CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

8.4CVSS6.1AI score0.00152EPSS

Google Android elevation of privilege vulnerability (CNVD-2026-19056)

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an elevation of privilege vulnerability caused by an out-of-bounds write due to an integer overflow in multiple functions of memprotect.c. The vulnerability is caused by an integer overflow in th...

6.2CVSS5.7AI score0.00103EPSS

Google Android Information Disclosure Vulnerability (CNVD-2026-18787)

Google Android is a Linux-based open source operating system from Google. Google Android suffers from an information disclosure vulnerability that stems from a lack of privilege checking, which can be exploited by attackers to obtain sensitive information...

CNVD•added 2026/03/06 12:0 a.m.•3 views

Google Android elevation of privilege vulnerability (CNVD-2026-18786)

Google Android is a Linux-based open source operating system from Google. An elevation of privilege vulnerability exists in Google Android, which can be exploited by an attacker to cause an application to gain read and write access to non-existent files and local elevation of privilege...

8.4CVSS5.8AI score0.00101EPSS

8.4CVSS5.8AI score0.00112EPSS

Google Android suffers from unspecified vulnerability (CNVD-2026-18789)

Google Android is a Linux-based open source operating system from Google. Google Android has a security vulnerability that can be exploited by attackers to cause local elevation of privilege...

8.4CVSS5.8AI score0.00098EPSS

Google Android Privilege Bypass Vulnerability

Google Android is a Linux-based open source operating system from Google. Google Android suffers from a privilege bypass vulnerability that can be exploited by an attacker to cause a local elevation of privilege...

Tenable Nessus•added 2026/03/06 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-3537

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Object lifecycle issue in PowerVR in Google Chrome on Android prior to 145.0.7632.159 allowed a remote attacker to potentially exploit heap corruption via a...

8.8CVSS7.5AI score0.00377EPSS

Exploits0References2

Tenable Nessus•added 2026/03/06 12:0 a.m.•1 views

NewStart CGSL MAIN 6.06 (SP) : libnl3 Vulnerability (NS-SA-2026-0018)

The remote NewStart CGSL host, running version MAIN 6.06 SP, has libnl3 packages installed that are affected by a vulnerability: - An elevation of privilege vulnerability in the libnl library could enable a local malicious application to execute arbitrary code within the context of a privileged...

9.3CVSS6.1AI score0.00989EPSS

Tenable Nessus•added 2026/03/06 12:0 a.m.•2 views

NewStart CGSL MAIN 6.06 (SP) : blktrace Vulnerability (NS-SA-2026-0021)

The remote NewStart CGSL host, running version MAIN 6.06 SP, has blktrace packages installed that are affected by a vulnerability: - blktrace aka Block IO Tracing 1.2.0, as used with the Linux kernel and Android, has a buffer overflow in the devmapread function in btt/devmap.c because the device...

5.5CVSS6.2AI score0.02001EPSS

Tenable Nessus•added 2026/03/06 12:0 a.m.•8 views

NewStart CGSL MAIN 6.06 (SP) : linux-firmware Multiple Vulnerabilities (NS-SA-2026-0017)

The remote NewStart CGSL host, running version MAIN 6.06 SP, has linux-firmware packages installed that are affected by multiple vulnerabilities: - Broadcom BCM43xx Wi-Fi chips allow remote attackers to execute arbitrary code via unspecified vectors, aka the Broadpwn issue. CVE-2017-9417 - A remo...

10CVSS6.6AI score0.47537EPSS

Exploits9References7

EUVD•added 2026/03/05 9:30 p.m.•5 views

EUVD-2025-208314

Rakuten Viber Cloak mode in Android v25.7.2.0g and Windows v25.6.0.0–v25.8.1.0 uses a static and predictable TLS ClientHello fingerprint lacking extension diversity, allowing Deep Packet Inspection DPI systems to trivially identify and block proxy traffic, undermining censorship circumvention...

5.9AI score0.00345EPSS

OSV•added 2026/03/05 7:15 p.m.•6 views

CVE-2025-13476

9.8CVSS5.8AI score0.00345EPSS

Exploits0References2

NVD•added 2026/03/05 7:15 p.m.•4 views

CVE-2025-13476

9.8CVSS0.00345EPSS

Exploits0References2

EUVD•added 2026/03/05 6:31 p.m.•3 views

EUVD-2026-9827

Cross-Site Request Forgery CSRF vulnerability in rustdesk-client RustDesk Client rustdesk-client on Windows, MacOS, Linux, iOS, Android Flutter URI scheme handler, FFI bridge modules allows Privilege Escalation. This vulnerability is associated with program files flutter/lib/common.Dart,...

9.3CVSS5.9AI score0.00306EPSS

Exploits1References3

EUVD•added 2026/03/05 6:31 p.m.•5 views

EUVD-2026-9829

Cleartext Transmission of Sensitive Information vulnerability in rustdesk-client RustDesk Client rustdesk-client on Windows, MacOS, Linux, iOS, Android Heartbeat sync loop modules allows Sniffing Attacks. This vulnerability is associated with program files src/hbbshttp/sync.Rs and program routine...

8.7CVSS5.9AI score0.00271EPSS

Exploits1References2

Vulnrichment•added 2026/03/05 4:53 p.m.•5 views

CVE-2025-13476 Rakuten Viber uses broken or risky cryptographic Algorithm

5.8AI score0.00345EPSS

Exploits0References1

OSV•added 2026/03/05 4:16 p.m.•2 views

CVE-2026-30798

Insufficient Verification of Data Authenticity, Improper Handling of Exceptional Conditions vulnerability in rustdesk-client RustDesk Client rustdesk-client on Windows, MacOS, Linux, iOS, Android Heartbeat sync loop, strategy processing modules allows Protocol Manipulation. This vulnerability is...

7.5CVSS5.8AI score

OSV•added 2026/03/05 4:16 p.m.•2 views

CVE-2026-30794

Improper Certificate Validation vulnerability in rustdesk-client RustDesk Client rustdesk-client on Windows, MacOS, Linux, iOS, Android HTTP API client, TLS transport modules allows Adversary in the Middle AiTM. This vulnerability is associated with program files src/hbbshttp/httpclient.Rs and...

9.1CVSS5.8AI score