CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1203 matches found

OSV•added 2026/02/14 4:15 p.m.•3 views

UBUNTU-CVE-2026-23138

In the Linux kernel, the following vulnerability has been resolved: tracing: Add recursion protection in kernel stack trace recording A bug was reported about an infinite recursion caused by tracing the rcu events with the kernel stack trace trigger enabled. The stack trace code called back into...

5.5CVSS5.8AI score0.00122EPSS

Exploits0References5

OSV•added 2026/02/14 3:16 p.m.•3 views

AZL-77691 CVE-2026-23118 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix data-race warning and potential load/store tearing Fix the following: BUG: KCSAN: data-race in rxrpcpeerkeepaliveworker / rxrpcsenddatapacket which is reporting an issue with the reads and writes to -lasttxat in:...

4.7CVSS5.6AI score0.00086EPSS

Exploits0References1

ATTACKERKB•added 2026/02/14 3:9 p.m.•5 views

CVE-2026-23118

5.2AI score0.00086EPSS

Exploits0References4Affected Software1

CVE•added 2026/02/14 3:9 p.m.•13 views

CVE-2026-23118

The CVE-2026-23118 entry concerns a Linux kernel rxrpc data-race: rxrpc_peer_keepalive_worker and rxrpc_send_data_packet access peer->last_tx_at without synchronization, and the 64-bit last_tx_at risking 32-bit tearing. The fix changes last_tx_at to unsigned int and stores only the least-signi...

4.7CVSS5.3AI score0.00086EPSS

Exploits0References4Affected Software1

Fedora•added 2026/02/11 12:59 a.m.•8 views

[SECURITY] Fedora 42 Update: rust-add-determinism-0.6.0-3.fc42

RPM buildroot helper to strip nondeterministic bits in files...

7.5CVSS5.5AI score0.00443EPSS

Exploits1

NVD•added 2026/02/10 10:17 p.m.•5 views

CVE-2026-26007

cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Prior to 46.0.5, the publickeyfromnumbers or EllipticCurvePublicNumbers.publickey, EllipticCurvePublicNumbers.publickey, loadderpublickey and loadpempublickey functions do not verify that the...

8.2CVSS0.00227EPSS

Exploits0References3

Github Security Blog•added 2026/02/10 9:27 p.m.•26 views

cryptography Vulnerable to a Subgroup Attack Due to Missing Subgroup Validation for SECT Curves

Vulnerability Summary The publickeyfromnumbers or EllipticCurvePublicNumbers.publickey, EllipticCurvePublicNumbers.publickey, loadderpublickey and loadpempublickey functions do not verify that the point belongs to the expected prime-order subgroup of the curve. This missing validation allows an...

8.2CVSS5.6AI score0.00227EPSS

Exploits0References6Affected Software1

RustSec•added 2026/02/05 12:0 p.m.•3 views

Unnecessary clamping of seed reduces seed entropy to 251 bits

The latest releases of the libcrux-ed25519 crate contains the following bug-fix: 1320: Remove duplicated clamping step during key generation The issue fixed in 1320 was first reported by Nadim Kobeissi...

5.3AI score

Exploits0Affected Software1

RedhatCVE•added 2026/01/28 9:17 a.m.•11 views

CVE-2026-1465

Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in anyrtcIO-Community anyRTC-RTMP-OpenSource thirdparty/faad2-2.7/libfaad modules. This vulnerability is associated with program files bits.C, syntax.C. This issue affects anyRTC-RTMP-OpenSource: before 1.0...

8.7CVSS5.9AI score0.00118EPSS

Exploits0References1

EUVD•added 2026/01/27 8:15 a.m.•5 views

EUVD-2026-4715

8.7CVSS5.9AI score0.00118EPSS

Exploits0References1

Broadcom•added 2026/01/27 12:0 a.m.•13 views

Multiple Vulnerabilities in Node.js (Wednesday, May 14, 2025 Security Releases). Nessus Plugin ID 236766

In Node.js, the ReadFileUtf8 internal binding leaks memory due to a corrupted pointer in uvfss.file: a UTF-16 path buffer is allocated but subsequently overwritten when the file descriptor is set. This results in an unrecoverable memory leak on every call. Repeated use can cause unbounded memory...

7.5CVSS7.5AI score0.00727EPSS

Exploits1

Packet Storm News•added 2026/01/20 12:0 a.m.•0 views

Stegano 2.1.0

Stegano is a basic Python Steganography module. Stegano implements two methods of hiding: using the red portion of a pixel to hide ASCII messages, and using the Least Significant Bit LSB technique. It is possible to use a more advanced LSB method based on integers sets. The sets Sieve of...

5.5AI score

Exploits0

Tenable Nessus•added 2026/01/15 12:0 a.m.•2 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002342)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002342 advisory. The signal implementation in the Linux kernel before 4.3.5 on powerpc platforms does not check for an MSR with both the S and T bits set, which allows local users to...

5.5CVSS6.6AI score0.00389EPSS

Exploits0References11

RedhatCVE•added 2026/01/14 10:50 p.m.•5 views

CVE-2025-68771

In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix kernel BUG in ocfs2findvictimchain syzbot reported a kernel BUG in ocfs2findvictimchain because the clnextfreerec field of the allocation chain list next free slot in the chain list is 0, triggring the...

5.9AI score0.00173EPSS

Exploits0References4

OSV•added 2026/01/14 3:15 p.m.•1 views

UBUNTU-CVE-2025-71109

In the Linux kernel, the following vulnerability has been resolved: MIPS: ftrace: Fix memory corruption when kernel is located beyond 32 bits Since commit e424054000878 "MIPS: Tracing: Reduce the overhead of dynamic Function Tracer", the macro UASMiLAmostly has been used, and this macro can...

5.5CVSS6AI score0.00171EPSS

Exploits0References25