CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added yesterday•7 views

CVE-2026-44185

CVE-2026-44185 describes a buffer over-read in Apache HTTP Server when handling outbound OCSP requests to an attacker-controlled OCSP server. Affected versions are 2.4.0 through 2.4.67. The vulnerability is associated with the OCSP handling path (mod_ssl OCSP send_request) and can enable an attac...

7.3CVSS5.4AI score

Cvelist•added yesterday•13 views

CVE-2026-44185 Apache HTTP Server: Stack Buffer Over-Read in mod_ssl OCSP `send_request`

Vulnrichment•added yesterday•3 views

CVE-2026-44185 Apache HTTP Server: Stack Buffer Over-Read in mod_ssl OCSP `send_request`

5.4AI score

Positive Technologies•added yesterday•4 views

PT-2026-47323

5.4AI score

RedhatCVE•added 3 days ago•11 views

CVE-2026-42791

Improper Certificate Validation vulnerability in Erlang OTP publickey pubkeyocsp module allows forged OCSP responses signed with an expired responder certificate to be accepted as valid. OCSP response verification in pubkeyocsp:verifyresponse/5 and pubkeyocsp:isauthorizedresponder/3 in...

6.3CVSS5.5AI score0.00051EPSS

RedhatCVE•added 4 days ago•4 views

CVE-2026-7009

When curl is told to use the Certificate Status Request TLS extension, often referred to as OCSP stapling, to verify that the server certificate is valid, it fails to detect OCSP problems and instead wrongly consider the response as fine...

5.3CVSS5.4AI score0.00013EPSS

Exploits1References1

OSV•added 2026/05/29 4:3 p.m.•5 views

RLSA-2026:19054 Important: tomcat security update

Apache Tomcat is a servlet container for the Java Servlet and JavaServer Pages JSP technologies. Security Fixes: tomcat: Apache Tomcat: Certificate revocation bypass due to improper OCSP response validation CVE-2026-24734 For more details about the security issues, including the impact, a CVSS...

7.4CVSS6.6AI score0.00091EPSS

Rockylinux•added 2026/05/29 4:3 p.m.•8 views

tomcat security update

An update is available for tomcat. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list Apache Tomcat is a servlet container for the Java Servlet and JavaServer Page...

7.5CVSS5.8AI score0.00091EPSS

Exploits0

SUSE CVE•added 2026/05/28 3:58 a.m.•10 views

SUSE CVE-2026-42791

7.4CVSS5.8AI score0.00051EPSS

Exploits0References3

Tenable Nessus•added 2026/05/28 12:0 a.m.•9 views

FreeBSD : Erlang/OTP -- OCSP responder certificate accepted after expiry in public_key (9357d6fb-5a54-11f1-b886-4c526214c986)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 9357d6fb-5a54-11f1-b886-4c526214c986 advisory. https://github.com/erlang/otp/security/advisories/GHSA-cjxj-wj6x-3fff reports: Erlang/OTP's publickey...

NVD•added 2026/05/27 2:16 p.m.•9 views

Exploits0References3

CVE-2026-42791

6.3CVSS0.00051EPSS

OSV•added 2026/05/27 2:16 p.m.•4 views

UBUNTU-CVE-2026-42791

EUVD•added 2026/05/27 12:23 p.m.•6 views

Exploits0References10

EUVD-2026-32273

Vulnrichment•added 2026/05/27 12:23 p.m.•6 views

CVE-2026-42791 OCSP responder certificate validity period not checked in public_key

CNNVD•added 2026/05/27 12:0 a.m.•5 views

Erlang/OTP 安全漏洞

Erlang/OTP is an open-source JavaScript library for handling exceptions. This library can catch exceptions caused by Node.js’s built-in APIs. There is a security vulnerability in Erlang/OTP, which stems from improper OCSP response validation in the publickey module. This vulnerability allows fake...

Positive Technologies•added 2026/05/27 12:0 a.m.•6 views

PT-2026-43713

Name of the Vulnerable Software and Affected Versions Erlang OTP versions 27.0 through 27.3.4.11 Erlang OTP versions prior to 28.5.0.1 Erlang OTP versions prior to 29.0.1 public key versions 1.16 through 1.17.1.2 public key versions prior to 1.20.3.1 public key versions prior to 1.21.1 Descriptio...

NVD•added 2026/05/26 10:16 p.m.•13 views

Exploits0References22

CVE-2026-44900

epa4all-client is the Java Client for epa4all / ePA 3.0 in the Telematik Infrastruktur. Prior to 1.2.1, in SignedPublicKeysTrustValidatorImpl.isTrusted, the ECDSA signature verification at line 45 discards the boolean return value of Signature.verify. The method performs certificate chain...

8.1CVSS0.00006EPSS