CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3914 matches found

Tenable Nessus•added 2026/03/19 12:0 a.m.•4 views

SUSE SLES15 / openSUSE 15 Security Update : 389-ds (SUSE-SU-2026:0914-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2026:0914-1 advisory. - CVE-2025-14905: Fixed heap buffer overflow due to improper size calculation in schemaattrenumcallback callback bsc1258727...

7.2CVSS6.1AI score0.00315EPSS

Exploits0References4

OSV•added 2026/03/18 8:6 p.m.•2 views

GHSA-7G27-V5WJ-JR75 free5GC UDM DataChangeNotification Procedure Panic Due to Nil Pointer Dereference

Impact This is a NULL Pointer Dereference vulnerability leading to Denial of Service. - Security Impact: A remote attacker can cause the UDM service to panic and crash by sending a crafted POST request to the /sdm-subscriptions endpoint with a malformed URL path containing path traversal sequence...

8.7CVSS5.8AI score0.00313EPSS

Exploits1References6

RedhatCVE•added 2026/03/18 4:52 p.m.•2 views

CVE-2026-27459

A flaw was found in pyOpenSSL. The setcookiegeneratecallback callback function can be used to generate DTLS cookies. When the callback returns a cookie string or byte sequence longer than 256 bytes, a buffer overflow can be triggered due to a missing bounds checking before copying the data to a...

9.8CVSS6AI score0.00027EPSS

Exploits0References6

RedhatCVE•added 2026/03/18 4:35 p.m.•3 views

CVE-2026-27448

A flaw was found in pyOpenSSL. The settlsextservernamecallback callback function can be used to implement Server Name Indication SNI during the TLS handshake. When the callback raises an unhandled exception, the handshake incorrectly proceeds instead of terminating. This fail-open behavior can...

6.3CVSS5.8AI score0.00043EPSS

Exploits0References6

EUVD•added 2026/03/18 12:31 p.m.•1 views

EUVD-2026-12808

In the Linux kernel, the following vulnerability has been resolved: net/sched: actgate: snapshot parameters with RCU on replace The gate action can be replaced while the hrtimer callback or dump path is walking the schedule list. Convert the parameters to an RCU-protected snapshot and swap update...

5.7AI score0.00018EPSS

Exploits0References4

Cvelist•added 2026/03/18 10:5 a.m.•25 views

CVE-2026-23245 net/sched: act_gate: snapshot parameters with RCU on replace

7.8CVSS0.00018EPSS

Exploits0References7

RedHat Linux•added 2026/03/18 10:4 a.m.•2 views

capstone: Capstone: Heap buffer overflow via skipdata callback allows denial of service or arbitrary code execution.

A flaw was found in Capstone, a disassembly framework. A local attacker could exploit a heap buffer overflow vulnerability by providing a specially crafted skipdata callback. This flaw occurs because the skipdata length is not properly bounds-checked, which may allow an attacker to write beyond...

7.8CVSS7.7AI score0.00014EPSS

Exploits1References6

SUSE Linux•added 2026/03/18 7:46 a.m.•4 views

Security update for 389-ds

This update for 389-ds fixes the following issues: CVE-2025-14905: Fixed heap buffer overflow due to improper size calculation in schemaattrenumcallback callback bsc1258727. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or...

8.6CVSS6AI score0.00315EPSS

Exploits0References4

SUSE Linux•added 2026/03/18 7:46 a.m.•4 views

Security update for 389-ds

8.6CVSS6AI score0.00315EPSS

Exploits0References4

OSV•added 2026/03/18 7:46 a.m.•2 views

SUSE-SU-2026:0913-1 Security update for 389-ds

This update for 389-ds fixes the following issues: - CVE-2025-14905: Fixed heap buffer overflow due to improper size calculation in schemaattrenumcallback callback bsc1258727...

7.2CVSS6AI score0.00315EPSS

Exploits0References3

OSV•added 2026/03/18 12:16 a.m.•2 views

DEBIAN-CVE-2026-27448

pyOpenSSL is a Python wrapper around the OpenSSL library. Starting in version 0.14.0 and prior to version 26.0.0, if a user provided callback to settlsextservernamecallback raised an unhandled exception, this would result in a connection being accepted. If a user was relying on this callback for...

5.3CVSS5.3AI score0.00043EPSS

Exploits0References1

NVD•added 2026/03/18 12:16 a.m.•2 views

CVE-2026-27448

6.3CVSS0.00043EPSS

Exploits0References3

OSV•added 2026/03/18 12:0 a.m.•2 views

ALSA-2026:4898 Important: capstone security update

Capstone is a disassembly framework with the target of becoming the ultimate disasm engine for binary analysis and reversing in the security community. Security Fixes: capstone: Capstone: Memory corruption via unchecked vsnprintf return CVE-2025-68114 capstone: Capstone: Heap buffer overflow via...

9.8CVSS7.8AI score0.00038EPSS

Exploits1References6

Tenable Nessus•added 2026/03/18 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2026-27448

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - pyOpenSSL is a Python wrapper around the OpenSSL library. Starting in version 0.14.0 and prior to version 26.0.0, if a user provided callback to...

6.3CVSS5.5AI score0.00043EPSS

Exploits0References3

OSV•added 2026/03/18 12:0 a.m.•0 views

UBUNTU-CVE-2026-27448

6.3CVSS5.8AI score0.00043EPSS

Exploits0References5

ATTACKERKB•added 2026/03/17 11:34 p.m.•4 views

CVE-2026-27459

pyOpenSSL is a Python wrapper around the OpenSSL library. Starting in version 22.0.0 and prior to version 26.0.0, if a user provided callback to setcookiegeneratecallback returned a cookie value greater than 256 bytes, pyOpenSSL would overflow an OpenSSL provided buffer. Starting in version 26.0....

9.2CVSS5.9AI score0.00027EPSS

Exploits0References4Affected Software1

OSV•added 2026/03/17 11:34 p.m.•2 views

CVE-2026-27459 pyOpenSSL DTLS cookie callback buffer overflow

9.2CVSS5.9AI score0.00027EPSS

Exploits0References5