CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

217 matches found

Github Security Blog•added 2026/05/21 9:32 p.m.•9 views

Rust OneNote File Parser: Path traversal in `Parser::parse_notebook` allows reading files outside the notebook directory

Impact A maliciously crafted .onetoc2 table-of-contents file can cause Parser::parsenotebook to open arbitrary files on the host filesystem outside the notebook's directory. The parser reads entry names listed inside the .onetoc2 and joins them against the notebook's base directory without...

6AI score

Exploits0References5Affected Software1

RedhatCVE•added 2026/05/20 11:2 p.m.•7 views

CVE-2026-9150

A flaw was found in libsolv. This stack-based buffer overflow vulnerability occurs in libsolv's Debian metadata parser when processing specially crafted Debian repository metadata. An attacker could exploit this by providing malicious SHA384 or SHA512 checksum tags, leading to memory corruption a...

6.5CVSS6.1AI score0.00014EPSS

Exploits0References4

RedhatCVE•added 2026/05/20 10:28 p.m.•6 views

CVE-2026-9149

A flaw was found in libsolv. This heap buffer overflow vulnerability occurs when a victim processes a specially crafted .solv file containing negative size values in the repoaddsolv function. This leads to an undersized memory allocation and a subsequent out-of-bounds write. An attacker could...

6.5CVSS5.9AI score0.00054EPSS

Exploits0References4

GithubExploit•added 2026/05/19 11:44 p.m.•64 views

eip-search

Exploit Intel Platform CLI Search Tool Package/command: eip-...

6.1AI score

Exploits0

RedhatCVE•added 2026/05/15 3:56 p.m.•6 views

CVE-2026-6664

A flaw was found in PgBouncer. An integer overflow in the network packet parsing code allows an unauthenticated remote attacker to bypass a boundary check by sending a malformed SCRAM authentication packet. This can lead to a crash, resulting in a Denial of Service DoS for the PgBouncer instance...

7.5CVSS5.9AI score0.00049EPSS

Exploits1References2

Snyk•added 2026/05/14 4:23 p.m.•6 views

Directory Traversal

Overview Affected versions of this package are vulnerable to Directory Traversal in the ExtractTarGz process. An attacker can write arbitrary files to locations outside the intended extraction directory by submitting a crafted .tar.gz archive containing directory traversal sequences. This is only...

7CVSS6.3AI score0.00292EPSS

Exploits1References2

OSV•added 2026/05/07 1:54 a.m.•1 views

GHSA-FPF5-4JW8-67X8 rust-zserio has Unbounded Memory Allocation

Impact When deserializing arrays, strings or bytes blob types zserio first reads the size of the variable, and then allocates sufficient memory to load data. Since the size is always trusted this can be abused by creating a data file with a large size value, causing the zserio runtime to allocate...

7.5CVSS5.8AI score

Exploits0References4

RedhatCVE•added 2026/05/05 8:58 a.m.•6 views

CVE-2026-41680

A flaw was found in marked, a markdown parser and compiler. An unauthenticated attacker can exploit this Denial of Service DoS vulnerability by providing a specific 3-byte input sequence a tab, a vertical tab, and a newline. This input triggers an infinite recursion loop during parsing, leading t...

8.7CVSS5.8AI score0.00129EPSS

Exploits1References4

RedhatCVE•added 2026/05/04 9:49 a.m.•2 views

CVE-2026-5654

A flaw was found in Wireshark. This vulnerability allows a remote attacker to cause the application to crash by exploiting an issue within the AMR-NB codec. Successful exploitation leads to a denial of service, which prevents Wireshark from functioning and analyzing network traffic. Mitigation To...

7.5CVSS5.8AI score0.00022EPSS

Exploits1References5

AstraLinux•added 2026/05/03 11:59 p.m.•4 views

Astra Linux - уязвимость в containerd

Containerd is a container runtime. A bug was discovered in containerd versions prior to 1.4.8 and 1.5.4, where pulling and extracting a specially crafted container image could result in changes to Unix file permissions for existing files in the host’s filesystem. Changes to file permissions could...

