CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

9.8CVSS5.9AI score0.02235EPSS

USN-8351-1 linux-lowlatency vulnerabilities

Exploits225References9

Ubuntu•added 2 days ago•10 views

USN-8350-1: Linux kernel (NVIDIA Tegra) vulnerabilities

9.8CVSS7AI score0.02235EPSS

Exploits225

Securelist•added 2 days ago•13 views

Containers on fire: from container escapes to supply chain attacks

Introduction Modern infrastructures universally rely on containerization to deploy applications, scale services, and build cloud platforms. The use of Docker, Kubernetes, and similar technologies has become the corporate standard for efficient automation. However, as containers grow in popularity...

9.3CVSS7.7AI score0.59178EPSS

Exploits61

IBM Security Bulletins•added 2 days ago•6 views

Security Bulletin: IBM App Connect Enterprise Certified Container operator and operands are vulnerable to loss of confidentiality and denial of service due to multiple CVEs

Summary IBM App Connect Enterprise Certified Container operator and operands are vulnerable to loss of confidentiality and denial of service due to multiple CVEs. This bulletin provides patch information to address the vulnerabilities Vulnerability Details CVEID:CVE-2026-6322 DESCRIPTION: fast-ur...

7.5CVSS6.4AI score0.00048EPSS

Exploits1Affected Software1

RedHat Linux•added 2 days ago•9 views

Important: Red Hat Security Advisory: Assisted Installer RHEL 9 components for Multicluster Engine for Kubernetes 2.8.7

Assisted installer RHEL 9 components for the multicluster engine for Kubernetes 2.8.7 General Availability release, with updates to container images. Assisted Installer RHEL 9 integrates components for the general multicluster engine for Kubernetes 2.8.7 release that simplify the process of...

7.5CVSS6.9AI score0.00035EPSS

Exploits0References3

RedHat Linux•added 2 days ago•10 views

Important: Red Hat Security Advisory: Assisted Installer RHEL 8 components for Multicluster Engine for Kubernetes 2.8.7

Assisted installer RHEL 8 components for the multicluster engine for Kubernetes 2.8.7 General Availability release, with updates to container images. Assisted Installer RHEL 8 integrates components for the general multicluster engine for Kubernetes 2.8.7 release that simplify the process of...

7.5CVSS6.9AI score0.00035EPSS

Exploits0References3

Nuclei•added 2 days ago•20 views

Gitea Container Registry - Unauthorized Private Image Access

Gitea = 1.26.2. As a temporary workaround, set REQUIRESIGNINVIEW=true in gitea app.ini, though this blocks all anonymous access including public repos. reference: - https://blog.gitea.com/release-of-1.26.2/ - https://github.com/go-gitea/gitea/pull/37290 -...

6AI score

Exploits1References4

OSSF Malicious Packages•added 2 days ago•6 views

Malicious code in @redhat-cloud-services/javascript-clients-shared (npm)

Part of the "Mini Shai-Hulud" supply chain worm campaign that compromised the GitHub Actions OIDC trusted publisher shared by Red Hat Cloud Services npm packages. The attacker injected a preinstall hook into this and 31 other packages in the @redhat-cloud-services scope. The hook delivers a...

OSSF Malicious Packages•added 2 days ago•8 views

Malicious code in @redhat-cloud-services/host-inventory-client (npm)

MAL-2026-5139 Malicious code in @redhat-cloud-services/hcc-kessel-mcp (npm)

MAL-2026-5138 Malicious code in @redhat-cloud-services/frontend-components-utilities (npm)

MAL-2026-5140 Malicious code in @redhat-cloud-services/hcc-pf-mcp (npm)

OSV•added 2 days ago•4 views

MAL-2026-5143 Malicious code in @redhat-cloud-services/javascript-clients-shared (npm)

OSSF Malicious Packages•added 2 days ago•7 views

Malicious code in @redhat-cloud-services/config-manager-client (npm)

OSV•added 3 days ago•1 views

OSV-2026-828 Use-of-uninitialized-value in ReadContainer

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=517870853 Crash type: Use-of-uninitialized-value Crash state: ReadContainer PKImageDecodeInitializeWMP PKCodecFactoryCreateDecoderFromFile...

5.8AI score