CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, xfAppUpdateWindowFromSurface reads from a freed xfAppWindow because the RDPGFX DVC thread obtains a bare pointer via xfrailgetwindow without any lifetime protection, while the main thread can concurrently...

9.8CVSS5.3AI score0.00164EPSS

Exploits1References1

OSV•added 2026/02/19 6:9 a.m.•1 views

BELL-CVE-2026-23210

Bulletin has no description...

4.7CVSS5.1AI score0.00022EPSS

Exploits0References1

OSV•added 2026/02/18 4:22 p.m.•1 views

DEBIAN-CVE-2026-23225

In the Linux kernel, the following vulnerability has been resolved: sched/mmcid: Don't assume CID is CPU owned on mode switch Shinichiro reported a KASAN UAF, which is actually an out of bounds access in the MMCID management code. CPU0 CPU1 T1 runs in userspace T0: forkT4 - Switch to per CPU CID...

7.8CVSS5.2AI score0.00019EPSS

Exploits0References1

OSV•added 2026/02/14 5:15 p.m.•2 views

DEBIAN-CVE-2026-23190

In the Linux kernel, the following vulnerability has been resolved: ASoC: amd: fix memory leak in acp3x pdm dma ops...

5.5CVSS5.1AI score0.00025EPSS

Exploits0References1

OSV•added 2026/02/14 5:15 p.m.•2 views

DEBIAN-CVE-2026-23175

In the Linux kernel, the following vulnerability has been resolved: net: cpsw: Execute ndosetrxmode callback in a work queue Commit 1767bb2d47b7 "ipv6: mcast: Don't hold RTNL for IPV6ADDMEMBERSHIP and MCASTJOINGROUP." removed the RTNL lock for IPV6ADDMEMBERSHIP and MCASTJOINGROUP operations...

7CVSS5.5AI score0.00019EPSS

Exploits0References1

OSV•added 2026/02/14 1:53 a.m.•2 views

MINI-48VM-55RF-J4Q3

Bulletin has no description...

8.8CVSS5.1AI score0.00039EPSS

Exploits3

OSV•added 2026/02/13 7:17 p.m.•1 views

DEBIAN-CVE-2026-2441

Use after free in CSS in Google Chrome prior to 145.0.7632.75 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.6AI score0.23127EPSS

Exploits12References1

OSV•added 2026/02/11 2:58 a.m.•2 views

MINI-C4H7-HX3M-R3MJ

Bulletin has no description...

4.3CVSS5.1AI score0.00007EPSS

Exploits0

OSV•added 2026/02/10 5:16 p.m.•4 views

DEBIAN-CVE-2026-25530

Kanboard is project management software focused on Kanban methodology. Prior to 1.2.50, the getSwimlane API method lacks project-level authorization, allowing authenticated users to access swimlane data from projects they cannot access. This vulnerability is fixed in 1.2.50...

4.3CVSS5.3AI score0.00041EPSS

Exploits1References1

OSV•added 2026/02/10 6:9 a.m.•1 views

BELL-CVE-2026-23090

Bulletin has no description...

5.5CVSS5.1AI score0.00018EPSS

Exploits0References1

OSV•added 2026/02/04 5:16 p.m.•1 views

DEBIAN-CVE-2026-23091

In the Linux kernel, the following vulnerability has been resolved: intelth: fix device leak on output open Make sure to drop the reference taken when looking up the th device during output device open on errors and on close. Note that a recent commit fixed the leak in a couple of open error path...

5.5CVSS5.2AI score0.00018EPSS

Exploits0References1

OSV•added 2026/02/02 12:2 p.m.•1 views

MINI-XFQV-3MQ2-PPV4

Bulletin has no description...

5.3CVSS4.9AI score0.00019EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by