CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

41 matches found

CNNVD•added 2026/05/13 12:0 a.m.•5 views

Palo Alto Networks Trust Protection Foundation 安全漏洞

Palo Alto Networks Trust Protection Foundation is a machine identity and certificate security management platform provided by Palo Alto Networks. There is a security vulnerability in Palo Alto Networks Trust Protection Foundation, which stems from an information leakage issue. This vulnerability...

7.4CVSS5.8AI score0.00008EPSS

Exploits0References1

OSV•added 2026/04/16 4:44 p.m.•0 views

SUSE-SU-2026:1419-1 Security update for NetworkManager

This update for NetworkManager fixes the following issues: - CVE-2025-9615: non-admin users are allowed to use certificates from other users bsc1257359...

3.3CVSS5.8AI score0.00004EPSS

Exploits0References3

OSV•added 2026/04/14 8:30 a.m.•2 views

SUSE-SU-2026:21116-1 Security update for python-cryptography

This update for python-cryptography fixes the following issues: - CVE-2026-34073: Fixed X.509 bypass of name constraints on wildcard SANs with matching peer names. bsc1260876...

6.3CVSS5.8AI score0.00009EPSS

Exploits0References3

Debian CVE•added 2026/04/09 7:30 p.m.•3 views

CVE-2026-5194

Missing hash/digest size and OID checks allow digests smaller than allowed when verifying ECDSA certificates, or smaller than is appropriate for the relevant key type, to be accepted by signature verification functions. This could lead to reduced security of ECDSA certificate-based authentication...

9.3CVSS7.5AI score0.00019EPSS

Exploits1

AlmaLinux•added 2026/02/25 12:0 a.m.•8 views

Important: containernetworking-plugins security update

The Container Network Interface CNI project consists of a specification and libraries for writing plug-ins for configuring network interfaces in Linux containers, along with a number of supported plug-ins. CNI concerns itself only with network connectivity of containers and removing allocated...

10CVSS6.7AI score0.00045EPSS

Exploits3References8

Sick AG•added 2026/02/13 2:0 p.m.•8 views

Eclipse Cyclone DDS Vulnerabilities have no impact on SICK picoScan150 & SICK picoScan120 products

Eclipse Cyclone DDS has known vulnerabilities and is used in SICK picoScan150 and SICK picoScan120 products starting with version 2.2.0. A current analysis confirms that the identified vulnerabilities CVE-2025-67109 and CVE-2023-24011 do not affect SICK picoScan150 and SICK picoScan120. Both...

10CVSS5.6AI score0.00163EPSS

Exploits0

Amazon•added 2026/01/07 12:0 a.m.•3 views

Medium: cni-plugins

Issue Overview: crypto/x509: excluded subdomain constraint does not restrict wildcard SANs An excluded subdomain constraint in a certificate chain does not restrict the usage of wildcard SANs in the leaf certificate. For example a constraint that excludes the subdomain test.example.com does not...

7.5CVSS6.8AI score0.00019EPSS

Exploits2

Amazon•added 2026/01/05 12:0 a.m.•1 views

Medium: golist

7.5CVSS6.9AI score0.00019EPSS

Exploits2