Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1118 matches found

SUSE CVE
SUSE CVEadded 2 days ago3 views

SUSE CVE-2026-49940

Net::CIDR::Set versions through 0.20 for Perl accept non-ASCII IP addresses and netmasks. Unicode digits such as the Arabic-Indic One U+0661 were accepted but not properly parsed as numbers. This could allow network masks to accept larger networks...

6.5CVSS5.5AI score0.00041EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 3 days ago5 views

CVE-2026-49940

Net::CIDR::Set versions through 0.20 for Perl accept non-ASCII IP addresses and netmasks. Unicode digits such as the Arabic-Indic One U+0661 were accepted but not properly parsed as numbers. This could allow network masks to accept larger networks...

6.5CVSS5.4AI score0.00041EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 3 days ago6 views

CVE-2026-42476

Two heap-based out-of-bounds read vulnerabilities in the STL ASCII file parser in Open CASCADE Technology OCCT V800rc5 exist in RWStlReader::ReadAscii because buffers returned by StandardReadLineBuffer::ReadLine are not properly length-validated before strncasecmp or direct byte access...

7.1CVSS5.5AI score0.00014EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 3 days ago4 views

CVE-2026-39821

The ToASCII and ToUnicode functions incorrectly accept Punycode-encoded labels that decode to an ASCII-only label. For example, ToUnicode"xn--example-.com" incorrectly returns the name "example.com" rather than an error. This behavior can lead to privilege escalation in programs using the idna...

9.6CVSS5.5AI score0.0005EPSS
Exploits0References1
NVD
NVDadded 3 days ago8 views

CVE-2026-11347

The linqi application contains hardcoded cryptographic keys. Additionally, the application uses a weak algorithm with a limited ASCII charset to dynamically generate Initialization Vectors IVs for AES/CBC encryption, making known-plaintext attacks feasible. An attacker with local access can...

8.5CVSS0.00008EPSS
Exploits0References1
NVD
NVDadded 4 days ago6 views

CVE-2026-49940

Net::CIDR::Set versions through 0.20 for Perl accept non-ASCII IP addresses and netmasks. Unicode digits such as the Arabic-Indic One U+0661 were accepted but not properly parsed as numbers. This could allow network masks to accept larger networks...

6.5CVSS0.00041EPSS
Exploits0References2
EUVD
EUVDadded 4 days ago6 views

EUVD-2026-34297

Net::CIDR::Set versions through 0.20 for Perl accept non-ASCII IP addresses and netmasks. Unicode digits such as the Arabic-Indic One U+0661 were accepted but not properly parsed as numbers. This could allow network masks to accept larger networks...

6.5CVSS5.8AI score0.00258EPSS
Exploits0References2
ATTACKERKB
ATTACKERKBadded 4 days ago4 views

CVE-2026-49940

Net::CIDR::Set versions through 0.20 for Perl accept non-ASCII IP addresses and netmasks. Unicode digits such as the Arabic-Indic One U+0661 were accepted but not properly parsed as numbers. This could allow network masks to accept larger networks...

6.5CVSS5.8AI score0.00041EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 4 days ago7 views

CVE-2026-49940 Net::CIDR::Set versions through 0.20 for Perl accept non-ASCII IP addresses and netmasks

Net::CIDR::Set versions through 0.20 for Perl accept non-ASCII IP addresses and netmasks. Unicode digits such as the Arabic-Indic One U+0661 were accepted but not properly parsed as numbers. This could allow network masks to accept larger networks...

5.8AI score0.00041EPSS
Exploits0References2
Cvelist
Cvelistadded 4 days ago33 views

CVE-2026-49940 Net::CIDR::Set versions through 0.20 for Perl accept non-ASCII IP addresses and netmasks

Net::CIDR::Set versions through 0.20 for Perl accept non-ASCII IP addresses and netmasks. Unicode digits such as the Arabic-Indic One U+0661 were accepted but not properly parsed as numbers. This could allow network masks to accept larger networks...

