CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

120634 matches found

CNNVD•added 2026/03/11 12:0 a.m.•4 views

Lenovo ThinkPad 安全漏洞

Lenovo ThinkPad is a portable computer by Lenovo Corporation. The Lenovo ThinkPad has a security vulnerability, which stems from improper initialization issues in the BIOS of certain ThinkPads. This vulnerability may allow local privileged users to modify data and execute arbitrary code...

8.4CVSS6AI score0.0013EPSS

Exploits0References1

CNVD•added 2026/03/11 12:0 a.m.•4 views

SonicWALL SonicOS Buffer Overflow Vulnerability

SonicWALL SonicOS is a set of operating systems designed for SonicWall firewall appliances from SonicWALL, Inc. A buffer overflow vulnerability exists in SonicWALL SonicOS. The vulnerability stems from improper API endpoint boundary checking and can be exploited by an attacker to execute arbitrar...

4.9CVSS6.4AI score0.00322EPSS

Exploits0References1

Positive Technologies•added 2026/03/11 12:0 a.m.•5 views

PT-2026-24746

Name of the Vulnerable Software and Affected Versions Jellyfin versions affected versions not specified Description Jellyfin is an open-source media system. The code-quality.yml GitHub Actions workflow in the jellyfin/jellyfin-ios repository is susceptible to arbitrary code execution through pull...

10CVSS6.3AI score0.00445EPSS

Exploits0References12

Tenable Nessus•added 2026/03/11 12:0 a.m.•3 views

AlmaLinux 9 : postgresql (ALSA-2026:3730)

The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:3730 advisory. postgresql: PostgreSQL missing validation of multibyte character length executes arbitrary code CVE-2026-2006 postgresql: PostgreSQL intarray missing...

8.8CVSS6.3AI score0.00678EPSS

Exploits3References5

Tenable Nessus•added 2026/03/11 12:0 a.m.•5 views

AlmaLinux 8 : postgresql:15 (ALSA-2026:4059)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:4059 advisory. postgresql: PostgreSQL missing validation of multibyte character length executes arbitrary code CVE-2026-2006 postgresql: PostgreSQL intarray missing...

8.8CVSS6.3AI score0.00678EPSS

Exploits3References5

Kaspersky•added 2026/03/11 12:0 a.m.•4 views

KLA90933 ACE vulnerability in Microsoft Browser

Memory safety vulnerability was found in Microsoft Browser. Malicious users can exploit this vulnerability to execute arbitrary code, cause denial of service. Original advisories CVE-2026-3537 Exploitation Related products Microsoft-Edge CVE list CVE-2026-3537 critical Solution Install necessary...

8.8CVSS6.1AI score0.00377EPSS

Exploits0References3

OSV•added 2026/03/10 11:16 p.m.•3 views

CVE-2026-27271

Illustrator versions 29.8.4, 30.1 and earlier are affected by a Heap-based Buffer Overflow vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score

Exploits0References1

NVD•added 2026/03/10 11:16 p.m.•6 views

CVE-2026-27271

7.8CVSS0.00178EPSS

Exploits0References1

NVD•added 2026/03/10 11:16 p.m.•4 views

CVE-2026-21362

Illustrator versions 29.8.4, 30.1 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS0.00141EPSS

Exploits0References1

Cvelist•added 2026/03/10 10:56 p.m.•17 views

CVE-2026-21362 Illustrator | Out-of-bounds Write (CWE-787)

7.8CVSS0.00141EPSS

Exploits0References1

CVE•added 2026/03/10 10:56 p.m.•11 views

CVE-2026-21362

CVE-2026-21362 affects Adobe Illustrator versions 29.8.4, 30.1 and earlier. The issue is an out-of-bounds write (CWE-787) that could allow arbitrary code execution in the context of the current user, requiring the user to open a malicious file. Multiple connected sources corroborate the same vuln...

7.8CVSS6.3AI score0.00141EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2026/03/10 10:56 p.m.•3 views

CVE-2026-27272 Illustrator | Out-of-bounds Write (CWE-787)

7.8CVSS6.3AI score0.00138EPSS

Exploits0References1

ATTACKERKB•added 2026/03/10 10:56 p.m.•4 views

CVE-2026-27272

7.8CVSS6.3AI score0.00138EPSS

Exploits0References2

CVE•added 2026/03/10 10:56 p.m.•8 views

CVE-2026-27272

CVE-2026-27272 affects Adobe Illustrator versions 29.8.4, 30.1 and earlier with an out-of-bounds write that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction (victim opens a malicious file). Multiple connected advisories (Red Hat, NCSC...

7.8CVSS6.3AI score0.00138EPSS

Exploits0References1Affected Software1

Cvelist•added 2026/03/10 10:56 p.m.•17 views

CVE-2026-27272 Illustrator | Out-of-bounds Write (CWE-787)

7.8CVSS0.00138EPSS

Exploits0References1

NVD•added 2026/03/10 10:16 p.m.•3 views

CVE-2026-27278

Acrobat Reader versions 24.001.30307, 24.001.30308, 25.001.21265 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious...

7.8CVSS0.00222EPSS

Exploits0References1

OSV•added 2026/03/10 10:16 p.m.•2 views

CVE-2026-27220

7.8CVSS6.3AI score0.00221EPSS

Exploits0References1

NVD•added 2026/03/10 10:16 p.m.•3 views

CVE-2026-27220

7.8CVSS0.00221EPSS

Exploits0References1

Vulnrichment•added 2026/03/10 9:41 p.m.•1 views

CVE-2026-27278 Acrobat Reader | Use After Free (CWE-416)