CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

329 matches found

RedhatCVE•added 2 days ago•3 views

CVE-2026-44928

In uriparser before 1.0.2, the function family EqualsUri can misclassify two unequal URIs as equal...

5.3CVSS5.4AI score0.0001EPSS

Exploits0References1

RedhatCVE•added 2 days ago•5 views

CVE-2026-44927

In uriparser before 1.0.2, there is pointer difference truncation to int in various places...

5.3CVSS5.4AI score0.0001EPSS

Exploits0References1

Tenable Nessus•added 3 days ago•8 views

PHP 8.5.x < 8.5.7 Multiple Vulnerabilities

The version of PHP installed on the remote host is prior to 8.5.7. It is, therefore, affected by multiple vulnerabilities as referenced in the Version 8.5.7 advisory. - In uriparser before 1.0.2, the function family EqualsUri can misclassify two unequal URIs as equal. CVE-2026-44928 - In uriparse...

5.3CVSS5.6AI score0.0001EPSS

Exploits0References3

Fedora•added 2026/05/27 1:27 a.m.•6 views

[SECURITY] Fedora 43 Update: uriparser-1.0.2-1.fc43

Uriparser is a strictly RFC 3986 compliant URI parsing library written in C. uriparser is cross-platform, fast, supports Unicode and is licensed under the New BSD license...

5.1CVSS5.8AI score0.00005EPSS

Exploits0

Tenable Nessus•added 2026/05/27 12:0 a.m.•8 views

Amazon Linux 2023 : php8.5, php8.5-bcmath, php8.5-cli (ALAS2023-2026-1733)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1733 advisory. uriparser before 1.0.1 has numeric truncation in text range comparison, if an application accepts URIs with a length in gigabytes. CVE-2026-42371 In uriparser before 1.0.2, there is pointer...

9.8CVSS6.4AI score0.00369EPSS

Exploits1References24

Tenable Nessus•added 2026/05/27 12:0 a.m.•5 views

Fedora 43 : uriparser (2026-aa5877c5ba)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-aa5877c5ba advisory. Update to uriparser-1.0.2. ---- Update to uriparser-1.0.1. Tenable has extracted the preceding description block directly from the Fedora security advisory...

5.1CVSS5.8AI score0.00005EPSS

Exploits0References2

Amazon•added 2026/05/26 12:0 a.m.•6 views

Important: php8.5

Issue Overview: uriparser before 1.0.1 has numeric truncation in text range comparison, if an application accepts URIs with a length in gigabytes. CVE-2026-42371 In uriparser before 1.0.2, there is pointer difference truncation to int in various places. CVE-2026-44927 In uriparser before 1.0.2, t...

9.8CVSS6.4AI score0.00369EPSS

Exploits1

AstraLinux•added 2026/05/20 5:53 a.m.•1 views

Astra Linux - уязвимость в uriparser

A issue was discovered in uriparser through 0.9.7. The ComposeQueryMallocExMm function in UriQuery.c has an integer overflow due to the use of a long string...

5.9CVSS6.2AI score0.00475EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в uriparser

A issue was discovered in uriparser through 0.9.7. The ComposeQueryEngine in UriQuery.c has an integer overflow due to long keys or values, resulting in a buffer overflow...

8.6CVSS7.2AI score0.00506EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в uriparser

A issue was discovered in uriparser before 0.9.6. It performs invalid free operations in uriNormalizeSyntax...

5.5CVSS6AI score0.00116EPSS

Exploits1References2

OSV•added 2026/05/15 2:0 p.m.•4 views

OESA-2026-2301 uriparser security update

The package is a strictly RFC 3986 compliant URI parsing library written in C89"ANSI C". uriparser is cross-platform, fast, supports Unicode and is licensed under the New BSD license. There are a number of applications, libraries and hardware using uriparser, as well as bindings and 3rd-party...

5.3CVSS5.8AI score0.0001EPSS

Exploits0References3

Tenable Nessus•added 2026/05/15 12:0 a.m.•5 views

Fedora 42 : uriparser (2026-593d463bbf)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-593d463bbf advisory. Update to uriparser-1.0.1. Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has not tested...

5.1CVSS5.8AI score0.00005EPSS

Exploits0References2

OSV•added 2026/05/09 12:32 p.m.•2 views

OESA-2026-2230 uriparser security update

5.1CVSS5.8AI score0.00007EPSS

Exploits0References3

OSV•added 2026/05/09 12:32 p.m.•4 views

OESA-2026-2229 uriparser security update

5.1CVSS5.8AI score0.00007EPSS

Exploits0References3

SUSE CVE•added 2026/05/09 2:39 a.m.•6 views

SUSE CVE-2026-44927

In uriparser before 1.0.2, there is pointer difference truncation to int in various places...

5.3CVSS5.8AI score0.0001EPSS

Exploits0References3

SUSE CVE•added 2026/05/09 2:39 a.m.•5 views

SUSE CVE-2026-44928

In uriparser before 1.0.2, the function family EqualsUri can misclassify two unequal URIs as equal...

2.9CVSS5.8AI score0.0001EPSS

Exploits0References3

Tenable Nessus•added 2026/05/09 12:0 a.m.•3 views

Unity Linux 20.1060e / 20.1070e Security Update: uriparser (UTSA-2026-017363)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017363 advisory. An issue was discovered in uriparser before 0.9.6. It performs invalid free operations in uriNormalizeSyntax. Tenable has extracted the preceding description block...

5.5CVSS5.8AI score0.00116EPSS

Exploits1References4

Tenable Nessus•added 2026/05/09 12:0 a.m.•4 views

Unity Linux 20.1060e / 20.1070e Security Update: uriparser (UTSA-2026-017362)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017362 advisory. An issue was discovered in uriparser before 0.9.6. It performs invalid free operations in uriFreeUriMembers and uriMakeOwner. Tenable has extracted the preceding...

5.5CVSS5.8AI score0.00116EPSS

Exploits1References4