CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

938 matches found

Ubuntu•added 2026/05/07 3:37 p.m.•4 views

USN-8260-1: Linux kernel (Azure FIPS) vulnerabilities

Josh Eads, Kristoffer Janke, Eduardo Vela Nava, Tavis Ormandy, and Matteo Rizzo discovered that some AMD Zen processors did not properly verify the signature of CPU microcode. This flaw is known as EntrySign. A privileged attacker could possibly use this issue to cause load malicious CPU microcod...

9.8CVSS6.9AI score0.00765EPSS

Exploits1

OSV•added 2026/05/07 9:47 a.m.•9 views

USN-8245-1 linux-azure, linux-azure-6.17, linux-oem-6.17 vulnerabilities

9.8CVSS6.6AI score0.00765EPSS

Exploits1References141

Schneier on Security•added 2026/04/28 11:6 a.m.•4 views

What Anthropic’s Mythos Means for the Future of Cybersecurity

Two weeks ago, Anthropic announced that its new model, Claude Mythos Preview, can autonomously find and weaponize software vulnerabilities, turning them into working exploits without expert guidance. These were vulnerabilities in key software like operating systems and internet infrastructure tha...

5.7AI score

Exploits0

CNNVD•added 2026/03/02 12:0 a.m.•2 views

Personnel Property Equipment System 安全漏洞

Personnel Property Equipment System is a personnel property equipment management system developed by Jon Remus Sevellejo. Version 1.0 of Personnel Property Equipment System has security vulnerabilities; these vulnerabilities stem from arbitrary code execution in the...

7.2CVSS6.3AI score0.00048EPSS

Exploits1References2

IBM Security Bulletins•added 2026/01/30 4:58 p.m.•11 views

Security Bulletin: Due to the use of IBM Db2, IBM Cloud Pak System is affected by multiple vulnerabilities

Summary Vulnerabilities found in IBM Db2 LUW that affect Foundation and IBM Tivoli Monitoring ITM pattern Types pTypes shipped with IBM Cloud Pak System. Vulnerabilities were addressed in IBM Cloud Pak System. IBM Cloud Pak System v2.3.6.1 has updated Foundation and ITM pTypes to Foundation versi...

7.8CVSS6.4AI score0.00953EPSS

Exploits1Affected Software3

Tenable Nessus•added 2026/01/15 12:0 a.m.•3 views

RockyLinux 8 : cups (RLSA-2026:0596)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:0596 advisory. CUPS: Local denial-of-service via cupsd.conf update and related issues CVE-2025-61915 cups: Slow client communication leads to a possible DoS attack...

6.7CVSS5.5AI score0.00048EPSS

Exploits2References5

Tenable Nessus•added 2026/01/14 12:0 a.m.•2 views

MiracleLinux 3 : cups-1.2.4-11.18.2.1AXS3 (AXSA:2008-460:04)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2008-460:04 advisory. The Common UNIX Printing System CUPS provides a portable printing layer for UNIXR operating systems. This patch fixes the following bugs: CVE-2008-36...

10CVSS7.5AI score0.51274EPSS

Exploits1References4

RedhatCVE•added 2026/01/09 9:20 a.m.•5 views

CVE-2021-33676

A missing authority check in SAP CRM, versions - 700, 701, 702, 712, 713, 714, could be leveraged by an attacker with high privileges to compromise confidentiality, integrity, or availability of the system...

7.2CVSS6.8AI score0.00237EPSS

Exploits0References1

Packet Storm News•added 2026/01/01 12:0 a.m.•1 views

Low Rank Comes with Low Security: Gradient Assembly Poisoning Attacks against Distributed LoRA-Based LLM Systems

Low-Rank Adaptation LoRA has become a popular solution for fine-tuning large language models LLMs in federated settings, dramatically reducing update costs by introducing trainable low-rank matrices. However, when integrated with frameworks like FedIT, LoRA introduces a critical vulnerability:...

7AI score

Exploits0

Tenable Nessus•added 2025/12/18 12:0 a.m.•2 views

TencentOS Server 4: cups (TSSA-2025:0956)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0956 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

6.7CVSS5.7AI score0.00048EPSS

Exploits2References3

Packet Storm News•added 2025/12/09 12:0 a.m.•2 views

Exposing Vulnerabilities in Counterfeit Prevention Systems Utilizing Physically Unclonable Surface Features

Counterfeit products pose significant risks to public health and safety through infiltrating untrusted supply chains. Among numerous anti-counterfeiting techniques, leveraging inherent, unclonable microscopic irregularities of paper surfaces is an accurate and cost-effective solution. Prior work ...

7.2AI score

Exploits0

IBM Security Bulletins•added 2025/11/11 1:52 p.m.•18 views

Security Bulletin: Multiple vulnerabilities in Open Source affect IBM Cloud Pak System

Summary Multiple vulnerabilities in Open Source affect IBM Cloud Pak System. Vulnerability Details CVEID:CVE-2024-21538 DESCRIPTION: Versions of the package cross-spawn before 6.0.6, from 7.0.0 and before 7.0.5 are vulnerable to Regular Expression Denial of Service ReDoS due to improper input...

9.8CVSS7AI score0.01387EPSS

Exploits4Affected Software1