CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

PostrgeSql•added 2026/02/12 12:0 a.m.•17 views

Vulnerability in contrib module (CVE-2026-2004)

PostgreSQL intarray missing validation of type of input to selectivity estimator executes arbitrary code Missing validation of type of input in PostgreSQL intarray extension selectivity estimator function allows an object creator to execute arbitrary code as the operating system user running the...

8.8CVSS6.1AI score0.00497EPSS

Exploits0References1Affected Software1

CISA KEV Catalog•added 2026/02/12 12:0 a.m.•12 views

Notepad++ Download of Code Without Integrity Check Vulnerability

Notepad++ when using the WinGUp updater, contains a download of code without integrity check vulnerability that could allow an attacker to intercept or redirect update traffic to download and execute an attacker-controlled installer. This could lead to arbitrary code execution with the privileges...

7.7CVSS6.4AI score0.01268EPSS

In wildExploits0

NVD•added 2026/02/11 11:16 p.m.•8 views

CVE-2026-20700

A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 26.3 and iPadOS 26.3, macOS Tahoe 26.3, tvOS 26.3, visionOS 26.3, watchOS 26.3. An attacker with memory write capability may be able to execute arbitrary code. Apple is aware of a report that this...

7.8CVSS0.01319EPSS

Exploits4References6

OSV•added 2026/02/11 11:16 p.m.•3 views

CVE-2026-20700

A memory corruption issue was addressed with improved state management. This issue is fixed in watchOS 26.3, tvOS 26.3, macOS Tahoe 26.3, visionOS 26.3, iOS 26.3 and iPadOS 26.3. An attacker with memory write capability may be able to execute arbitrary code. Apple is aware of a report that this...

7.8CVSS7.6AI score0.01319EPSS

Exploits4References6

ATTACKERKB•added 2026/02/11 10:58 p.m.•6 views

CVE-2026-20700

8.8CVSS7.7AI score0.22216EPSS

Exploits16References6

OSV•added 2026/02/11 9:30 p.m.•3 views

GHSA-W8V5-VHQR-4H9V DiskCache has unsafe pickle deserialization

DiskCache python-diskcache through 5.6.3 uses Python pickle for serialization by default. An attacker with write access to the cache directory can achieve arbitrary code execution when a victim application reads from the cache...

7CVSS7.6AI score0.00546EPSS

Exploits1References3

NVD•added 2026/02/11 9:16 p.m.•12 views

CVE-2020-37183

Allok RM RMVB to AVI MPEG DVD Converter 3.6.1217 contains a stack overflow vulnerability that allows attackers to execute arbitrary code by overwriting Structured Exception Handler SEH registers. Attackers can craft a malicious payload in the License Name input field to trigger a buffer overflow...

Vulnrichment•added 2026/02/11 8:37 p.m.•2 views

CVE-2020-37184 Allok Video Converter 4.6.1217 - Stack Overflow (SEH)

Allok Video Converter 4.6.1217 contains a stack overflow vulnerability in the License Name input field that allows attackers to execute arbitrary code. Attackers can craft a specially designed payload to overwrite SEH handlers and execute system commands by injecting malicious bytecode into the...

9.8CVSS6AI score0.00419EPSS

Cvelist•added 2026/02/11 8:37 p.m.•25 views

CVE-2020-37184 Allok Video Converter 4.6.1217 - Stack Overflow (SEH)

Cvelist•added 2026/02/11 8:37 p.m.•24 views

CVE-2020-37183 Allok RM RMVB to AVI MPEG DVD Converter 3.6.1217 - Stack Overflow (SEH)

ATTACKERKB•added 2026/02/11 8:37 p.m.•3 views

CVE-2020-37181

Torrent FLV Converter 1.51 Build 117 contains a stack overflow vulnerability that allows attackers to overwrite Structured Exception Handler SEH through a malicious registration code input. Attackers can craft a payload with specific offsets and partial SEH overwrite techniques to potentially...

9.8CVSS6.1AI score0.00419EPSS

Cvelist•added 2026/02/11 8:36 p.m.•21 views

CVE-2020-37176 Torrent 3GP Converter 1.51 - Stack Overflow (SEH)

Torrent 3GP Converter 1.51 contains a stack overflow vulnerability that allows attackers to execute arbitrary code by overwriting Structured Exception Handler SEH registers. Attackers can craft a malicious payload targeting the application's registration dialog to trigger code execution and open...

Vulnrichment•added 2026/02/11 8:36 p.m.•1 views

CVE-2020-37176 Torrent 3GP Converter 1.51 - Stack Overflow (SEH)

9.8CVSS6.8AI score0.00419EPSS

RedhatCVE•added 2026/02/11 7:44 p.m.•4 views

CVE-2026-21329

After Effects versions 25.6 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score0.0022EPSS

7.8CVSS6.3AI score0.0022EPSS

CVE-2026-21323

7.8CVSS6.3AI score0.0022EPSS

CVE-2026-21351

7.8CVSS6.3AI score0.00139EPSS

CVE-2026-21341

Substance3D - Stager versions 3.1.6 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

RedhatCVE•added 2026/02/11 7:44 p.m.•6 views

CVE-2026-21318

After Effects versions 25.6 and earlier are affected by an out-of-bounds write vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS6.3AI score0.00184EPSS

7.8CVSS6.3AI score0.00184EPSS

CVE-2026-21328