0.00041EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 5 days ago10 views

PT-2026-46266

Name of the Vulnerable Software and Affected Versions Net::CIDR::Set versions prior to 0.21 Description The software accepts non-ASCII IP addresses and netmasks. Unicode digits, such as the Arabic-Indic One U+0661, are accepted but not properly parsed as numbers, which could allow network masks t...

6.5CVSS5.8AI score0.00041EPSS
Exploits0References8
RedhatCVE
RedhatCVEadded 2026/05/29 6:39 p.m.16 views

CVE-2026-7259

A flaw was found in PHP. When an attacker input can influence the encoding passed to mbregexencoding and the application subsequently uses mbregex search APIs, a NULL pointer dereference can occur due to a mismatch between the Oniguruma and mbfl encoding support. This issue can cause a crash in t...

6.5CVSS5.8AI score0.00084EPSS
Exploits0References4
OSV
OSVadded 2026/05/29 3:24 p.m.2 views

SUSE-SU-2026:2113-1 Security update for perl-Net-CIDR-Lite

This update for perl-Net-CIDR-Lite fixes the following issues - CVE-2026-45190: improper validation of trailing newlines or non-ASCII digits can lead to IP ACL bypass bsc1264710. - CVE-2026-45191: extraneous leading zeros in CIDR mask values can lead to IP ACL bypass bsc1264709. - CVE-2026-40198:...

7.5CVSS5.8AI score0.00064EPSS
Exploits0References8
Tenable Nessus
Tenable Nessusadded 2026/05/29 12:0 a.m.8 views

Azure Linux 3.0 Security Update: CBL-Mariner Releases (CVE-2026-39821)

The version of CBL-Mariner Releases installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2026-39821 advisory. - The ToASCII and ToUnicode functions incorrectly accept Punycode-encoded labels that decode to ...

9.6CVSS5.9AI score0.0005EPSS
Exploits0References1
OSV
OSVadded 2026/05/28 7:52 p.m.6 views

GHSA-2XF4-CG6J-VHGQ symfony/polyfill-intl-idn: xn-- labels with ASCII-only Punycode payloads are treated as equivalent to their decoded form

Description symfony/polyfill-intl-idn provides a userland implementation of idntoutf8 and idntoascii for runtimes that lack the intl extension. Its Idn::process method decodes labels prefixed with xn-- using Punycode but never enforces the validity criterion added in UTS 46 revision 33 Section 4...

6.9CVSS5.9AI score
Exploits0References6
SUSE CVE
SUSE CVEadded 2026/05/28 3:58 a.m.9 views

SUSE CVE-2026-39821

The ToASCII and ToUnicode functions incorrectly accept Punycode-encoded labels that decode to an ASCII-only label. For example, ToUnicode"xn--example-.com" incorrectly returns the name "example.com" rather than an error. This behavior can lead to privilege escalation in programs using the idna...

7.4CVSS5.8AI score0.0005EPSS
Exploits0References4
Microsoft CVE
Microsoft CVEadded 2026/05/27 8:3 a.m.13 views

Invoking failure to reject ASCII-only Punycode-encoded labels in golang.org/x/net/idna

...

10CVSS5.8AI score0.0005EPSS
Exploits0
OSV
OSVadded 2026/05/27 12:0 a.m.3 views

UBUNTU-CVE-2026-46644

insecure equivalence in symfony/polyfill-intl-idn for ASCII-only xn-- labels...

5.8AI score
Exploits0References4
UbuntuCve
UbuntuCveadded 2026/05/27 12:0 a.m.5 views

CVE-2026-46644

insecure equivalence in symfony/polyfill-intl-idn for ASCII-only xn-- labels...

5.8AI score
Exploits0References3
Friends Of PHP
Friends Of PHPadded 2026/05/26 8:0 a.m.8 views

CVE-2026-46644: symfony/polyfill-intl-idn accepts xn-- labels whose Punycode payload decodes to ASCII-only: insecure equivalence

More info at https://symfony.com/cve-2026-46644...

5.8AI score
Exploits0Affected Software1
Rows per page
Query Builder