CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

RedhatCVE•added 2026/06/05 7:46 p.m.•6 views

CVE-2026-46598

A flaw was found in golang.org/x/crypto/ssh/agent. An attacker could provide specially crafted inputs that, when processed, lead to the creation of an ed25519.PrivateKey by casting malformed wire bytes. This improper input handling can cause the program to panic and crash, resulting in a Denial o...

5.3CVSS5.3AI score0.00313EPSS

Exploits0References7

Tenable Nessus•added 2026/05/25 12:0 a.m.•13 views

Linux Distros Unpatched Vulnerability : CVE-2026-46598

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - For certain crafted inputs, a 'ed25519.PrivateKey' was created by casting malformed wire bytes, leading to a panic when used. CVE-2026-46598 Note that Nessus...

5.3CVSS5.9AI score0.00313EPSS

Exploits0References4

SUSE CVE•added 2026/05/23 1:27 a.m.•13 views

SUSE CVE-2026-46598

For certain crafted inputs, a 'ed25519.PrivateKey' was created by casting malformed wire bytes, leading to a panic when used...

7.5CVSS5.8AI score0.00313EPSS

Exploits0References15

Snyk•added 2026/05/22 5:29 a.m.•8 views

Incorrect Type Conversion or Cast

Overview Affected versions of this package are vulnerable to Incorrect Type Conversion or Cast due to the improper handling of crafted input data in the ed25519.PrivateKey component. An attacker can cause the client to panic by supplying malformed wire bytes. Remediation Upgrade...

8.7CVSS5.8AI score0.00313EPSS

Exploits0References2

NVD•added 2026/05/22 4:16 a.m.•12 views

CVE-2026-46598

For certain crafted inputs, a 'ed25519.PrivateKey' was created by casting malformed wire bytes, leading to a panic when used...

5.3CVSS0.00313EPSS

Exploits0References4

Cvelist•added 2026/05/22 2:31 a.m.•54 views

CVE-2026-46598 Invoking pathological inputs can lead to client panic in golang.org/x/crypto/ssh/agent

For certain crafted inputs, a 'ed25519.PrivateKey' was created by casting malformed wire bytes, leading to a panic when used...

0.00313EPSS

Exploits0References4

EUVD•added 2026/05/22 2:31 a.m.•8 views

EUVD-2026-31402

For certain crafted inputs, a 'ed25519.PrivateKey' was created by casting malformed wire bytes, leading to a panic when used...

5.3CVSS5.8AI score0.00313EPSS

Exploits0References4

Vulnrichment•added 2026/05/22 2:31 a.m.•8 views

CVE-2026-46598 Invoking pathological inputs can lead to client panic in golang.org/x/crypto/ssh/agent

For certain crafted inputs, a 'ed25519.PrivateKey' was created by casting malformed wire bytes, leading to a panic when used...

5.8AI score0.00313EPSS

Exploits0References4

OSV•added 2026/05/22 2:8 a.m.•8 views

GO-2026-5033 Invoking pathological inputs can lead to client panic in golang.org/x/crypto/ssh/agent

For certain crafted inputs, a 'ed25519.PrivateKey' was created by casting malformed wire bytes, leading to a panic when used...

5.3CVSS5.8AI score0.00313EPSS

Exploits0References3

Positive Technologies•added 2026/05/22 12:0 a.m.•13 views

PT-2026-42718

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description Certain crafted inputs allow the creation of an ed25519.PrivateKey by casting malformed wire bytes, which results in a panic when the key is used. A panic is an...

5.3CVSS5.8AI score0.00313EPSS

Exploits0

Positive Technologies•added 2025/01/01 12:0 a.m.•5 views

PT-2025-40348

Name of the Vulnerable Software and Affected Versions Chromium affected versions not specified Description A use-after-free condition exists in V8 when evaluating the compile-time options parameter, which detaches the ArrayBuffer holding the wire bytes. This issue was reported by Google Big Sleep...

8.8CVSS6.4AI score0.00329EPSS

Exploits0References42

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by