6.8CVSS6.4AI score0.00071EPSS

Exploits2References2

RedhatCVE•added 2026/04/25 11:9 a.m.•3 views

CVE-2026-41314

A flaw was found in pypdf, a pure-Python PDF library. An attacker can exploit this vulnerability by crafting a malicious PDF file that accesses an image using /FlateDecode with large size values. This can lead to memory exhaustion, resulting in a Denial of Service DoS for the system processing th...

6.5CVSS5.4AI score0.00025EPSS

Exploits0References7

RedhatCVE•added 2026/04/25 7:22 a.m.•4 views

CVE-2026-29050

melange allows users to build apk packages using declarative pipelines. Starting in version 0.32.0 and prior to version 0.43.4, an attacker who can influence a melange configuration file — for example through pull-request-driven CI or build-as-a-service scenarios — could set pipeline.uses to a...

6.1CVSS5.6AI score0.00015EPSS

Exploits0References1

NVD•added 2026/04/24 12:16 a.m.•1 views

CVE-2026-29050

6.1CVSS0.00015EPSS

Exploits0References1

Cvelist•added 2026/04/22 8:20 p.m.•27 views

CVE-2026-41134 Kiota: Code Generation Literal Injection

Kiota is an OpenAPI based HTTP Client code generator. Versions prior to 1.31.1 are affected by a code-generation literal injection vulnerability in multiple writer sinks for example: serialization/deserialization keys, path/query parameter mappings, URL template metadata, enum/property metadata,...

7.3CVSS0.00024EPSS

Exploits1References1

Positive Technologies•added 2026/04/14 12:0 a.m.•2 views

PT-2026-34560

Name of the Vulnerable Software and Affected Versions Kiota versions prior to 1.31.1 Description Kiota is an OpenAPI based HTTP Client code generator. A code-generation literal injection exists in multiple writer sinks, including serialization/deserialization keys, path/query parameter mappings,...

7.8CVSS5.8AI score0.00024EPSS

Exploits1References9

RedhatCVE•added 2026/04/13 9:14 p.m.•1 views

CVE-2026-32316

A flaw was found in jq, a command-line JSON processor. An attacker can exploit an integer overflow vulnerability by crafting queries that produce extremely large strings. This causes a 32-bit unsigned integer overflow in the buffer allocation size calculation, leading to a drastically undersized...

8.2CVSS6.3AI score0.00025EPSS

Exploits1References5

RedhatCVE•added 2026/04/08 12:13 p.m.•1 views

CVE-2026-28390

A flaw was found in OpenSSL. A remote attacker could exploit this vulnerability by sending a specially crafted Cryptographic Message Syntax CMS EnvelopedData message. During the processing of a KeyTransportRecipientInfo with RSA-OAEP encryption, the system attempts to access an optional parameter...

7.5CVSS5.9AI score0.0014EPSS

Exploits0References9

Snyk•added 2026/04/01 11:15 p.m.•1 views

Out-of-bounds Read

Overview Affected versions of this package are vulnerable to Out-of-bounds Read via the stbttbufget8 function. An attacker can cause a denial of service by supplying a specially crafted TrueType Font file that triggers an out-of-bounds read during processing. Workaround This vulnerability can be...

8.8CVSS5.9AI score0.00187EPSS

Exploits1References2

SUSE CVE•added 2026/03/28 12:26 a.m.•3 views

SUSE CVE-2026-33062

free5GC is an open source 5G core network. free5GC NRF prior to version 1.4.2 has an Improper Input Validation vulnerability leading to Denial of Service. All deployments of free5GC using the NRF discovery service are affected. The EncodeGroupId function attempts to access array indices 0, 1, 2...

8.7CVSS6AI score0.00088EPSS

Exploits1References3

RedhatCVE•added 2026/03/16 1:59 p.m.•2 views

CVE-2026-32775

A flaw was found in libexif. When decoding MakerNotes, an integer underflow can occur in the exifmnotedatagetvalue function if a zero size is passed. This can lead to a buffer overwrite, potentially allowing an attacker to achieve arbitrary code execution, disclose sensitive information, or cause...

7.4CVSS6AI score0.00008EPSS

Exploits1References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by