CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4067 matches found

AlpineLinux•added 2026/03/20 1:34 a.m.•2 views

CVE-2026-4460

Out of bounds read in Skia in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to perform an out of bounds memory read via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.8AI score0.00253EPSS

Exploits0

Debian CVE•added 2026/03/20 1:34 a.m.•6 views

CVE-2026-4449

Use after free in Blink in Google Chrome prior to 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS5.5AI score0.00253EPSS

Exploits0

Redos•added 2026/03/20 12:0 a.m.•2 views

ROS-20260320-73-0005

Vulnerability in jenkins due to failure to take measures to protect web page structure. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...

8CVSS7.9AI score0.00505EPSS

Exploits0

Redos•added 2026/03/20 12:0 a.m.•6 views

ROS-20260320-73-0010

A vulnerability in the Golang programming language is related to insufficient control of a resource during its existence. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

7.8CVSS7.1AI score0.00359EPSS

Exploits0

Wolfi•added 2026/03/19 1:48 p.m.•8 views

GHSA-WJ64-GH9J-XM82 vulnerabilities

Vulnerabilities for packages: openssl...

5.8AI score

Exploits0

Wolfi•added 2026/03/19 1:48 p.m.•9 views

GHSA-P77J-4MVH-X3M3 vulnerabilities

Vulnerabilities for packages: spire-controller-manager, kafka-proxy, sftpgo-plugin-pubsub, promxy, octo-sts, kubernetes-event-exporter, dgraph, kube-state-metrics, crossplane-provider-aws-kinesis, falco-exporter, sftpgo-plugin-auth, cass-operator, cluster-api-provider-vsphere,...

5.8AI score

Exploits0

Chainguard•added 2026/03/19 1:17 p.m.•4 views

GHSA-XH32-C9WX-PHRP vulnerabilities

Vulnerabilities for packages: keycloak-fips, keycloak...

5.8AI score

Exploits0

Chainguard•added 2026/03/19 1:17 a.m.•4 views

GHSA-4992-7RV2-5PVQ vulnerabilities

Vulnerabilities for packages: librechat, langfuse, pelias-api, renovate, code-server, jitsucom-jitsu, kibana, langfuse-fips...

5.8AI score

Exploits0

Chainguard•added 2026/03/19 1:17 a.m.•3 views

GHSA-Q5QW-H33P-QVWR vulnerabilities

Vulnerabilities for packages: opensearch-dashboards, librechat, kibana, opensearch-dashboards-fips...

5.8AI score

Exploits0

SUSE CVE•added 2026/03/19 12:26 a.m.•3 views

SUSE CVE-2026-27459

pyOpenSSL is a Python wrapper around the OpenSSL library. Starting in version 22.0.0 and prior to version 26.0.0, if a user provided callback to setcookiegeneratecallback returned a cookie value greater than 256 bytes, pyOpenSSL would overflow an OpenSSL provided buffer. Starting in version 26.0....

7CVSS5.8AI score0.005EPSS

Exploits0References15

Redos•added 2026/03/19 12:0 a.m.•4 views

ROS-20260319-73-0034

Vulnerability in beats related to writing outside buffer boundaries in memory. Exploitation of the vulnerability may allow an attacker to execute arbitrary code...

6.5CVSS6.3AI score0.00387EPSS

Exploits0

Redos•added 2026/03/19 12:0 a.m.•7 views

ROS-20260319-73-0007

Vulnerability in glpi related to failure to take measures to protect sql query structure. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...

9.8CVSS6.2AI score0.00436EPSS

Exploits1

Redos•added 2026/03/19 12:0 a.m.•3 views

ROS-20260319-73-0031

Vulnerability in glpi related to failure to take measures to protect sql query structure. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...

8.8CVSS6.2AI score0.00264EPSS

Exploits0

Debian CVE•added 2026/03/18 7:47 p.m.•4 views

CVE-2026-31969

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data using a variety of encodings and compression methods. When reading data encoded using the BYTEARRAYSTOP method, an out-by-one error in the...

8.1CVSS6.1AI score0.00336EPSS

Exploits0

Chainguard•added 2026/03/18 7:17 p.m.•4 views

CVE-2026-29777 vulnerabilities

Vulnerabilities for packages: traefik-fips, traefik...

6.5CVSS7.3AI score0.00277EPSS

Exploits0

CBLMariner•added 2026/03/18 3:31 p.m.•6 views

CVE-2026-23943 affecting package erlang for versions less than 25.3.2.21-5

CVE-2026-23943 affecting package erlang for versions less than 25.3.2.21-5. A patched version of the package is available...

6.9CVSS5.8AI score0.00644EPSS

Exploits0

CBLMariner•added 2026/03/18 3:31 p.m.•6 views

CVE-2026-23942 affecting package erlang for versions less than 25.3.2.21-5

CVE-2026-23942 affecting package erlang for versions less than 25.3.2.21-5. A patched version of the package is available...

5.4CVSS5.8AI score0.00363EPSS

Exploits0

CBLMariner•added 2026/03/18 3:31 p.m.•5 views

CVE-2025-10966 affecting package cmake for versions less than 3.21.4-22

CVE-2025-10966 affecting package cmake for versions less than 3.21.4-22. A patched version of the package is available...

4.3CVSS6.3AI score0.00373EPSS

Exploits1

Debian CVE•added 2026/03/18 10:5 a.m.•4 views

CVE-2026-23246

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: bounds-check linkid in ieee80211mlreconfiguration linkid is taken from the ML Reconfiguration element control & 0x000f, so it can be 0..15. linkremovaltimeout has IEEE80211MLDMAXNUMLINKS 15 elements, so index 15 i...

8.8CVSS5.2AI score0.0029EPSS

Exploits0

Debian CVE•added 2026/03/18 10:5 a.m.•2 views

CVE-2026-23244

In the Linux kernel, the following vulnerability has been resolved: nvme: fix memory allocation in nvmeprreadkeys nvmeprreadkeys takes numkeys from userspace and uses it to calculate the allocation size for rse via structsize. The upper limit is PRKEYSMAX 64K. A malicious or buggy userspace can...

7.1CVSS5.2AI score0.00121EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by