CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added last week•1 views

UBUNTU-CVE-2026-46234

5.8AI score0.00032EPSS

Cvelist•added 2026/05/28 9:40 a.m.•23 views

CVE-2026-46234 vsock: fix buffer size clamping order

0.00032EPSS

EUVD•added 2026/05/28 9:40 a.m.•11 views

EUVD-2026-32752

5.9AI score0.00032EPSS

Debian CVE•added 2026/05/28 9:40 a.m.•6 views

CVE-2026-46234

5.8AI score0.00032EPSS

Exploits0

CVE•added 2026/05/28 9:40 a.m.•10 views

CVE-2026-46234

The CVE-2026-46234 entry concerns the Linux kernel vsock subsystem. The bug is in vsock_update_buffer_size(), where buffer_size was clamped to the maximum first, then to the minimum; if min > max, the minimum check could override the maximum, allowing vsk->buffer_size to exceed vsk->buff...

5.9AI score0.00032EPSS

RedHat Linux•added 2026/05/28 8:47 a.m.•19 views

kernel: ALSA: firewire-motu: fix buffer overflow in hwdep read for DSP events

In the Linux kernel, the following vulnerability has been resolved: ALSA: firewire-motu: fix buffer overflow in hwdep read for DSP events The DSP event handling code in hwdepread could write more bytes to the user buffer than requested, when a user provides a buffer smaller than the event header...

6.1AI score0.00064EPSS

NVD•added 2026/05/27 2:17 p.m.•7 views

CVE-2026-46064

In the Linux kernel, the following vulnerability has been resolved: ibmasm: fix heap over-read in ibmasmsendi2omessage The ibmasmsendi2omessage function uses getdotcommandsize to compute the byte count for memcpytoio, but this value is derived from user-controlled fields in the dotcommandheader...

0.00032EPSS

AlpineLinux•added 2026/05/14 7:9 p.m.•6 views

CVE-2026-43904

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. Prior to 3.0.18.0 and 3.1.13.0, softimageinput.cpp:469 mixed RLE and :345 pure RLE do not clamp the run length to remaining scanline width before writing pixels. The r...

8.4CVSS5.8AI score0.00013EPSS

Exploits1References1

SUSE CVE•added 2026/04/23 1:26 a.m.•1 views

SUSE CVE-2026-31464

In the Linux kernel, the following vulnerability has been resolved: scsi: ibmvfc: Fix OOB access in ibmvfcdiscovertargetsdone A malicious or compromised VIO server can return a numwritten value in the discover targets MAD response that exceeds maxtargets. This value is stored directly in...

5.6AI score0.00032EPSS

ATTACKERKB•added 2026/04/02 11:40 a.m.•2 views

CVE-2026-23416

In the Linux kernel, the following vulnerability has been resolved: mm/mseal: update VMA end correctly on merge Previously we stored the end of the current VMA in currend, and then upon iterating to the next VMA updated currstart to currend to advance to the next VMA. However, this doesn't take...

5.7AI score0.00007EPSS

Exploits1References4Affected Software1

Github Security Blog•added 2026/03/30 4:33 p.m.•7 views

Nginx Configuration Directory Vulnerable to Recursive Deletion via Improper Path Validation

Summary The nginx-ui configuration improperly handles URL-encoded traversal sequences. When specially crafted paths are supplied, the backend resolves them to the base Nginx configuration directory and executes the operation on the base directory /etc/nginx. In particular, this allows an...

6.9CVSS5.8AI score0.00068EPSS

Exploits1References4Affected Software1

OSV•added 2026/02/12 4:34 p.m.•1 views

SUSE-SU-2026:0483-1 Security update for zabbix

This update for zabbix fixes the following issues: - CVE-2024-36469: Introduced clamping for mitigation of timing attacks. bsc1240676 - CVE-2024-42325: Restricted access to user fields using user.get API method for users of User and Admin type, and restricted access to alert entities using...

3.5CVSS5.5AI score0.00121EPSS

RustSec•added 2026/02/05 12:0 p.m.•1 views

Unnecessary clamping of seed reduces seed entropy to 251 bits

The latest releases of the libcrux-ed25519 crate contains the following bug-fix: 1320: Remove duplicated clamping step during key generation The issue fixed in 1320 was first reported by Nadim Kobeissi...

5.3AI score

Exploits0Affected Software1

OSV•added 2026/02/05 12:0 p.m.•1 views

RUSTSEC-2026-0026 Unnecessary clamping of seed reduces seed entropy to 251 bits

5.4AI score

RustSec•added 2026/01/26 12:0 p.m.•2 views

Incorrect X25519 clamping check rejects all secrets on import

The latest releases of the libcrux-psq crate contains the following bug-fix: 1301: Fix broken clamping check for imported X25519 secret keys...

5.3AI score

Exploits0Affected Software1

RustSec•added 2026/01/26 12:0 p.m.•2 views

X25519 secret validation did not check buffer length or clamping

The latest releases of the libcrux-ecdh crate contains the following bug-fix: 1301: Check length and clamping in X25519 secret validation. This is a breaking change since errors are now raised on unclamped X25519 secrets or inputs of the wrong length...

5.4AI score

Exploits0Affected Software1

OSV•added 2026/01/26 12:0 p.m.•1 views

RUSTSEC-2026-0024 Incorrect X25519 clamping check rejects all secrets on import

The latest releases of the libcrux-psq crate contains the following bug-fix: 1301: Fix broken clamping check for imported X25519 secret keys...

5.5AI score

OSV•added 2026/01/26 12:0 p.m.•1 views

RUSTSEC-2026-0023 X25519 secret validation did not check buffer length or clamping

5.5AI score

RedHat Linux•added 2025/11/11 9:13 a.m.•1 views

kernel: KVM: Explicitly verify target vCPU is online in kvm_get_vcpu()

In the Linux kernel, the following vulnerability has been resolved: KVM: Explicitly verify target vCPU is online in kvmgetvcpu Explicitly verify the target vCPU is fully online prior to clamping the index in kvmgetvcpu. If the index is "bad", the nospec clamping will generate '0', i.e. KVM will...

7.8CVSS6.8AI score0.00028EPSS