CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4076 matches found

Oracle linux•added 2026/01/27 12:0 a.m.•8 views

grafana security update

9.2.10-27.0.1 - Fixes CVE-2024-1442 Add email verification when updating user email Orabug: 38550520 9.2.10-27 - Resolves RHEL-140537: CVE-2025-61729...

7.5CVSS5.9AI score0.00802EPSS

Exploits2

Chainguard•added 2026/01/26 7:17 p.m.•5 views

CVE-2025-68618 vulnerabilities

Vulnerabilities for packages: imagemagick...

7.5CVSS5.9AI score0.00552EPSS

Exploits1

Chainguard•added 2026/01/26 1:17 p.m.•9 views

CVE-2026-1225 vulnerabilities

Vulnerabilities for packages: knative-kafka-broker, zookeeper, nextflow, dependency-track, knative-kafka-broker-fips, sonar-scanner-cli, apache-nifi, dependency-track-apiserver, keycloak-config-cli, kserve-modelmesh, sonarqube, akhq, nacos-docker, kafbat-ui-fips, localstack, nacos,...

1.8CVSS6.4AI score0.00159EPSS

Exploits0

Debian CVE•added 2026/01/26 7:32 a.m.•5 views

CVE-2026-1425

A security flaw has been discovered in pymumu SmartDNS up to 47.1. This vulnerability affects the function dnsdecoderrhead/dnsdecodeSVCBHTTPS of the file src/dns.c of the component SVBC Record Parser. The manipulation results in stack-based buffer overflow. It is possible to launch the attack...

6.3CVSS5.7AI score0.00366EPSS

Exploits0

Debian CVE•added 2026/01/26 12:0 a.m.•4 views

CVE-2025-50537

Removed by vendor...

5.5CVSS5.2AI score0.00163EPSS

Exploits1

Debian CVE•added 2026/01/25 2:36 p.m.•5 views

CVE-2026-23011

In the Linux kernel, the following vulnerability has been resolved: ipv4: ipgre: make ipgreheader robust Analog to commit db5b4e39c4e6 "ip6gre: make ip6greheader robust" Over the years, syzbot found many ways to crash the kernel in ipgreheader 1. This involves team or bonding drivers ability to...

5.5CVSS5.2AI score0.00187EPSS

Exploits0

Debian CVE•added 2026/01/25 2:36 p.m.•4 views

CVE-2026-23009

In the Linux kernel, the following vulnerability has been resolved: xhci: sideband: don't dereference freed ring when removing sideband endpoint xhcisidebandremoveendpoint incorrecly assumes that the endpoint is running and has a valid transfer ring. Lianqin reported a crash during suspend/wake-u...

5.5CVSS5.1AI score0.00135EPSS

Exploits0

Debian CVE•added 2026/01/25 2:36 p.m.•5 views

CVE-2026-22998

In the Linux kernel, the following vulnerability has been resolved: nvme-tcp: fix NULL pointer dereferences in nvmettcpbuildpduiovec Commit efa56305908b "nvmet-tcp: Fix a kernel panic when host sends an invalid H2C PDU length" added ttag bounds checking and dataoffset validation in...

7.5CVSS5.3AI score0.0071EPSS

Exploits0

Chainguard•added 2026/01/23 7:24 p.m.•3 views

GHSA-XCJF-5V2R-GVC9 vulnerabilities

Vulnerabilities for packages: linux-gcp, linux-azure, linux-aws, linux-vmware, linux-qemu...

5.8AI score

Exploits0

Chainguard•added 2026/01/23 7:24 p.m.•3 views

GHSA-GJ5H-7FQ5-56P5 vulnerabilities

Vulnerabilities for packages: linux-gcp, linux-azure, linux-aws, linux-vmware, linux-qemu...

5.8AI score

Exploits0

Chainguard•added 2026/01/23 7:24 p.m.•3 views

GHSA-4C4X-JM2X-PF9J vulnerabilities

Vulnerabilities for packages: zarf, trivy-operator-fips, buildkitd, crossplane, crossplane-fips, slsa-verifier, tflint-fips, trivy-fips, ratify, witness, kubescape, neuvector-sigstore-interface-fips, skaffold, vexctl, flux-source-controller-fips, tekton-chains-fips, buildkitd-fips, cloudbeat-fips...

5.8AI score

Exploits0

Debian CVE•added 2026/01/23 3:24 p.m.•4 views

CVE-2026-22993

In the Linux kernel, the following vulnerability has been resolved: idpf: Fix RSS LUT NULL ptr issue after soft reset During soft reset, the RSS LUT is freed and not restored unless the interface is up. If an ethtool command that accesses the rss lut is attempted immediately after reset, it will...

5.5CVSS5.4AI score0.00115EPSS

Exploits0

Fedora•added 2026/01/23 1:16 a.m.•7 views

[SECURITY] Fedora 42 Update: vsftpd-3.0.5-14.fc42

vsftpd is a Very Secure FTP daemon. It was written completely from scratch...

6.5CVSS5.8AI score0.00737EPSS

Exploits0

Debian CVE•added 2026/01/23 12:0 a.m.•3 views

CVE-2025-67125

A signed integer overflow in docopt.cpp v0.6.2 LeafPattern::match in docoptprivate.h when merging occurrence counters e.g., default LONGMAX + first user "-v/--verbose" can cause counter wrap negative/unbounded semantics and lead to logic/policy bypass in applications that rely on occurrence-based...

4.4CVSS5.3AI score0.0021EPSS

Exploits1

Wolfi•added 2026/01/22 1:51 p.m.•4 views

GHSA-R2MR-X4H2-9CHR vulnerabilities

Vulnerabilities for packages: openjdk...

5.3AI score

Exploits0

Redos•added 2026/01/22 12:0 a.m.•5 views

ROS-20260122-73-0031

Vulnerability in ImageMagick related to reading outside buffer boundaries in memory. Exploitation of the vulnerability may allow an attacker to cause a denial of service...

7.5CVSS5.9AI score0.00439EPSS

Exploits0

Chainguard•added 2026/01/21 7:17 p.m.•2 views

GHSA-C336-7962-WFJ2 vulnerabilities

Vulnerabilities for packages: dask-kubernetes, dask-gateway...

5.8AI score

Exploits0

Chainguard•added 2026/01/21 1:17 p.m.•3 views

GHSA-XP56-6525-9CHF vulnerabilities

Vulnerabilities for packages: glibc...

5.3AI score

Exploits0

RedHat Linux•added 2026/01/21 12:3 p.m.•4 views

firefox: thunderbird: Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Sandbox escape due to incorrect boundary conditions in the Graphics: CanvasWebGL component...

8CVSS5.7AI score0.00288EPSS

Exploits0References6

RedHat Linux•added 2026/01/21 12:3 p.m.•3 views

firefox: thunderbird: Use-after-free in the IPC component

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Use-after-free in the IPC component...

8.8CVSS5.7AI score0.00324EPSS

Exploits0References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by