CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2026/03/18 8:34 p.m.•3 views

EUVD-2026-12958

6.9CVSS5.8AI score0.00523EPSS

Vulnrichment•added 2026/03/18 8:34 p.m.•3 views

CVE-2026-31973 NULL pointer dereference in samtools cram-size

6.9CVSS5.8AI score0.00523EPSS

ATTACKERKB•added 2026/03/18 8:34 p.m.•7 views

CVE-2026-31973

6.9CVSS5.8AI score0.00523EPSS

Exploits0References3Affected Software1

CVE•added 2026/03/18 8:34 p.m.•10 views

CVE-2026-31973

SAMtools includes a NULL pointer dereference in the cram-size path of CRAM header handling: if cram_decode_compression_header() returns an error, a NULL pointer dereference may occur, crashing the program. This affects 1.17+ before fixes. The available connected advisories confirm fixes in versio...

7.5CVSS5.8AI score0.00523EPSS

Exploits0References3Affected Software1

NVD•added 2026/03/18 8:16 p.m.•2 views

CVE-2026-31966

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data. As one method of removing redundant data, CRAM uses reference-based compression so that instead of storing the full sequence for each alignment record it...

9.1CVSS0.00518EPSS

Vulnrichment•added 2026/03/18 7:47 p.m.•4 views

CVE-2026-31969 HTSlib CRAM decoder has a heap buffer overflow

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data using a variety of encodings and compression methods. When reading data encoded using the BYTEARRAYSTOP method, an out-by-one error in the...

7.1CVSS6.3AI score0.00336EPSS

UbuntuCve•added 2026/03/18 7:16 p.m.•1 views

CVE-2026-31963

8.8CVSS6.2AI score0.00348EPSS

Vulnrichment•added 2026/03/18 7:15 p.m.•2 views

CVE-2026-31967 HTSlib CRAM reader has out-of-bounds read due to improper validation of input

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data. In the cramdecodeslice function called while reading CRAM records, the value of the mate reference id field was not validated. Later use of this value, fo...

6.9CVSS5.7AI score0.00445EPSS

EUVD•added 2026/03/18 6:58 p.m.•3 views

EUVD-2026-12936

6.9CVSS6AI score0.00518EPSS

Vulnrichment•added 2026/03/18 6:58 p.m.•1 views

CVE-2026-31966 HTSlib CRAM reader has out-of-bounds read due to improper validation of input

6.9CVSS6AI score0.00518EPSS

Cvelist•added 2026/03/18 6:58 p.m.•20 views

CVE-2026-31966 HTSlib CRAM reader has out-of-bounds read due to improper validation of input

6.9CVSS0.00518EPSS

CVE•added 2026/03/18 6:58 p.m.•10 views

CVE-2026-31966

CVE-2026-31966 affects HTSlib’s CRAM reader. The vulnerability stems from insufficient validation of the feature data series in cram_decode_seq(), allowing data to be copied from before the start or after the end of the stored reference into output buffers or the SAM MD tag. This can lead to info...

9.1CVSS6AI score0.00518EPSS

Exploits0References4Affected Software1

OSV•added 2026/03/18 6:58 p.m.•2 views

CVE-2026-31966 HTSlib CRAM reader has out-of-bounds read due to improper validation of input

6.9CVSS6.2AI score0.00518EPSS

Exploits0References6

UbuntuCve•added 2026/03/18 6:16 p.m.•3 views

CVE-2026-31962

HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data. While most alignment records store DNA sequence and quality values, the format also allows them to omit this data in certain cases to save space. Due to...

8.8CVSS6.3AI score0.00361EPSS

Cvelist•added 2026/03/18 6:8 p.m.•16 views

CVE-2026-31962 HTSlib CRAM reader has heap buffer overflow due to improper validation of input

8.8CVSS0.00361EPSS

Github Security Blog•added 2026/03/18 1:0 p.m.•5 views

Denial of service in github.com/jackc/pgproto3/v2

The DataRow.Decode function fails to properly validate field lengths. A malicious or compromised PostgreSQL server can send a DataRow message with a negative field length, causing a slice bounds out of range panic...

7.5CVSS5.8AI score0.00357EPSS

Exploits0References7Affected Software1

OSV•added 2026/03/18 1:0 p.m.•3 views

GHSA-JQCQ-XJH3-6G23 Denial of service in github.com/jackc/pgproto3/v2

7.5CVSS5.8AI score0.00357EPSS

Exploits0References7

CNNVD•added 2026/03/18 12:0 a.m.•3 views

HTSlib 输入验证错误漏洞

HTSlib is a C-language library file developed by samtools. Versions of HTSlib prior to 1.23.1, 1.22.2, and 1.21.1 contained a vulnerability related to input validation errors. This vulnerability stemmed from the lack of verification of the paired reference ID field in the cramdecodeSlice function...

9.1CVSS5.8AI score0.00445EPSS

Tenable Nessus•added 2026/03/18 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-31967

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - HTSlib is a library for reading and writing bioinformatics file formats. CRAM is a compressed format which stores DNA sequence alignment data. In the...

9.1CVSS5.7AI score0.00445EPSS