CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11...

8.1CVSS5.8AI score0.00048EPSS

Exploits0References1

OSV•added 2026/05/19 2:3 p.m.•4 views

BELL-CVE-2026-32175

Bulletin has no description...

4.3CVSS5.7AI score0.00032EPSS

Exploits0References1

OSV•added 2026/05/09 6:9 a.m.•3 views

BELL-CVE-2026-43453

Bulletin has no description...

7.1CVSS5.7AI score0.00013EPSS

Exploits0References1

OSV•added 2026/05/03 6:12 a.m.•7 views

BELL-CVE-2026-31651

Bulletin has no description...

5.5CVSS5.7AI score0.00015EPSS

Exploits0References1

OSV•added 2026/04/30 7:16 a.m.•1 views

DEBIAN-CVE-2026-5402

TLS protocol dissector heap overflow in Wireshark 4.6.0 to 4.6.4 allows denial of service and possible code execution...

8.8CVSS6.2AI score0.00042EPSS

Exploits1References1

OSV•added 2026/04/21 1:16 p.m.•2 views

UBUNTU-CVE-2026-6755

Mitigation bypass in the DOM: postMessage component. This vulnerability was fixed in Firefox 150 and Thunderbird 150...

6.5CVSS5.8AI score0.00023EPSS

Exploits0References3

OSV•added 2026/03/20 7:39 p.m.•5 views

BELL-CVE-2026-27820

Bulletin has no description...

9.8CVSS5.7AI score0.00017EPSS

Exploits0References1

OSV•added 2026/03/18 5:16 p.m.•10 views

DEBIAN-CVE-2026-32610

Glances is an open-source system cross-platform monitoring tool. Prior to version 4.5.2, the Glances REST API web server ships with a default CORS configuration that sets alloworigins="" combined with allowcredentials=True. When both of these options are enabled together, Starlette's CORSMiddlewa...

8.1CVSS5.2AI score0.00055EPSS

Exploits1References1

OSV•added 2026/03/17 6:8 a.m.•1 views

BELL-CVE-2026-32776

Bulletin has no description...

5.5CVSS5.7AI score0.00006EPSS

Exploits0References1

OSV•added 2026/03/05 10:16 p.m.•2 views

CVE-2026-28391

OpenClaw versions prior to 2026.2.2 fail to properly validate Windows cmd.exe metacharacters in allowlist-gated exec requests non-default configuration, allowing attackers to bypass command approval restrictions. Remote attackers can craft command strings with shell metacharacters like & or %...%...

9.2CVSS6AI score

Exploits0References3

OSV•added 2026/01/14 3:16 p.m.•2 views

DEBIAN-CVE-2025-71125

In the Linux kernel, the following vulnerability has been resolved: tracing: Do not register unsupported perf events Synthetic events currently do not have a function to register perf events. This leads to calling the tracepoint register functions with a NULL function pointer which triggers:...

5.5CVSS5.3AI score0.00033EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:37 a.m.•6 views

CVE-2020-7820

Nexacro14/17 ExtCommonApiV13 Library under 2019.9.6 version contain a vulnerability that could allow remote attacker to execute arbitrary code by setting the arguments to the vulnerable API. This can be leveraged for code execution by rebooting the victim’s PC...

9.8CVSS8.1AI score0.00965EPSS

Exploits0References1

OSV•added 2025/12/30 1:15 p.m.•1 views

DEBIAN-CVE-2022-50813

In the Linux kernel, the following vulnerability has been resolved: drivers: mcb: fix resource leak in mcbprobe When probe hook function failed in mcbprobe, it doesn't put the device. Compiled test only...

5.4AI score0.0004EPSS

Exploits0References1

OSV•added 2025/12/17 6:6 a.m.•4 views

BELL-CVE-2025-68213

Bulletin has no description...

6.9AI score0.00024EPSS

Exploits0References1