CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2026/05/28 9:35 a.m.•8 views

EUVD-2026-32767

5.8AI score0.00023EPSS

EUVD•added 2026/05/28 9:35 a.m.•7 views

EUVD-2026-32763

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7921: fix a potential clc buffer length underflow The buflen is used to limit the iterations for retrieving the country power setting and may underflow under certain conditions due to changes in the power table in...

EUVD•added 2026/05/28 9:35 a.m.•7 views

EUVD-2026-32887

In the Linux kernel, the following vulnerability has been resolved: ipmi: Check event message buffer response for bad data The event message buffer response data size got checked later when processing, but check it right after the response comes back. It appears some BMCs may return an empty...

Cvelist•added 2026/05/28 9:35 a.m.•25 views

CVE-2026-46128 ipmi: Check event message buffer response for bad data

0.00032EPSS

Exploits0References8

ATTACKERKB•added 2026/05/28 9:35 a.m.•5 views

CVE-2026-46128

Exploits0References9Affected Software1

CVE•added 2026/05/28 9:35 a.m.•13 views

CVE-2026-46128

The CVE covers a Linux kernel IPMI issue where event message buffer data size was only validated later in processing instead of immediately after the response. Some BMCs may return an empty message rather than signaling an error when fetching events. The available connected documents indicate thi...

Debian CVE•added 2026/05/28 9:35 a.m.•6 views

Exploits0References8

CVE-2026-46128

ATTACKERKB•added 2026/05/28 9:35 a.m.•8 views

Exploits0

CVE-2026-46123

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: virtiobt: clamp rx length before skbput virtbtrxwork calls skbputskb, len where len comes directly from virtqueuegetbuf with no validation against the buffer we posted to the device. The RX skb is allocated in...

7.7CVSS5.9AI score0.00016EPSS

Exploits0References8Affected Software1

Cvelist•added 2026/05/28 9:35 a.m.•26 views

CVE-2026-46123 Bluetooth: virtio_bt: clamp rx length before skb_put

7.7CVSS0.00016EPSS

Exploits0References7

EUVD•added 2026/05/28 9:35 a.m.•13 views

EUVD-2026-32882

5.9AI score0.00016EPSS

OSV•added 2026/05/28 8:59 a.m.•6 views

OSEC-2026-09 Albatross-console memory exhaustion

Albatross-console doesn't properly terminate when looping over the ringbuffer. This leads to denial of service and memory exhaustion. Scenario A user that has access to albatross-console either via the unix domain socket requires root:albatross by default or via albatross-tls-endpoint requires a...

7.1CVSS5.9AI score

Exploits0References1

RedHat Linux•added 2026/05/28 8:47 a.m.•23 views

kernel: ALSA: firewire-motu: fix buffer overflow in hwdep read for DSP events

In the Linux kernel, the following vulnerability has been resolved: ALSA: firewire-motu: fix buffer overflow in hwdep read for DSP events The DSP event handling code in hwdepread could write more bytes to the user buffer than requested, when a user provides a buffer smaller than the event header...

6.1AI score0.00064EPSS

RedhatCVE•added 2026/05/28 8:12 a.m.•9 views

CVE-2026-8834

IBM HTTP Server 8.5, and 9.0 contains a buffer overflow vulnerability. A privileged user, authenticated to the Administration Server, could exploit this vulnerability to execute remote code or cause a denial of service...

8CVSS6.4AI score0.00007EPSS

Exploits0References1

RedHat Linux•added 2026/05/28 7:53 a.m.•11 views

xorg: xwayland: X.Org X server: Denial of Service via integer underflow in XKB compatibility map handling

A flaw was found in the X.Org X server. This integer underflow vulnerability, specifically in the XKB compatibility map handling, allows an attacker with local or remote X11 server access to trigger a buffer read overrun. This can lead to memory-safety violations and potentially a denial of servi...

7.8CVSS6AI score0.00005EPSS

GithubExploit•added 2026/05/28 6:56 a.m.•89 views

Self-Researched-POC

NGINX ngxhttpr...

9.2CVSS6AI score0.00076EPSS

Exploits3

SUSE CVE•added 2026/05/28 3:57 a.m.•10 views

SUSE CVE-2026-44988

LibVNCClient is a library for easy implementation of a VNC client. In 0.9.15 and earlier, LibVNCClient's Tight encoding decoder uses fixed-size 2048-pixel scratch buffers for the Gradient filter, but it does not reject Tight rectangles whose width is larger than 2048 pixels. A malicious VNC serve...

8.1CVSS5.8AI score0.00042EPSS

SUSE CVE•added 2026/05/28 3:57 a.m.•7 views

SUSE CVE-2026-45878

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix watchid bounds checking in debug address watch v2 The address watch clear code receives watchid as an unsigned value u32, but some helper functions were using a signed int and checked bits by shifting with watchid...

7.8CVSS5.9AI score0.00013EPSS