CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Virtuozzo•added 2026/06/11 12:0 a.m.•10 views

Virtuozzo Infrastructure 7.3 Update 1 Hotfix 1 (7.3.1-60)

This update provides security and stability fixes. Vulnerability id: VSTOR-123887 Stale S3 lifecycle timestamps could cause objects to expire at incorrect times. Vulnerability id: VSTOR-127098 The Keystone service could fail to restart after log rotation. Vulnerability id: VSTOR-129336 A stabilit...

10CVSS6.5AI score0.93994EPSS

Exploits270

RedHat Linux•added 2026/06/10 5:29 p.m.•6 views

Important: Red Hat Security Advisory: Red Hat AI Inference Server Model Optimization Tools 3.2.2 (cuda)

Red Hat AI Inference Server Model Optimization Tools 3.2.2 cuda is now available. Red Hat® AI Inference Server Model Optimization Tools...

9.8CVSS7AI score0.02187EPSS

Exploits6References32

HackRead•added 2026/06/10 1:0 p.m.•8 views

Cloud Security Report Finds Fragmented Tools Widening the Cloud Complexity Gap

Washington D.C., USA, 10th June 2026, CyberNewswire...

5.4AI score

Exploits0

RedhatCVE•added 2026/06/10 8:59 a.m.•6 views

CVE-2026-28262

Dell iDRAC Tools, versions prior to 11.4.1.0, contains an Improper Link Resolution Before File Access 'Link Following' vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information tampering...

OSSF Malicious Packages•added 2026/06/10 8:27 a.m.•6 views

Malicious code in @builder.io/dev-tools (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 670a0957692786d7cd690da1c51472380e131ceb1149cf37e265a8549ad5339b Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Snyk•added 2026/06/10 8:27 a.m.•7 views

Embedded Malicious Code

Overview @builder.io/dev-tools is a Builder.io Visual CMS Devtools Affected versions of this package are vulnerable to Embedded Malicious Code. The affected version contains malicious code, and its content was removed from the official package manager. While this package might be attempting to...

9.8CVSS5.4AI score

Exploits0References2

OSV•added 2026/06/10 8:27 a.m.•5 views

MAL-2026-5493 Malicious code in @builder.io/dev-tools (npm)

Packet Storm News•added 2026/06/10 12:0 a.m.•7 views

Can Open-Source LLM Agents Replace Static Application Security Testing Tools? an Empirical Assessment

This paper explores the value of agentic AI tools for cybersecurity purposes. We evaluate the efficacy of a general-purpose GenAI Large Language Model- GenAI- based agent when powered by three different Ollama-hosted general-purpose open source models. We assess each agent's performance using...

5.2AI score

Exploits0

OSV•added 2026/06/09 7:17 p.m.•8 views

DEBIAN-CVE-2025-55658

GPAC MP4Box v2.4 was discovered to contain a floating point exception in the gfopusparsepacketheader function mediatools/avparsers.c. bThis vulnerability allows attackers to cause a Denial of Service DoS via a crafted MP4 file...

6.5CVSS5.5AI score0.00265EPSS

Exploits1References1

OSV•added 2026/06/09 6:3 p.m.•8 views

MAL-2026-5461 Malicious code in fhirproxy-utils (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 405cf847121f4bfed32bc5679a40b64c1338b142af75823ef9583944a7ae7b5a On npm install via the prepare lifecycle hook and many other lifecycle aliases and on require, index.js performs broad reconnaissance and exfiltratio...

OSV•added 2026/06/09 5:34 p.m.•6 views

MAL-2026-5450 Malicious code in o3forms (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 4d094d4429f1492bb6b99d802de86b97dc972e06d680a1287846e6d1635fe457 The package name impersonates the OpenMRS O3 forms ecosystem legitimate packages are published under the @openmrs/ scope. package.json declares an...

5.6AI score

Exploits0References2

OSV•added 2026/06/09 5:29 p.m.•5 views

MAL-2026-5456 Malicious code in via-city-tools-m-particle (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bc5c4f690e0399edc4408e7729291803db7916ed764bcfe16988f4cdccd5cfc1 The package exports an empty object module.exports = and has no functionality of its own. Its only substantive effect is to declare a dependency on...

5.6AI score

The Hacker News•added 2026/06/09 11:30 a.m.•10 views

The Hidden Security Risk in Modern Networks: The Work Between Tools

Organizations have more visibility than ever. Growing tech stacks provide greater coverage, and network security teams are increasingly adopting AI and automation to help with routine tasks and reduce manual effort. But the same challenges persist. Outages still last hours, causing significant...

5.8AI score

Exploits0

NVD•added 2026/06/09 9:16 a.m.•8 views

CVE-2026-28262

6CVSS0.00101EPSS

Vulnrichment•added 2026/06/09 8:41 a.m.•4 views

CVE-2026-28262

CVE•added 2026/06/09 8:41 a.m.•30 views

CVE-2026-28262

CVE-2026-28262 affects Dell iDRAC Tools, versions prior to 11.4.1.0. The vulnerability is an Improper Link Resolution Before File Access (Link Following) that could allow a low privileged attacker with local access to tamper with information. The initial sources describe the affected product and ...

EUVD•added 2026/06/09 8:41 a.m.•7 views

EUVD-2026-35381

OSSF Malicious Packages•added 2026/06/09 7:55 a.m.•8 views

Malicious code in farming-tools-12 (npm)

Crypto/SSH/wallet stealer, blockchain-helper-0 campaign sibling c960+, same aicrypto-xzggg publisher and "Core utilities for blockchain development" description as swap-sdk-87/defi-tools-39. postinstall auto-execs, src/index.js harvests /.ssh keys + Sol/Eth/BTC/Tron/Sui/Aptos wallets + .env +...