CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added yesterday•2 views

CVE-2026-46902

Vulnerability in the Oracle Enterprise Command Center Framework product of Oracle E-Business Suite component: Core. Supported versions that are affected are V15 and V16. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle Enterprise...

9.8CVSS0.00522EPSS

CVE-2026-46900

9.9CVSS0.00479EPSS

NVD•added yesterday•2 views

CVE-2026-46896

Vulnerability in the Oracle Enterprise Command Center Framework product of Oracle E-Business Suite component: Core. Supported versions that are affected are V15 and V16. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle Enterprise...

9.1CVSS0.00499EPSS

CVE-2026-46899

9.6CVSS0.00392EPSS

CVE-2026-46897

9.9CVSS0.00419EPSS

CVE-2026-46898

Vulnerability in the Oracle Enterprise Command Center Framework product of Oracle E-Business Suite component: Core. Supported versions that are affected are V15 and V16. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Oracle Enterprise...

8.1CVSS0.00384EPSS

7.5CVSS7AI score0.01962EPSS

Security update for openssh8.4

This update for openssh8.4 fixes the following issues CVE-2026-3497: Information disclosure or denial of service due to uninitialized variables bsc1259642. CVE-2026-35385: a file downloaded by scp may be installed setuid or setgid bsc1261427. CVE-2026-35388: omitted connection multiplexing...

Exploits0References18

RedHat Linux•added yesterday•6 views

redis: RESTORE invalid memory access may allow remote code execution

A flaw was found in Redis. An authenticated attacker with permission to execute the RESTORE command can send a crafted serialized payload that may lead to an invalid memory access due to an improper validation of the serialized values. This flaw can cause the server to crash and may allow arbitra...

8.8CVSS6AI score0.0095EPSS

Exploits0References6

RedHat Linux•added yesterday•5 views

redis: use-after-free in unblock client flow may allow remote code execution

A flaw was found in Redis. The unblock client flow does not handle an error return from the processCommandAndResetClient when re-executing a blocked command. If a blocked client is evicted during this flow, an authenticated attacker can cause a use-after-free issue. This potentially leads to...

8.8CVSS6.1AI score0.0095EPSS

Exploits4References6

RedHat Linux•added yesterday•7 views

Important: Red Hat Security Advisory: valkey security update

An update for valkey is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

8.8CVSS6.8AI score0.0095EPSS

Exploits4References4

RedHat Linux•added yesterday•2 views

dracut: dracut: Root code execution via DHCP options command injection

A flaw was found in dracut. A remote attacker on the adjacent network can exploit this vulnerability by providing specially crafted DHCP Dynamic Host Configuration Protocol options, such as a malicious hostname, to a system using dracut's legacy DHCP path. These options are improperly handled and...

7.5CVSS6AI score0.00821EPSS

RedHat Linux•added yesterday•2 views

Important: Red Hat Security Advisory: dracut security update

An update for dracut is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

7.5CVSS5.9AI score0.00821EPSS

Exploits0References2

GithubExploit•added yesterday•33 views

openvpn-connect-echo-script-ace-poc

OpenVPN Connect Server-Pushed Option Findings PoC Benign proo...

6.1AI score

Exploits0

RedHat Linux•added yesterday•2 views

dracut: dracut: Root code execution via DHCP options command injection

7.5CVSS6AI score0.00821EPSS

RedHat Linux•added yesterday•3 views

Important: Red Hat Security Advisory: dracut security update

An update for dracut is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.5CVSS5.9AI score0.00821EPSS

Exploits0References2

SUSE Linux•added yesterday•3 views

Security update for docker

This update for docker fixes the following issues: Update to Docker 29.4.0. See upstream changelog online at Update to buildx 0.33.0. See upstream changelog online at Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

6.9CVSS6.6AI score0.00512EPSS

Exploits0References2

9.2CVSS5.3AI score0.00242EPSS

Security update for LibVNCServer

This update for LibVNCServer fixes the following issues: CVE-2026-44988: Fixed missing validation of rectangle width in tight gradient decoding can lead to server-triggered out-of-bounds write bsc1266459. Patch Instructions: To install this SUSE update use the SUSE recommended installation method...

9.2CVSS5.3AI score0.00242EPSS

Security update for LibVNCServer