CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2026/05/31 3:30 p.m.•22 views

CVE-2026-10190 Tenda W12 Web Management httpd cgiSysWebTimeoutSet denial of service

A vulnerability was found in Tenda W12 3.0.0.74763. This issue affects the function cgiSysWebTimeoutSet of the file /bin/httpd of the component Web Management Interface. The manipulation of the argument webovertime results in denial of service. It is possible to launch the attack remotely. The...

7.1CVSS0.00368EPSS

Vulnrichment•added 2026/05/31 3:30 p.m.•7 views

CVE-2026-10190 Tenda W12 Web Management httpd cgiSysWebTimeoutSet denial of service

7.1CVSS5.6AI score0.00368EPSS

CVE•added 2026/05/31 3:30 p.m.•12 views

CVE-2026-10190

CVE-2026-10190 affects Tenda W12 3.0.0.7(4763). The Web Management Interface contains a vulnerable function: cgiSysWebTimeoutSet in /bin/httpd. Manipulating the argument web_over_time triggers a denial of service. The vulnerability is exploitable remotely, and public exploit code exists. The prov...

7.1CVSS6.3AI score0.00368EPSS

OSV•added 2026/05/29 9:45 p.m.•8 views

GHSA-XJHV-PP2R-6F82 BoxLite has a Timeout Bypass Vulnerability

Summary BoxLite is a sandbox service that allows users to create lightweight virtual machines Boxes and run OCI containers within them. BoxLite allows users to configure a timeout for services running inside the virtual machine. When the timeout is triggered, BoxLite sends a signal to kill the...

6.5CVSS5.8AI score0.00417EPSS

Github Security Blog•added 2026/05/29 9:45 p.m.•17 views

BoxLite has a Timeout Bypass Vulnerability

6.5CVSS5.8AI score0.00417EPSS

Exploits0References4Affected Software1

Positive Technologies•added 2026/05/29 12:0 a.m.•7 views

PT-2026-45035

Name of the Vulnerable Software and Affected Versions Boxlite versions 0.8.2 and earlier Description Boxlite is a sandbox service that enables the creation of lightweight virtual machines to run untrusted code within OCI containers. The service allows users to configure a timeout for processes...

6.5CVSS5.6AI score0.00417EPSS

Microsoft CVE•added 2026/05/28 8:5 a.m.•4 views

Bluetooth: L2CAP: Fix null-ptr-deref in l2cap_sock_get_sndtimeo_cb()

...

5.5CVSS5.4AI score0.00176EPSS

Exploits0

SUSE CVE•added 2026/05/28 3:57 a.m.•7 views

SUSE CVE-2026-45871

In the Linux kernel, the following vulnerability has been resolved: tpm: st33zp24: Fix missing cleanup on getburstcount error getburstcount can return -EBUSY on timeout. When this happens, st33zp24send returns directly without releasing the locality acquired earlier. Use goto outerr to ensure...

5.8AI score0.0022EPSS

SUSE CVE•added 2026/05/28 3:55 a.m.•7 views

SUSE CVE-2026-45941

In the Linux kernel, the following vulnerability has been resolved: tpm: tpmi2cinfineon: Fix locality leak on getburstcount failure getburstcount can return -EBUSY on timeout. When this happens, the function returns directly without releasing the locality that was acquired at the beginning of...

5.8AI score0.00176EPSS

SUSE CVE•added 2026/05/28 3:55 a.m.•9 views

SUSE CVE-2026-45955

In the Linux kernel, the following vulnerability has been resolved: md/md-llbitmap: fix percpuref not resurrected on suspend timeout When llbitmapsuspendtimeout times out waiting for percpuref to become zero, it returns -ETIMEDOUT without resurrecting the percpuref. The caller mdllbitmapdaemonfn...

5.8AI score0.00124EPSS

SUSE CVE•added 2026/05/28 3:53 a.m.•6 views

SUSE CVE-2026-46073

In the Linux kernel, the following vulnerability has been resolved: hwmon: powerz Fix missing usbkillurb on signal interrupt waitforcompletioninterruptibletimeout returns -ERESTARTSYS when interrupted. This needs to abort the URB and return an error. No data has been received from the device so a...

6.1CVSS5.8AI score0.00168EPSS

RedhatCVE•added 2026/05/28 12:24 a.m.•8 views

CVE-2026-45941

A flaw was found in the Linux kernel's tpmi2cinfineon module. This vulnerability occurs when the getburstcount function fails due to a timeout, causing the system to not release an acquired locality. An attacker could potentially exploit this to cause a resource exhaustion, leading to a Denial of...

5.5CVSS5.8AI score0.00176EPSS

Tenable Nessus•added 2026/05/28 12:0 a.m.•8 views

Linux Distros Unpatched Vulnerability : CVE-2026-45955

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: md/md-llbitmap: fix percpuref not resurrected on suspend timeout When llbitmapsuspendtimeout...

7.1CVSS5.3AI score0.00124EPSS

RedhatCVE•added 2026/05/27 11:37 p.m.•8 views

CVE-2026-45955

A flaw was found in the Linux kernel's md/md-llbitmap component. This vulnerability occurs when a suspend operation times out, failing to properly reset a critical internal reference. This oversight leaves the system's page control structure in an unusable state. This issue can lead to system...

7.1CVSS5.8AI score0.00124EPSS

RedhatCVE•added 2026/05/27 8:9 p.m.•5 views

CVE-2026-46073

A flaw was found in the Linux kernel's hwmon subsystem, specifically within the powerz driver. When a signal interrupt occurs during the waitforcompletioninterruptibletimeout function, the system fails to properly abort the USB Request Block URB. This oversight can lead to the kernel attempting t...

5.8AI score0.00168EPSS

RedhatCVE•added 2026/05/27 4:45 p.m.•10 views

CVE-2026-46102

A flaw was found in the Linux kernel's network stream parser. This vulnerability occurs when the stream parser is unexpectedly stopped, such as during a message assembly timeout. A partially processed network message is not properly released from memory, leading to a memory leak. An attacker coul...

7.5CVSS5.8AI score0.00508EPSS