CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A flaw was found in PHP. Some functions, including urldecode, incorrectly pass signed characters to character type ctype functions. On certain systems, this can lead to accessing memory with a negative offset. This vulnerability can be exploited by an attacker to trigger a denial of service DoS,...

7.5CVSS5.7AI score0.00337EPSS

Exploits0References5

Fedora•added 2026/06/01 12:49 a.m.•13 views

[SECURITY] Fedora 44 Update: perl-Crypt-PasswdMD5-1.4.3-1.fc44

This package provides MD5-based crypt functions...

7.5CVSS5.8AI score0.00414EPSS

Exploits0

CBLMariner•added 2026/05/30 3:37 a.m.•11 views

CVE-2026-39829 affecting package packer for versions less than 1.9.5-14

CVE-2026-39829 affecting package packer for versions less than 1.9.5-14. A patched version of the package is available...

7.5CVSS5.8AI score0.00276EPSS

Exploits0

Chainguard•added 2026/05/30 1:18 a.m.•12 views

CVE-2026-33377 vulnerabilities

Vulnerabilities for packages: grafana-fips, grafana...

7.1CVSS5.1AI score0.00226EPSS

Exploits0

Chainguard•added 2026/05/30 1:18 a.m.•11 views

CVE-2026-28380 vulnerabilities

Vulnerabilities for packages: grafana-fips, grafana...

6.5CVSS5.1AI score0.00227EPSS

Exploits0

Chainguard•added 2026/05/30 1:18 a.m.•8 views

GHSA-8MRJ-8PC8-39JM vulnerabilities

Vulnerabilities for packages: grafana-fips, grafana...

5.2AI score

Exploits0

Wolfi•added 2026/05/28 1:48 p.m.•17 views

GHSA-5M62-PW8W-7W9F vulnerabilities

Vulnerabilities for packages: thingsboard...

5.8AI score

Exploits0

Debian CVE•added 2026/05/28 9:40 a.m.•9 views

CVE-2026-46227

In the Linux kernel, the following vulnerability has been resolved: sctp: revalidate list cursor after sctpsendmsgtoasoc in SCTPSENDALL The SCTPSENDALL path in sctpsendmsg iterates ep-asocs with listforeachentrysafe, which caches the next entry in @tmp before the loop body runs. The body calls...

7.8CVSS5.7AI score0.00125EPSS

Exploits0

Debian CVE•added 2026/05/28 9:36 a.m.•8 views

CVE-2026-46196

In the Linux kernel, the following vulnerability has been resolved: tracepoint: balance regfunc on funcadd failure in tracepointaddfunc When a tracepoint goes through the 0 - 1 transition, tracepointaddfunc invokes the subsystem's ext-regfunc before attempting to install the new probe via funcadd...

5.5CVSS5.7AI score0.00128EPSS

Exploits0

Debian CVE•added 2026/05/28 9:35 a.m.•7 views

CVE-2026-46142

In the Linux kernel, the following vulnerability has been resolved: net: libwx: fix VF illegal register access Register WXCFGPORTST is a PF restricted register. When a VF is initialized, attempting to read this register triggers an illegal register access, which lead to a system hang. When the...

5.7AI score0.00175EPSS

Exploits0

Debian CVE•added 2026/05/28 9:35 a.m.•11 views

CVE-2026-46140

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btmtk: validate WMT event SKB length before struct access btmtkusbhciwmtsync casts the WMT event response SKB data to struct btmtkhciwmtevt 7 bytes and struct btmtkhciwmtevtfuncc 9 bytes without first checking that the...

5.7AI score0.00175EPSS

Exploits0

Wolfi•added 2026/05/28 1:48 a.m.•15 views

GHSA-M56P-RP6V-288R vulnerabilities

Vulnerabilities for packages: chromium...

5.8AI score

Exploits0

Wolfi•added 2026/05/28 1:48 a.m.•15 views

CVE-2026-9120 vulnerabilities

Vulnerabilities for packages: chromium...

8.8CVSS5.8AI score0.00501EPSS

Exploits0