CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Crypt::PBKDF2 versions before 0.261630 for Perl are vulnerable to timing attacks. These versions use Perl's built-in eq comparison. Discrepancies in timing could be used to guess the underlying derived-key...

5.9CVSS5.3AI score0.0032EPSS

Exploits0

Chainguard•added 2026/06/12 1:17 p.m.•7 views

GHSA-RGXP-2HWP-JWGG vulnerabilities

Vulnerabilities for packages: open-webui, text-generation-inference, dbt-bigquery...

5.8AI score

Exploits0

Chainguard•added 2026/06/12 1:17 p.m.•14 views

CVE-2026-25087 vulnerabilities

Vulnerabilities for packages: open-webui, text-generation-inference, dbt-bigquery...

7CVSS5.8AI score0.00807EPSS

Exploits0

Chainguard•added 2026/06/12 1:17 p.m.•8 views

CVE-2026-26158 vulnerabilities

Vulnerabilities for packages: busybox...

7CVSS5.2AI score0.00154EPSS

Exploits0

Chainguard•added 2026/06/12 1:17 p.m.•5 views

GHSA-R8F8-4PGH-4M8V vulnerabilities

Vulnerabilities for packages: busybox...

5.2AI score

Exploits0

Chainguard•added 2026/06/12 1:17 p.m.•9 views

CVE-2026-26157 vulnerabilities

Vulnerabilities for packages: busybox...

7CVSS5.2AI score0.00664EPSS

Exploits2

Chainguard•added 2026/06/12 1:17 p.m.•5 views

GHSA-XM63-5PJX-VRHP vulnerabilities

Vulnerabilities for packages: busybox...

5.2AI score

Exploits0

Debian CVE•added 2026/06/12 9:42 a.m.•8 views

CVE-2026-48914

A flaw was found in QEMU's virtio-blk device. The issue arises because the device does not properly validate the size of input descriptors before writing data. A malicious guest with high privileges could exploit this vulnerability by submitting a malformed virtio-blk SCSI request, leading to an...

6.7CVSS5.3AI score0.0016EPSS

Exploits0

Chainguard•added 2026/06/12 7:18 a.m.•9 views

CVE-2026-48068 vulnerabilities

Vulnerabilities for packages: jitsucom-jitsu, langfuse-fips, langfuse, pulumi, opentelemetry-auto-instrumentations-node, cadence-web, kibana...

5.8AI score0.00052EPSS

Exploits0

Chainguard•added 2026/06/12 7:18 a.m.•11 views

CVE-2026-48069 vulnerabilities

Vulnerabilities for packages: jitsucom-jitsu, langfuse-fips, langfuse, pulumi, opentelemetry-auto-instrumentations-node, cadence-web, kibana...

5.8AI score0.00052EPSS

Exploits0

Chainguard•added 2026/06/12 7:18 a.m.•9 views

GHSA-5375-PQ7M-F5R2 vulnerabilities

Vulnerabilities for packages: jitsucom-jitsu, langfuse-fips, langfuse, pulumi, opentelemetry-auto-instrumentations-node, cadence-web, kibana...

5.8AI score

Exploits0

Chainguard•added 2026/06/12 7:18 a.m.•9 views

GHSA-99F4-GRH7-6PCQ vulnerabilities

Vulnerabilities for packages: jitsucom-jitsu, langfuse-fips, langfuse, pulumi, opentelemetry-auto-instrumentations-node, cadence-web, kibana...

5.8AI score

Exploits0

Chainguard•added 2026/06/12 7:18 a.m.•8 views

CVE-2026-47701 vulnerabilities

Vulnerabilities for packages: kube-logging-operator-fips, kube-logging-operator...

5.2AI score0.00017EPSS

Exploits0

Chainguard•added 2026/06/12 7:18 a.m.•8 views

GHSA-CXH2-4639-VMC5 vulnerabilities

Vulnerabilities for packages: kube-logging-operator-fips, kube-logging-operator...

5.2AI score

Exploits0

Debian CVE•added 2026/06/12 5:4 a.m.•9 views

CVE-2026-44892

Netty is a network application framework for development of protocol servers and clients. Prior to version 4.2.15.Final, the default configuration of the Http3ConnectionHandler in the Netty HTTP/3 codec lacks an enforced maximum header size limit. When a peer does not explicitly specify...

7.5CVSS5.3AI score0.00488EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by