CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Wolfi•added 4 days ago•9 views

GHSA-FCW5-X6J4-CCMP vulnerabilities

Vulnerabilities for packages: tensorflow-cpu-jupyter...

AstraLinux•added 5 days ago•4 views

Astra Linux – Vulnerability in SOX

A vulnerability was discovered in SoX, where a heap buffer overflow occurs in the startread function in the hcom.c file. This vulnerability can be exploited by using a specially crafted hcomn file, which may cause the application to crash...

5.5CVSS7.4AI score0.00431EPSS

Exploits1References2

Chainguard•added 6 days ago•8 views

GHSA-WXV8-W48J-R2F4 vulnerabilities

Vulnerabilities for packages: python...

5.2AI score

Chainguard•added 2026/06/16 8:22 p.m.•5 views

GHSA-4M7W-QMGQ-4WJ5 vulnerabilities

Vulnerabilities for packages: mlflow-fips, text-generation-inference, py3-vllm-cuda-12.9, py3-vllm-cuda-12.4, mlflow, authentik, metaflow-service-fips, request-1276, authentik-fips, tritonserver-backend-vllm-cuda-13.0...

Chainguard•added 2026/06/16 8:22 p.m.•7 views

GHSA-4FVR-RGM6-GQMC vulnerabilities

CBLMariner•added 2026/06/13 6:21 p.m.•7 views

CVE-2026-5222 affecting package rust for versions less than 1.90.0-9

CVE-2026-5222 affecting package rust for versions less than 1.90.0-9. A patched version of the package is available...

6.5CVSS5.2AI score0.00328EPSS

CBLMariner•added 2026/06/13 6:21 p.m.•8 views

CVE-2026-40034 affecting package rust for versions less than 1.90.0-9

CVE-2026-40034 affecting package rust for versions less than 1.90.0-9. A patched version of the package is available...

8.5CVSS5.2AI score0.00351EPSS

Mageia•added 2026/06/12 4:20 p.m.•6 views

Updated nghttp2 packages fix security vulnerability

Denial of service: Assertion failure due to missing state validation. CVE-2026-27135...

7.5CVSS7.4AI score0.0056EPSS

Exploits0References4

Wolfi•added 2026/06/12 1:48 a.m.•9 views

CVE-2026-11701 vulnerabilities

Vulnerabilities for packages: chromium...

5.4CVSS5.4AI score0.00178EPSS

Wolfi•added 2026/06/12 1:48 a.m.•6 views

GHSA-WX4M-978H-JHX3 vulnerabilities

Vulnerabilities for packages: chromium...

Chainguard•added 2026/06/12 1:17 a.m.•7 views

GHSA-M67C-5QCR-Q2MM vulnerabilities

Vulnerabilities for packages: chromium...

Chainguard•added 2026/06/12 1:17 a.m.•7 views

CVE-2026-11692 vulnerabilities

Vulnerabilities for packages: chromium...

8.3CVSS5.4AI score0.00179EPSS

Wolfi•added 2026/06/11 7:48 p.m.•6 views

GHSA-HMRH-MQV8-RVVR vulnerabilities

Vulnerabilities for packages: firefox...

Chainguard•added 2026/06/11 1:18 p.m.•6 views

GHSA-V446-XWFM-X7MR vulnerabilities

Vulnerabilities for packages: openssl, libcrypto3-2.34...

Debian CVE•added 2026/06/10 2:41 p.m.•4 views

CVE-2026-48856

Sensitive Data Exposure vulnerability in Erlang OTP inets httpcresponse module allows Retrieve Embedded Sensitive Data. The httpc client forwards the Authorization and Proxy-Authorization request headers to redirect targets without checking whether the redirect crosses an origin boundary...

7.1CVSS5.5AI score0.00335EPSS

Debian CVE•added 2026/06/10 2:35 p.m.•5 views

CVE-2026-48859

Observable Timing Discrepancy vulnerability in Erlang/OTP ssh sshauth, sshoptions modules allows unauthenticated remote username enumeration via timing side-channel in password authentication. When the SSH daemon is configured with the userpasswords or password option, sshauth:checkpassword/3...

6.3CVSS5.5AI score0.00354EPSS

Wolfi•added 2026/06/09 7:48 a.m.•16 views

CVE-2026-44250 vulnerabilities

Vulnerabilities for packages: management-api-for-apache-cassandra-5.0, celeborn, thingsboard, tez, trino...

7.5CVSS5.8AI score0.00335EPSS

Wolfi•added 2026/06/08 7:48 p.m.•6 views

GHSA-8X6R-G9MW-2R78 vulnerabilities

Vulnerabilities for packages: vitess...