CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

20463 matches found

UbuntuCve•added 2026/05/09 6:16 a.m.•5 views

CVE-2026-42310

Pillow is a Python imaging library. From version 4.2.0 to before version 12.2.0, an attacker can supply a malicious PDF that causes the process to hang indefinitely, consuming 100% CPU and making the application unresponsive. This issue has been patched in version 12.2.0...

5.5CVSS5.7AI score0.00126EPSS

Exploits0References4

ATTACKERKB•added 2026/05/09 4:10 a.m.•3 views

CVE-2026-42310

5.1CVSS5.7AI score0.00126EPSS

Exploits0References5Affected Software1

SUSE CVE•added 2026/05/09 2:43 a.m.•8 views

SUSE CVE-2026-39820

Well-crafted inputs reaching ParseAddress, ParseAddressList, and ParseDate were able to trigger excessive CPU exhaustion and memory allocations...

7.5CVSS5.8AI score0.00369EPSS

Exploits0References14

SUSE CVE•added 2026/05/09 2:40 a.m.•5 views

SUSE CVE-2026-43208

In the Linux kernel, the following vulnerability has been resolved: net: do not pass flowid to setrpscpu Blamed commit made the assumption that the RPS table for each receive queue would have the same size, and that it would not change. Compute flowid in setrpscpu, do not assume we can use the...

9.8CVSS5.8AI score0.00481EPSS

Exploits0References3

SUSE CVE•added 2026/05/09 2:39 a.m.•4 views

SUSE CVE-2026-43401

In the Linux kernel, the following vulnerability has been resolved: cpufreq: intelpstate: Fix NULL pointer dereference in updatecpuqosrequest The updatecpuqosrequest function attempts to initialize the 'freq' variable by dereferencing 'cpudata' before verifying if the 'policy' is valid. This issu...

5.8AI score0.00121EPSS

Exploits0References3

Tenable Nessus•added 2026/05/09 12:0 a.m.•9 views

Linux Distros Unpatched Vulnerability : CVE-2026-42310

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Pillow is a Python imaging library. From version 4.2.0 to before version 12.2.0, an attacker can supply a malicious PDF that causes the process to hang...

5.5CVSS7.1AI score0.00126EPSS

Exploits0References3

Tenable Nessus•added 2026/05/09 12:0 a.m.•3 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: golang (UTSA-2026-016815)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016815 advisory. The Reader.ReadResponse function constructs a response string through repeated string concatenation of lines. When the number of lines in a response is large, this c...

5.3CVSS5.8AI score0.00492EPSS

Exploits0References4

NVD•added 2026/05/08 11:16 p.m.•8 views

CVE-2026-42343

FastGPT is an AI Agent building platform. In versions 4.14.13 and prior, the code-sandbox component suffers from insufficient resource isolation and uncontrolled resource consumption. The service relies solely on an application-level soft limit a 500ms polling interval for memory management and...

6.3CVSS0.00268EPSS

Exploits0References1

Vulnrichment•added 2026/05/08 10:9 p.m.•6 views

CVE-2026-42343 FastGPT: Uncontrolled Resource Consumption leading to Sandbox Exhaustion

6.3CVSS5.8AI score0.00268EPSS

Exploits0References1

ATTACKERKB•added 2026/05/08 10:9 p.m.•9 views

CVE-2026-42343

6.3CVSS5.8AI score0.00268EPSS

Exploits0References2Affected Software1

RedhatCVE•added 2026/05/08 9:5 p.m.•9 views

CVE-2026-43374

A flaw was found in the Linux kernel's networking net: nexthop component. When a nexthop is removed from a group, the system prematurely frees per-CPU percpu statistics memory. This timing issue allows other parts of the kernel that are still referencing the old group to access and potentially...

7.8CVSS5.8AI score0.00125EPSS

Exploits0References4

RedhatCVE•added 2026/05/08 7:37 p.m.•9 views

CVE-2026-43344

A flaw was found in the Linux kernel's performance monitoring unit perf/x86/intel/uncore subsystem. This vulnerability arises from incorrect die ID initialization and lookup, particularly when certain CPUs are offline or when Non-Uniform Memory Access NUMA is disabled. As a consequence, performan...

5.5CVSS5.8AI score0.00102EPSS

Exploits0References4

RedhatCVE•added 2026/05/08 6:12 p.m.•6 views

CVE-2026-43288

A flaw was found in the Linux kernel's ext4 filesystem. A local user can trigger a system panic, leading to a Denial of Service DoS, by mounting a specially crafted ext4 filesystem with specific quota and project options. This occurs because a per-CPU counter is accessed before it is properly...

5.5CVSS5.8AI score0.0013EPSS

Exploits0References4

EUVD•added 2026/05/08 3:31 p.m.•7 views

EUVD-2026-28558

In the Linux kernel, the following vulnerability has been resolved: ext4: move ext4percpuparaminit before ext4mbinit When running kvm-xfstests -c ext4/1k -C 1 generic/383 with the DOUBLECHECK macro defined, the following panic is triggered:...

5.9AI score0.0013EPSS

Exploits0References6

NVD•added 2026/05/08 3:16 p.m.•6 views

CVE-2026-43418

In the Linux kernel, the following vulnerability has been resolved: sched/mmcid: Prevent CID stalls due to concurrent forks A newly forked task is accounted as MMCID user before the task is visible in the process' thread list and the global task list. This creates the following problem: CPU1 CPU2...

5.5CVSS0.00107EPSS

Exploits0References2

NVD•added 2026/05/08 3:16 p.m.•7 views

CVE-2026-43401

5.5CVSS0.00121EPSS

Exploits0References3

UbuntuCve•added 2026/05/08 3:16 p.m.•5 views

CVE-2026-43401

5.5CVSS5.8AI score0.00121EPSS

Exploits0References5