CVE Search Engine - Security Vulnerabilities and Exploits Search Tool | Vulners.com

🔥 Daily Hot!

💪🏽 CPE Enhanced Advisories

🕶 Shadow Exploits

🕵🏼 Vulners CPE

🔐 Security news

💻 Exploit updates

📑 Blogs review

🐧 Linux vulnerabilities

🤖 AI High Score

show all

1085098 matches found

Chainguard•added 3 days ago•5 views

CVE-2026-9678 vulnerabilities

Vulnerabilities for packages: pelias-api, langfuse-fips, kibana, code-server, langfuse...

5.9CVSS7.1AI score0.00326EPSS

Chainguard•added 3 days ago•4 views

GHSA-4XPC-PV4P-PM3W vulnerabilities

Vulnerabilities for packages: airflow...

Chainguard•added 3 days ago•6 views

CVE-2026-12151 vulnerabilities

Vulnerabilities for packages: pelias-api, kibana, code-server, node-gyp, prism, npm, haraka, actions-runner...

7.5CVSS5.8AI score0.00426EPSS

Chainguard•added 3 days ago•4 views

GHSA-VXPW-J846-P89Q vulnerabilities

Vulnerabilities for packages: pelias-api, kibana, code-server, node-gyp, prism, npm, haraka, actions-runner...

Chainguard•added 3 days ago•7 views

GHSA-35P6-XMWP-9G52 vulnerabilities

Vulnerabilities for packages: pelias-api, kibana, code-server, node-gyp, prism, npm, haraka, actions-runner...

Chainguard•added 3 days ago•6 views

CVE-2026-11525 vulnerabilities

Vulnerabilities for packages: pelias-api, kibana, code-server, node-gyp, prism, npm, haraka, actions-runner...

3.7CVSS5.8AI score0.00248EPSS

Chainguard•added 3 days ago•5 views

CVE-2026-9679 vulnerabilities

Vulnerabilities for packages: pelias-api, kibana, code-server, node-gyp, prism, npm, haraka, actions-runner...

5.9CVSS5.8AI score0.00257EPSS

Chainguard•added 3 days ago•4 views

GHSA-P88M-4JFJ-68FV vulnerabilities

Vulnerabilities for packages: pelias-api, kibana, code-server, node-gyp, prism, npm, haraka, actions-runner...

Chainguard•added 3 days ago•7 views

CVE-2026-6733 vulnerabilities

Vulnerabilities for packages: pelias-api, kibana, code-server, node-gyp, prism, npm, haraka, actions-runner...

3.7CVSS5.8AI score0.0023EPSS

Chainguard•added 3 days ago•4 views

GHSA-G8M3-5G58-FQ7M vulnerabilities

Vulnerabilities for packages: pelias-api, kibana, code-server, node-gyp, prism, npm, haraka, actions-runner...

RedhatCVE•added 3 days ago•6 views

CVE-2026-56410

A flaw was found in libexpat. Specifically, the xmlwf utility contains an integer overflow vulnerability in its resolveSystemId function. This flaw could be exploited by an attacker to potentially gain unauthorized access to sensitive information or execute arbitrary code, leading to a compromise...

6.9CVSS6.1AI score0.0011EPSS

Exploits0References4

RedhatCVE•added 3 days ago•7 views

CVE-2026-49261

A flaw was found in MariaDB server. When the wsrepnotifycmd feature is enabled, a remote attacker could exploit this vulnerability by embedding shell commands in the name of a joiner node. This could lead to arbitrary code execution on the server, allowing the attacker to take full control of the...

10CVSS6.6AI score0.00447EPSS

Exploits0References5

RedHat Linux•added 3 days ago•5 views

Important: Red Hat Security Advisory: redis security update

An update for redis is now available for Red Hat Enterprise Linux 9.4 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

8.8CVSS6.6AI score0.01228EPSS

Exploits0References2

RedHat Linux•added 3 days ago•4 views

redis: RESTORE invalid memory access may allow remote code execution

A flaw was found in Redis. An authenticated attacker with permission to execute the RESTORE command can send a crafted serialized payload that may lead to an invalid memory access due to an improper validation of the serialized values. This flaw can cause the server to crash and may allow arbitra...

8.8CVSS6.1AI score0.01228EPSS

Exploits0References6

RedHat Linux•added 3 days ago•4 views

vim: Vim: Command injection allows arbitrary code execution via malicious tag files

A flaw was found in Vim, an open-source command-line text editor. This command injection vulnerability occurs during tag file processing. A local user could craft a malicious tags file containing backtick syntax in the filename field. When Vim resolves a tag from this file, it executes the embedd...

6.6CVSS6.4AI score0.00501EPSS

Exploits0References7

RedHat Linux•added 3 days ago•4 views

samba: Samba: Remote Code Execution in printing subsystem via unescaped job description

A flaw was found in the Samba printing subsystem. Samba passes the client-controlled job description string to the command configured with the "print command" setting via the "%J" substitution character without escaping shell meta characters. A remote attacker could exploit this vulnerability by...

9.8CVSS6.5AI score0.12797EPSS

Exploits7References5

RedHat Linux•added 3 days ago•4 views

Important: Red Hat Security Advisory: samba security update

An update for samba is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

9.8CVSS6AI score0.12797EPSS

Exploits7References3

RedHat Linux•added 3 days ago•3 views

samba: Remote Code Execution in SAMR

A flaw was found in Samba. A remote attacker can exploit a misconfiguration in Samba file servers and classic domain controllers that use the "check password script" feature. If this script is configured with the %u substitution character, the client-controlled username is passed without proper...

9.8CVSS6AI score0.02501EPSS

Exploits0References5

OSSF Malicious Packages•added 3 days ago•6 views

Malicious code in ts-wross (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 42dae43b7ff77748f10ae5faf6d87b7d63552e5629a37c931ea2c0de3539b469 Package is published under the name ts-wross but its package.json claims authorship by Michael Mclaughlin [email protected] and points its repository...

Exploits0References2

OSV•added 3 days ago•3 views

MAL-2026-6278 Malicious code in ts-wross (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 42dae43b7ff77748f10ae5faf6d87b7d63552e5629a37c931ea2c0de3539b469 Package is published under the name ts-wross but its package.json claims authorship by Michael Mclaughlin [email protected] and points its repository...

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by