE-2026-26167

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Push Notifications allows an authorized attacker to elevate privileges locally...

8.8CVSS5.9AI score0.00047EPSS

RedhatCVE•added 2026/04/14 6:40 p.m.•3 views

CVE-2026-32226

A flaw was found in .NET Framework. This vulnerability, a race condition, allows an unauthorized attacker to exploit improper synchronization when shared resources are concurrently executed. This can lead to a Denial of Service DoS over a network, making the affected system or application...

5.9CVSS5.7AI score0.00082EPSS

Exploits0References4

5.9CVSS5.9AI score0.00082EPSS

EUVD-2026-22614

Concurrent execution using shared resource with improper synchronization 'race condition' in .NET Framework allows an unauthorized attacker to deny service over a network...

EUVD-2026-22546

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Push Notifications allows an authorized attacker to elevate privileges locally...

EUVD-2026-22549

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Push Notifications allows an authorized attacker to elevate privileges locally...

EUVD•added 2026/04/14 6:30 p.m.•1 views

EUVD-2026-22553

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows User Interface Core allows an authorized attacker to elevate privileges locally...

EUVD•added 2026/04/14 6:30 p.m.•1 views

EUVD-2026-22520

Concurrent execution using shared resource with improper synchronization 'race condition' in Function Discovery Service fdwsd.dll allows an authorized attacker to elevate privileges locally...

7CVSS5.9AI score0.00047EPSS

EUVD-2026-22529

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Speech Brokered Api allows an authorized attacker to elevate privileges locally...