CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8394 matches found

OSV•added 2026/03/27 2:5 p.m.•1 views

OESA-2026-1759 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: iommu/s390: Implement blocking domain This fixes a crash when surprise hot-unplugging a PCI device. This crash happens because during hot-unplug...

7.8CVSS6.7AI score0.03752EPSS

Exploits2References86

OSV•added 2026/03/27 7:10 a.m.•2 views

BIT-NGINX-GATEWAY-2026-27654 NGINX ngx_http_dav_module vulnerability

NGINX Open Source and NGINX Plus have a vulnerability in the ngxhttpdavmodule module that might allow an attacker to trigger a buffer overflow to the NGINX worker process; this vulnerability may result in termination of the NGINX worker process or modification of source or destination file names...

8.8CVSS6.1AI score0.00021EPSS

Exploits0References2

OSV•added 2026/03/27 7:10 a.m.•3 views

BIT-NGINX-2026-27654 NGINX ngx_http_dav_module vulnerability

8.8CVSS6.1AI score0.00021EPSS

Exploits0References2

OSV•added 2026/03/26 8:32 p.m.•1 views

GO-2026-4711 File Browser has an Access Rule Bypass via Path Traversal in Copy/Rename Destination Parameter in github.com/filebrowser/filebrowser

File Browser has an Access Rule Bypass via Path Traversal in Copy/Rename Destination Parameter in github.com/filebrowser/filebrowser...

6.5CVSS5.9AI score0.00019EPSS

Exploits0References4

Debian CVE•added 2026/03/26 8:6 p.m.•3 views

CVE-2026-0964

A malicious SCP server can send unexpected paths that could make the client application override local files outside of working directory. This could be misused to create malicious executable or configuration files and make the user execute them under specific consequences. This is the same issue...

6.3CVSS5.8AI score0.00011EPSS

Exploits8

AlpineLinux•added 2026/03/26 8:6 p.m.•0 views

CVE-2026-0964

6.3CVSS6.9AI score0.00011EPSS

Exploits8

CVE•added 2026/03/26 8:6 p.m.•41 views

CVE-2026-0964

CVE-2026-0964 is reported as a path-traversal vulnerability in libssh’s SCP handling (ssh_scp_pull_request), allowing a malicious SCP server to reference paths outside the working directory and potentially overwrite local files. The issue is documented across multiple advisories (ALAS2023-2026-14...

6.3CVSS7AI score0.00011EPSS

Exploits8References5Affected Software4

Cvelist•added 2026/03/26 8:6 p.m.•23 views

CVE-2026-0964 Libssh: improper sanitation of paths received from scp servers

5CVSS0.00011EPSS

Exploits8References5

RedhatCVE•added 2026/03/26 5:0 p.m.•3 views

CVE-2026-20083

A vulnerability in the Secure Copy Protocol SCP server feature of Cisco IOS XE Software could allow an authenticated, local attacker with low privileges to cause a denial of service DoS condition on an affected device. This vulnerability is due to improper handling of a malformed SCP request. An...

6.5CVSS5.8AI score0.00035EPSS

Exploits0References1

EUVD•added 2026/03/26 3:30 p.m.•1 views

EUVD-2018-21690

AnyBurn 4.3 contains a local buffer overflow vulnerability that allows local attackers to crash the application by supplying an excessively long string in the image file name field. Attackers can paste a 10000-byte payload into the 'Image file name' parameter during the 'Copy disk to Image'...

6.9CVSS6AI score0.00019EPSS

Exploits1References4

OSV•added 2026/03/26 3:12 p.m.•1 views

SUSE-SU-2026:20948-1 Security update for net-tools

This update for net-tools fixes the following issues: - Fix stack buffer overflow in parsehex bsc1248687, GHSA-h667-qrp8-gj58. - Fix stack-based buffer overflow in procgenfmt bsc1248687, GHSA-w7jq-cmw2-cq59. - Avoid unsafe memcpy in ifconfig bsc1248687. - Prevent overflow in ax25 and netrom...

6.6CVSS6.9AI score0.00171EPSS

Exploits0References8

RedhatCVE•added 2026/03/26 3:12 p.m.•3 views

CVE-2026-3335

The Canto plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 3.1.1 via the /wp-content/plugins/canto/includes/lib/copy-media.php file. This is due to the file being directly accessible without any authentication, authorization, or nonce checks, and t...

5.3CVSS5.9AI score0.00244EPSS

Exploits0References1

RedhatCVE•added 2026/03/26 3:10 p.m.•3 views

CVE-2026-32878

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 9.6.0-alpha.20 and 8.6.44, an attacker can bypass the default request keyword denylist protection and the class-level permission for adding fields by sending a crafted request that...

7.5CVSS5.8AI score0.00016EPSS

Exploits0References1

RedhatCVE•added 2026/03/26 3:2 p.m.•1 views

CVE-2026-32950

SQLBot is an intelligent data query system based on a large language model and RAG. Versions prior to 1.7.0 contain a critical SQL Injection vulnerability in the /api/v1/datasource/uploadExcel endpoint that enables Remote Code Execution RCE, allowing any authenticated user even the...

8.8CVSS6.2AI score0.00241EPSS

Exploits1References1

RedhatCVE•added 2026/03/26 3:2 p.m.•3 views

CVE-2026-32030

OpenClaw versions prior to 2026.2.19 contain a path traversal vulnerability in the stageSandboxMedia function that accepts arbitrary absolute paths when iMessage remote attachment fetching is enabled. An attacker who can tamper with attachment path metadata can disclose files readable by the...

8.2CVSS5.9AI score0.00077EPSS

Exploits0References1