CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added yesterday•11 views

CVE-2026-44726

CVE-2026-44726 affects Deno (2.0.0–2.7.8) via the Node.js tls compatibility layer. When autoSelectFamily is enabled and the first address-family attempt fails, the socket reinitialization path reuses a stale TLS upgrade hook tied to the original failed handle, causing the replacement TCP connecti...

7.4CVSS5.9AI score0.00017EPSS

OSV•added yesterday•4 views

JLSEC-2026-618 HTTP/1 request smuggling via bare-LF, lenient chunk size, and TE/CL handling in HTTP.jl server

Description The HTTP/1 server request parser had three framing primitives that could make HTTP.jl disagree with a fronting proxy about message boundaries on a reused keep-alive connection. 1 readlinecrlf tolerated a bare LF on its buffered fast path but required CRLF on the slow path, so the...

5.9AI score

Exploits0References2

RedhatCVE•added yesterday•4 views

CVE-2026-12774

A flaw was found in BerriAI litellm. A remote attacker could exploit a Server-Side Request Forgery SSRF vulnerability in the MCP Server Connection Testing component. This flaw, specifically within the executewithmcpclient function, allows an attacker to trick the server into making unauthorized...

6.5CVSS6.5AI score0.00206EPSS

Exploits0References8

NVD•added 2 days ago•7 views

CVE-2026-54275

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, the serverhostname TLS SNI check can be bypassed when an existing connection is reused. If an application makes multiple requests to the same domain, but with different per-request serverhostname...

6.9CVSS0.00254EPSS

NVD•added 2 days ago•8 views

CVE-2026-12249

An issue was discovered in Canonical ADSys upstream versions through v0.16.2. During Active Directory Certificate Services AD CS certificate auto-enrollment via the vendored Samba client script internal/policies/certificate/python/vendorsamba/gp/gpcertautoenrollext.py, ADSys utilizes a plaintext...

9.5CVSS0.00111EPSS

Exploits0References2

Cvelist•added 2 days ago•32 views

CVE-2026-54275 AIOHTTP: TLS Server Hostname Override Is Ignored When Reusing HTTPS Connections

6.9CVSS0.00254EPSS

ATTACKERKB•added 2 days ago•3 views

CVE-2026-54275

6.9CVSS5.8AI score0.00254EPSS

Exploits0References2Affected Software1

CVE•added 2 days ago•12 views

CVE-2026-54275

CVE-2026-54275 concerns the AIOHTTP framework for asyncio/Python. Prior to version 3.14.1, the server_hostname TLS SNI check could be bypassed when an existing HTTPS connection was reused across requests with different per-request server_hostname values, allowing subsequent calls to bypass the in...

6.9CVSS5.8AI score0.00254EPSS

Cvelist•added 2 days ago•28 views

CVE-2026-12249 Canonical ADSys Trust Store Poisoning via Plaintext HTTP Certificate Auto-Enrollment

9.5CVSS0.00111EPSS

Exploits0References2

8.9CVSS5.9AI score0.00388EPSS

urllib3: urllib3: Denial of Service due to excessive HTTP response decompression

A flaw was found in urllib3, an HTTP client library for Python. This vulnerability allows a remote attacker to cause excessive resource consumption, such as high CPU usage and massive memory allocation, on the client side. This occurs when urllib3 attempts to decompress an entire HTTP response,...

RedHat Linux•added 2 days ago•5 views

kernel: Linux kernel: Denial of Service in libceph OSD client due to unreset sparse-read state

A flaw was found in the Linux kernel's libceph OSD client. When a connection fault occurs during a sparse read, the sparse-read state is not properly reset. This allows a misbehaving or compromised Ceph OSD server, or a network adversary, to disrupt traffic. As a result, the client can misinterpr...

7.5CVSS5.8AI score0.0028EPSS

8.8CVSS5.8AI score0.00267EPSS

kernel: wifi: mac80211: remove station if connection prep fails

A flaw was found in the Linux kernel's mac80211 Wi-Fi subsystem. When Multi-Link Operation MLO connection preparation fails, the system may not correctly remove the associated station. This can lead to a use-after-free or double-free vulnerability in the debugfs component, potentially causing...

RedHat Linux•added 2 days ago•5 views

kernel: wifi: mac80211: remove station if connection prep fails

8.8CVSS5.8AI score0.00267EPSS

7.5CVSS5.8AI score0.0028EPSS

kernel: Linux kernel: Denial of Service in libceph OSD client due to unreset sparse-read state

7.8CVSS5.8AI score0.00096EPSS

kernel: netfilter: ctnetlink: ensure safe access to master conntrack

A flaw was found in the netfilter: ctnetlink component of the Linux kernel. This vulnerability occurs due to insufficient locking when accessing the master conntrack object, allowing it to become invalid while still being referenced. A local attacker could potentially exploit this race condition,...

NVD•added 3 days ago•9 views

CVE-2026-12787

A vulnerability was found in zhilink 智互联深圳科技有限公司 ADP Application Developer Platform 应用开发者平台 1.0.0. This affects an unknown part of the component testConnection Endpoint. The manipulation of the argument jdbcUrl results in deserialization. The attack may be performed from remote. The exploit has...

6.5CVSS0.00242EPSS

EUVD•added 3 days ago•8 views

EUVD-2026-38151

6.5CVSS6AI score0.00242EPSS

EUVD•added 3 days ago•9 views

EUVD-2026-38140

A security vulnerability has been detected in BerriAI litellm up to 1.82.2. Affected by this vulnerability is the function executewithmcpclient of the file litellm/proxy/experimental/mcpserver/restendpoints.py of the component MCP Server Connection Testing. The manipulation leads to server-side...

6.5CVSS6AI score0.00206EPSS

RedHat Linux•added 4 days ago•7 views

kernel: Bluetooth: hci_event: fix potential UAF in SSP passkey handlers

A flaw was found in the Linux kernel's Bluetooth subsystem. This vulnerability, a Use-After-Free UAF, exists within the Secure Simple Pairing SSP passkey handlers. It occurs when hciconn lookup and field access are performed without proper locking, allowing a connection to be freed concurrently...

8.8CVSS6AI score0.00262EPSS