CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

233 matches found

OSV•added 2026/03/31 2:16 p.m.•2 views

UBUNTU-CVE-2026-34155

RAUC controls the update process on embedded Linux systems. Prior to version 1.15.2, RAUC bundles using the 'plain' format exceeding a payload size of 2 GiB cause an integer overflow which results in a signature which covers only the first few bytes of the payload. Given such a bundle with a...

7.2CVSS5.8AI score0.00141EPSS

Exploits0References5

IBM Security Bulletins•added 2026/03/06 7:38 p.m.•6 views

Security Bulletin: IBM Terracotta is affected by an Apache Avro vulnerability that could allow code injection leading to access to unauthorized resources

Summary IBM Terracotta uses Apache Avro as part of Apache Parquet used within the IBM Terracotta implementation for data export and import. Vulnerability Details CVEID:CVE-2025-33042 DESCRIPTION: Improper Control of Generation of Code 'Code Injection' vulnerability in Apache Avro Java SDK when...

7.3CVSS5.8AI score0.00602EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2026/02/17 4:37 a.m.•21 views

Security Bulletin: IBM webMethods BPM is vulnerable to a denial of service due to log4j-core

Summary IBM webMethods BPM uses log4j-core for process instance-specific logging in the BPM Process Engine, creating individual log files for each process instance to track execution details, errors, and debugging information separately from the general system logs. Vulnerability Details...

8.5CVSS6.5AI score0.97906EPSS

Exploits9Affected Software1

RedhatCVE•added 2026/01/09 9:59 a.m.•7 views

CVE-2020-7136

A security vulnerability in HPE Smart Update Manager SUM prior to version 8.5.6 could allow remote unauthorized access. Hewlett Packard Enterprise has provided a software update to resolve this vulnerability in HPE Smart Update Manager SUM prior to 8.5.6. Please visit the HPE Support Center at...

10CVSS7AI score0.79522EPSS

Exploits0References1

IBM Security Bulletins•added 2025/12/01 3:39 p.m.•6 views

Security Bulletin: IBM webMethods BPM is vulnerable to a denial of service due to Apache Lucene

Summary IBM webMethods BPM uses Apache Lucene in designer-process-feature and metadata-core-feature for text processing and filtering purpose. Vulnerability Details IBM X-Force ID: 216835 DESCRIPTION: Apache Lucene is vulnerable to a denial of service. By sending a specific regular expression...

6.7AI score

Exploits0Affected Software1