CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2 days ago•3 views

OESA-2026-2617 libsoup security update

7.5CVSS7.3AI score0.00605EPSS

OSV•added 2 days ago•4 views

OESA-2026-2616 libsoup security update

4.8CVSS5.4AI score0.00055EPSS

Exploits0References2

OSV•added 2 days ago•4 views

OESA-2026-2615 libsoup security update

4.8CVSS5.4AI score0.00055EPSS

Exploits0References2

NVD•added 2026/05/29 7:16 a.m.•11 views

CVE-2026-6324

A flaw was found in libsoup. A remote attacker could exploit an unsigned to signed conversion error in the soupbodyinputstreamreadchunked function by sending a malicious HTTP request. This vulnerability occurs when libsoup operates behind a non-libsoup proxy server or as a proxy in front of a...

4.8CVSS0.00055EPSS

OSV•added 2026/05/29 7:16 a.m.•4 views

UBUNTU-CVE-2026-6324

EUVD•added 2026/05/29 5:24 a.m.•11 views

Exploits0References7

EUVD-2026-33249

CVE•added 2026/05/29 5:24 a.m.•14 views

CVE-2026-6324

Affected software: libsoup. Vulnerability: unsigned-to-signed conversion error in soup_body_input_stream_read_chunked(). Impact: remote attacker can bypass security controls, poison web caches, or gain unauthorized access when libsoup sits behind or fronts a non-libsoup server. Context: exploit v...

ATTACKERKB•added 2026/05/29 5:24 a.m.•10 views

CVE-2026-6324

Cvelist•added 2026/05/29 5:24 a.m.•36 views

CVE-2026-6324 Libsoup: libsoup: http request smuggling via unsigned to signed conversion error

4.8CVSS0.00055EPSS

Vulnrichment•added 2026/05/29 5:24 a.m.•14 views

CVE-2026-6324 Libsoup: libsoup: http request smuggling via unsigned to signed conversion error

CNNVD•added 2026/05/29 12:0 a.m.•6 views

libsoup 安全漏洞

Libsoup is a GNOME project’s HTTP client/server library. Libsoup has a security vulnerability, which stems from an error in the unsigned-to-signed conversion in the soupbodyinputstreamreadchunked function. This vulnerability could allow remote attackers to bypass security controls by sending...

Positive Technologies•added 2026/05/29 12:0 a.m.•8 views

PT-2026-44752

A flaw was found in libsoup. A remote attacker could exploit an unsigned to signed conversion error in the soup body input stream read chunked function by sending a malicious HTTP request. This vulnerability occurs when libsoup operates behind a non-libsoup proxy server or as a proxy in front of ...

Tenable Nessus•added 2026/05/29 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2026-6324

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in libsoup. A remote attacker could exploit an unsigned to signed conversion error in the soupbodyinputstreamreadchunked function by sending a...

GithubExploit•added 2026/05/21 7:12 a.m.•49 views

CVEs

NULL Dereference The vulnerabilities found in cryptofioctl...

5.8AI score

Exploits0

CNNVD•added 2026/05/18 12:0 a.m.•7 views

NetBSD 输入验证错误漏洞

NetBSD is an open-source Unix-like operating system developed by the NetBSD Foundation. Prior to version ec8451, there was a vulnerability related to input validation. This vulnerability stemmed from the fact that the local variable iovlen was declared as a signed integer in the cryptodevop...

5.7CVSS5.9AI score0.00013EPSS

Exploits0References1

NVD•added 2026/05/06 12:16 p.m.•2 views

CVE-2026-43185

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix signededness bug in smbdirectpreparenegotiation smbdirectpreparenegotiation casts an unsigned u32 value from sp-maxrecvsize and req-preferredsendsize to a signed int before computing mintint, .... A maliciously provide...

9.8CVSS0.00058EPSS

EUVD•added 2025/10/07 7:31 p.m.•2 views

EUVD-2025-32887

The NASA’s Interplanetary Overlay Network ION is an implementation of Delay/Disruption Tolerant Networking DTN. A BPv7 bundle with a malformed extension block causes uncontrolled memory allocation inside ION-DTN 4.1.3s, leading to receiver thread termination and a Denial-of-Service DoS. The...

7.5CVSS6.5AI score0.00083EPSS

Exploits0References2

Positive Technologies•added 2025/10/07 12:0 a.m.•2 views

PT-2025-41176

Name of the Vulnerable Software and Affected Versions NASA’s Interplanetary Overlay Network ION version 4.1.3 Description A specially crafted BPv7 bundle with a malformed extension block can lead to a Denial-of-Service DoS condition in ION-DTN. The issue stems from uncontrolled memory allocation...

7.5CVSS6.6AI score0.00083EPSS

Exploits0References5

CNNVD•added 2025/10/07 12:0 a.m.•1 views

Interplanetary Overlay Network 安全漏洞

Interplanetary Overlay Network is an open-source implementation of a delay-tolerant network at NASA Jet Propulsion Laboratory. A security vulnerability exists in Interplanetary Overlay Network version 4.1.3s, which stems from a failure to properly convert unsigned integers to signed integers when...

7.5CVSS6.6AI score0.00083EPSS