CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5836 matches found

OSV•added 2026/03/18 8:16 p.m.•4 views

UBUNTU-CVE-2026-31966

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data. As one method of removing redundant data, CRAM uses reference-based compression so that instead of storing the full sequence for each alignment record it...

9.1CVSS6.1AI score0.00518EPSS

Exploits0References6

Github Security Blog•added 2026/03/18 8:7 p.m.•2 views

Filament Unvalidated Range and Values summarizer values can be used for XSS

Two Table summarizers Range, Values render raw database values without escaping HTML. If there is a lack of validation for the data in the columns that use these summarizers, an attacker could plant malicious HTML / JavaScript and achieve stored XSS that executes for users who view the table with...

7.3CVSS5.5AI score0.00296EPSS

Exploits0References6Affected Software1

OSV•added 2026/03/18 8:7 p.m.•0 views

GHSA-VV3X-J2X5-36JC Filament Unvalidated Range and Values summarizer values can be used for XSS

7.3CVSS5.5AI score0.00296EPSS

Exploits0References6

CVE•added 2026/03/18 6:58 p.m.•10 views

CVE-2026-31966

CVE-2026-31966 affects HTSlib’s CRAM reader. The vulnerability stems from insufficient validation of the feature data series in cram_decode_seq(), allowing data to be copied from before the start or after the end of the stored reference into output buffers or the SAM MD tag. This can lead to info...

9.1CVSS6AI score0.00518EPSS

Exploits0References4Affected Software1

EUVD•added 2026/03/16 3:30 p.m.•4 views

EUVD-2026-12117

GStreamer RealMedia Demuxer Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

7.8CVSS6.3AI score0.00383EPSS

Exploits0References3

EUVD•added 2026/03/16 3:30 p.m.•3 views

EUVD-2026-12113

GStreamer ASF Demuxer Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

7.8CVSS6.4AI score0.00688EPSS

Exploits0References3

NVD•added 2026/03/16 2:19 p.m.•2 views

CVE-2026-3082

GStreamer JPEG Parser Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

7.8CVSS0.0063EPSS

Exploits0References2

OSV•added 2026/03/16 2:19 p.m.•3 views

CVE-2026-2922

7.8CVSS6.3AI score

Exploits0References2

OSV•added 2026/03/16 2:19 p.m.•2 views

UBUNTU-CVE-2026-3082

7.8CVSS6.3AI score0.0063EPSS

Exploits0References4

OSV•added 2026/03/16 2:19 p.m.•3 views

UBUNTU-CVE-2026-2922

7.8CVSS6.2AI score0.00383EPSS

Exploits0References3

OSV•added 2026/03/16 2:19 p.m.•1 views

UBUNTU-CVE-2026-3084

GStreamer H.266 Codec Parser Integer Underflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

7.8CVSS6.2AI score0.00376EPSS

Exploits0References4

Zero Day Initiative•added 2026/03/16 12:0 a.m.•6 views

(Pwn2Own) Linux Kernel nf_tables_newset Out-Of-Bounds Write Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Linux Kernel. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling...

3.8CVSS5.3AI score0.00992EPSS

Exploits0References1

Vulnrichment•added 2026/03/13 8:42 p.m.•2 views

CVE-2026-3084 GStreamer H.266 Codec Parser Integer Underflow Remote Code Execution Vulnerability

7.8CVSS6.3AI score0.00376EPSS

Exploits0References2

Debian CVE•added 2026/03/13 8:42 p.m.•4 views

CVE-2026-3084

7.8CVSS8.3AI score0.00376EPSS

Exploits0

CVE•added 2026/03/13 8:40 p.m.•14 views

CVE-2026-3086

Technical details about CVE-2026-3086 are not publicly available in the provided documents. Monitor for updates.

7.8CVSS7.7AI score0.00376EPSS

Exploits0References2Affected Software1

ATTACKERKB•added 2026/03/13 8:40 p.m.•6 views

CVE-2026-3086

GStreamer H.266 Codec Parser Out-Of-Bounds Write Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

7.8CVSS6.3AI score0.00376EPSS

Exploits0References3

ATTACKERKB•added 2026/03/13 8:40 p.m.•5 views

CVE-2026-3085

GStreamer rtpqdm2depay Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with this library is required to exploit this vulnerability but attack vectors may vary...

8.8CVSS6.4AI score0.00543EPSS

Exploits0References3