CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

123 matches found

CVE•added 2026/05/20 1:9 p.m.•37 views

CVE-2026-3039

CVE-2026-3039 affects BIND 9.x when TKEY-based authentication via GSS-API tokens is used; the issue is a memory-exhaustion vulnerability triggered by malicious packets in Active Directory/Kerberos DNS setups. Affected versions span 9.0.0–9.16.50, 9.18.0–9.18.48, 9.20.0–9.20.22, 9.21.0–9.21.21, pl...

7.5CVSS5.7AI score0.00094EPSS

Exploits0References4Affected Software1

Cvelist•added 2026/05/04 6:0 a.m.•28 views

CVE-2026-43862

In mutt before 2.3.2, the imapauthgss security level is mishandled...

3.7CVSS0.00041EPSS

Exploits0References1

SUSE Linux•added 2026/04/14 10:35 a.m.•4 views

Security update for strongswan

This update for strongswan fixes the following issue: CVE-2026-25075: integer underflow when handling EAP-TTLS AVP bsc1259472. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the...

8.2CVSS6.2AI score0.00248EPSS

Exploits2References4

CVE•added 2026/03/10 8:46 p.m.•5 views

CVE-2026-30967

Parse Server is affected when using the generic OAuth2 authentication adapter (oauth2: true) without setting useridField. Prior to 9.5.2-alpha.9 and 8.6.22, the adapter only verified token activity via the provider’s introspection endpoint and did not confirm that the token belongs to the user id...

8.8CVSS5.8AI score0.00127EPSS

Exploits0References3Affected Software1

Positive Technologies•added 2026/03/09 12:0 a.m.•3 views

PT-2026-24137

Name of the Vulnerable Software and Affected Versions Pocket ID versions prior to 2.4.0 Description Pocket ID is an OIDC provider susceptible to cross-client code exchange and expired code reuse. The OIDC token endpoint incorrectly validates authorization codes, only rejecting them when both the...

9.9CVSS5.8AI score0.07313EPSS

Exploits68References137

OSV•added 2026/02/20 9:46 a.m.•5 views

CLSA-2026-1771519663 libsoup: Fix of 2 CVEs

CVE-2026-1761: fix stack-based buffer overflow in multipart HTTP response parsing caused by incorrect length calculation in soupfilterinputstreamreaduntil - CVE-2026-0719: fix stack-based buffer overflow in NTLM authentication caused by integer overflow in md4sum with excessively long passwords...

8.6CVSS6.1AI score0.01262EPSS

Exploits0References1

Github Security Blog•added 2026/02/17 4:13 p.m.•3 views

BSV Blockchain SDK has an Authentication Signature Data Preparation Vulnerability

BRC-104 Authentication Signature Data Preparation Vulnerability Summary A critical cryptographic vulnerability in the TypeScript SDK's BRC-104 authentication implementation caused incorrect signature data preparation, resulting in signature incompatibility between SDK implementations and potentia...

5.4CVSS5.8AI score0.00083EPSS

Exploits0References4Affected Software1

RedHat Linux•added 2026/02/11 10:35 a.m.•3 views

libsoup: Signed to Unsigned Conversion Error Leading to Stack-Based Buffer Overflow in libsoup NTLM Authentication

A flaw was identified in the NTLM authentication handling of the libsoup HTTP library, used by GNOME and other applications for network communication. When processing extremely long passwords, an internal size calculation can overflow due to improper use of signed integers. This results in...

8.6CVSS5.9AI score0.0004EPSS

Exploits0References5

RedHat Linux•added 2026/02/10 8:45 a.m.•4 views

libsoup: Signed to Unsigned Conversion Error Leading to Stack-Based Buffer Overflow in libsoup NTLM Authentication

8.6CVSS5.9AI score0.0004EPSS

Exploits0References5

CNNVD•added 2026/02/04 12:0 a.m.•2 views

Espressif ESP-IDF 数字错误漏洞

Espressif ESP-IDF is an IoT development framework developed by Espressif, a Chinese company. Versions 5.5.2, 5.4.3, 5.3.4, 5.2.6, and 5.1.6 of Espressif ESP-IDF contain numerical error vulnerabilities. These vulnerabilities stem from integer underflow during the processing ofEAP-WSC packets in th...

8CVSS5.8AI score0.00044EPSS

Exploits0References9

Snyk•added 2026/01/30 7:54 p.m.•4 views

Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')

Overview salt is a new approach to infrastructure management built on a dynamic communication bus. Salt can be used for data-driven orchestration, remote execution for any infrastructure, configuration management for any app stack, and much more. Affected versions of this package are vulnerable t...

8.6CVSS6AI score0.00273EPSS

Exploits0References2

Microsoft CVE•added 2026/01/18 9:1 a.m.•3 views

In the eap-mschapv2 plugin (client-side) in strongSwan before 6.0.3, a malicious EAP-MSCHAPv2 server can send a crafted message of size 6 through 8, and cause an integer underflow that potentially results in a heap-based buffer overflow.

...

8.1CVSS5.4AI score0.00016EPSS

Exploits0

Tenable Nessus•added 2025/11/07 12:0 a.m.•0 views

SUSE SLES12 Security Update : strongswan (SUSE-SU-2025:3904-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2025:3904-1 advisory. - CVE-2025-62291: fixed buffer overflow when handling EAP-MSCHAPv2 failure requests bsc1251941 Tenable has extracted the preceding description block...

8.1CVSS5.8AI score0.00016EPSS

Exploits0References4

Cvelist•added 2025/10/09 8:22 p.m.•5 views

CVE-2025-35061 Newforma Info Exchange (NIX) forced NTLMv2 authentication via /NPCSRemoteWeb/LegacyIntegrationServices.asmx

Newforma Info Exchange NIX '/NPCSRemoteWeb/LegacyIntegrationServices.asmx' allows a remote, unauthenticated attacker to cause NIX to make an SMB connection to an attacker-controlled system. The attacker can capture the NTLMv2 hash of the user-configured NIX service account...

8.2CVSS0.00051EPSS

Exploits0References2