CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2026/02/26 11:29 p.m.•20 views

CVE-2026-2597 Crypt::SysRandom::XS versions before 0.010 for Perl is vulnerable to a heap buffer overflow in the XS function random_bytes()

0.00295EPSS

RedhatCVE•added 2026/02/24 1:44 a.m.•5 views

CVE-2026-2588

Crypt::NaCl::Sodium versions through 2.001 for Perl has an integer overflow flaw on 32-bit systems. Sodium.xs casts a STRLEN sizet to unsigned long long when passing a length pointer to libsodium functions. On 32-bit systems sizet is typically 32-bits while an unsigned long long is at least 64-bi...

9.1CVSS5.4AI score0.00346EPSS

Exploits0References1

NVD•added 2026/02/23 12:15 a.m.•4 views

CVE-2026-2588

9.1CVSS0.00346EPSS

OSV•added 2026/02/23 12:15 a.m.•5 views

CVE-2026-2588

9.1CVSS5.6AI score

CNNVD•added 2026/02/23 12:0 a.m.•7 views

Crypt::NaCl::Sodium 安全漏洞

Crypt::NaCl::Sodium is an encryption/decryption library open source by CPAN authors. Versions of Crypt::NaCl::Sodium 2.001 and earlier have security vulnerabilities, which stem from integer overflow defects on 32-bit systems...

9.1CVSS5.9AI score0.00346EPSS

Cvelist•added 2026/02/22 11:31 p.m.•22 views

CVE-2026-2588 Crypt::NaCl::Sodium versions through 2.001 for Perl has an integer overflow flaw on 32-bit systems

0.00346EPSS

CVE•added 2026/02/22 11:31 p.m.•11 views

CVE-2026-2588

Crypt::NaCl::Sodium for Perl has an integer overflow in 32‑bit environments, affecting versions up to 2.001. The Sodium.xs code casts a STRLEN (size_t) to unsigned long long when passing a length pointer to libsodium, creating an overflow risk where 32‑bit size_t is 32‑bit but unsigned long long ...

9.1CVSS5.6AI score0.00346EPSS

Exploits0References3Affected Software1

SUSE CVE•added 2026/02/18 12:26 a.m.•1 views

SUSE CVE-2026-2474

Crypt::URandom versions from 0.41 before 0.55 for Perl is vulnerable to a heap buffer overflow in the XS function crypturandomgetrandom. The function does not validate that the length parameter is non-negative. If a negative value e.g. -1 is supplied, the expression length + 1u causes an integer...

Tenable Nessus•added 2026/02/17 12:0 a.m.•5 views

Exploits0References5

Linux Distros Unpatched Vulnerability : CVE-2026-2474

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Crypt::URandom versions from 0.41 before 0.55 for Perl is vulnerable to a heap buffer overflow in the XS function crypturandomgetrandom. The function does not...

OSV•added 2026/02/16 9:22 p.m.•5 views

ALPINE-CVE-2026-2474

7.5CVSS5.8AI score0.00295EPSS

Exploits0References1

OSV•added 2026/02/16 9:22 p.m.•4 views

CVE-2026-2474

7.5CVSS6AI score

NVD•added 2026/02/16 9:22 p.m.•4 views

CVE-2026-2474

7.5CVSS0.00295EPSS

OSV•added 2026/02/16 9:22 p.m.•4 views

DEBIAN-CVE-2026-2474

7.5CVSS5.8AI score0.00295EPSS

Exploits0References1

UbuntuCve•added 2026/02/16 9:22 p.m.•1 views

CVE-2026-2474

OSV•added 2026/02/16 9:22 p.m.•1 views

UBUNTU-CVE-2026-2474

AlpineLinux•added 2026/02/16 8:54 p.m.•6 views

CVE-2026-2474

7.5CVSS5.9AI score0.00295EPSS

Exploits0

CVE•added 2026/02/16 8:54 p.m.•51 views

CVE-2026-2474

CVE-2026-2474 affects Perl Crypt-URandom up to 0.54; a negative length passed to crypt_urandom_getrandom() causes wraparound, leading to a zero-byte allocation and potential heap memory corruption with denial-of-service. Fix: update to 0.550.0 (0.55) as released in SUSE/OpenSUSE and Fedora adviso...

7.5CVSS5.8AI score0.00295EPSS

Exploits0References2Affected Software1

Cvelist•added 2026/02/16 8:54 p.m.•27 views

CVE-2026-2474 Crypt::URandom versions from 0.41 before 0.55 for Perl is vulnerable to a heap buffer overflow in the XS function crypt_urandom_getrandom()

0.00295EPSS

Vulnrichment•added 2026/02/16 8:54 p.m.•4 views

CVE-2026-2474 Crypt::URandom versions from 0.41 before 0.55 for Perl is vulnerable to a heap buffer overflow in the XS function crypt_urandom_getrandom()

5.8AI score0.00295EPSS