CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

163 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: tracing/eprobes: Ensure that event probes are consistent with kprobes and uprobes. Currently, if the symbol @ is attempted to be used with an event probe eprobes, it will cause a NULL pointer dereference crash. Both kprobes and...

5.5CVSS5.7AI score0.00049EPSS

Exploits0References2

Vulnrichment•added 2026/05/13 12:0 a.m.•5 views

CVE-2024-55045

Firmament-Autopilot FMT-Firmware commit de5aec was discovered to contain a buffer overflow via the taskmavobcentry function at /comm/taskcomm.c...

6AI score0.00049EPSS

Exploits0References1

RedHat Linux•added 2026/05/04 9:57 a.m.•2 views

OpenSSH: OpenSSH: Security bypass via mishandling of authorized_keys principals option

A flaw was found in OpenSSH. This vulnerability arises from the incorrect handling of the authorizedkeys principals option in uncommon scenarios. Specifically, when a principals list is used with a Certificate Authority that includes comma characters, OpenSSH may misinterpret the input. This coul...

8.1CVSS6AI score0.00031EPSS

Exploits0References7

CVE•added 2026/05/01 1:0 a.m.•5 views

CVE-2026-7535

Open5GS

5.3CVSS5AI score0.00074EPSS

Exploits0References6

OSV•added 2026/04/22 6:31 p.m.•1 views

GHSA-HWHF-8P2F-45WR coreutils' comm utility silently corrupts data by performing lossy UTF-8 conversion on all output lines

The comm utility in uutils coreutils silently corrupts data by performing lossy UTF-8 conversion on all output lines. The implementation uses String::fromutf8lossy, which replaces invalid UTF-8 byte sequences with the Unicode replacement character U+FFFD. This behavior differs from GNU comm, whic...

3.3CVSS5.8AI score0.00014EPSS

Exploits1References6

OSV•added 2026/04/22 6:31 p.m.•4 views

GHSA-RX8H-33GR-VHJ9 uutils coreutils' comm utility incorrectly consumes data from non-regular file inputs before performing comparison operations

The comm utility in uutils coreutils incorrectly consumes data from non-regular file inputs before performing comparison operations. The arefilesidentical function opens and reads from both input paths to compare content without first verifying if the paths refer to regular files. If an input pat...

4.4CVSS5.8AI score0.00023EPSS

Exploits0References5

Github Security Blog•added 2026/04/22 6:31 p.m.•4 views

uutils coreutils' comm utility incorrectly consumes data from non-regular file inputs before performing comparison operations

4.4CVSS5.2AI score0.00023EPSS

Exploits0References5Affected Software1

EUVD•added 2026/04/22 6:31 p.m.•3 views

EUVD-2026-24979

4.4CVSS5.7AI score0.00023EPSS

Exploits0References3

NVD•added 2026/04/22 5:16 p.m.•2 views

CVE-2026-35347

4.4CVSS0.00023EPSS

Exploits0References2

NVD•added 2026/04/22 5:16 p.m.•1 views

CVE-2026-35346

3.3CVSS0.00014EPSS

Exploits1References3

UbuntuCve•added 2026/04/22 5:16 p.m.•0 views

CVE-2026-35347

4.4CVSS5.8AI score0.00023EPSS

Exploits0References2

OSV•added 2026/04/22 5:16 p.m.•1 views

UBUNTU-CVE-2026-35347

4.4CVSS5.8AI score0.00023EPSS

Exploits0References3

UbuntuCve•added 2026/04/22 5:16 p.m.•1 views

CVE-2026-35346

3.3CVSS5.8AI score0.00014EPSS

Exploits1References3

OSV•added 2026/04/22 5:16 p.m.•1 views

UBUNTU-CVE-2026-35346

3.3CVSS5.8AI score0.00014EPSS

Exploits1References4

Debian CVE•added 2026/04/22 4:7 p.m.•3 views

CVE-2026-35347

4.4CVSS5.3AI score0.00023EPSS

Exploits0

CVE•added 2026/04/22 4:7 p.m.•4 views

CVE-2026-35347

CVE-2026-35347 affects the uutils coreutils comm utility. The are_files_identical routine opens and reads both input paths to compare content without verifying that inputs are regular files. As a result, feeding non-regular inputs (e.g., FIFOs or pipes) drains the streams before the comparison, c...

4.4CVSS5.7AI score0.00023EPSS

Exploits0References2Affected Software1