CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

50 matches found

Tenable Nessus•added 2026/06/15 12:0 a.m.•8 views

Debian dla-4630 : libcrypto1.1-udeb - security update

The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-4630 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4630-1 [email protected]...

8.8CVSS5.9AI score0.02268EPSS

Exploits0References12

Microsoft CVE•added 2026/06/13 8:5 a.m.•6 views

Possible NULL Dereference in Password-Based CMS Decryption

...

5.9CVSS5.8AI score0.00595EPSS

Exploits0

Rockylinux•added 2026/06/13 12:5 a.m.•13 views

openssl security update

An update is available for openssl. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list OpenSSL is a toolkit that implements the Secure Sockets Layer SSL and...

9.1CVSS5.9AI score0.02268EPSS

Exploits0

OSV•added 2026/05/18 4:42 a.m.•5 views

SUSE-SU-2026:21806-1 Security update for the Linux Kernel (Live Patch 3 for SUSE Linux Enterprise 16)

This update for the SUSE Linux Enterprise Kernel 6.12.0-160000.8.1 fixes one security issue The following security issue was fixed: - CVE-2026-43284: xfrm: esp: avoid in-place decrypt on shared skb frags bsc1264459...

8.8CVSS6.1AI score0.93418EPSS

Exploits30References3

OSV•added 2026/05/14 6:30 a.m.•3 views

SUSE-SU-2026:21652-1 Security update for the Linux Kernel RT (Live Patch 8 for SUSE Linux Enterprise Micro 6.0)

This update for the SUSE Linux Enterprise Kernel 6.4.0-31.1 fixes one security issue The following security issue was fixed: - CVE-2026-43284: xfrm: esp: avoid in-place decrypt on shared skb frags bsc1264459...

8.8CVSS6.1AI score0.93418EPSS

Exploits30References3

Vulnrichment•added 2026/05/08 6:1 a.m.•9 views

CVE-2026-8149 GCM chunking can lead to bad tag exception on decryption

A vulnerability in Legion of the Bouncy Castle Inc. BC-LTS on Linux, X8664, AVX, AVX-512f. This vulnerability is associated with program files gcm128w, gcm512w. This issue affects BC-LTS: from 2.73.0 before 2.73.11...

5.1CVSS5.8AI score0.00158EPSS

Exploits0References1

Cvelist•added 2026/05/08 6:1 a.m.•30 views

CVE-2026-8149 GCM chunking can lead to bad tag exception on decryption

5.1CVSS0.00158EPSS

Exploits0References1

Tenable Nessus•added 2026/04/23 12:0 a.m.•7 views

Ubuntu 22.04 LTS / 24.04 LTS / 25.10 : strongSwan vulnerabilities (USN-8196-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-8196-1 advisory. Haruto Kimura discovered that strongSwan incorrectly handled the supportedversions extension in TLS. A remote attacker could possibly...

6.1AI score

Exploits6References8

Tenable Nessus•added 2026/04/20 12:0 a.m.•7 views

AlmaLinux 8 : .NET 9.0 (ALSA-2026:8475)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:8475 advisory. dotnet: .NET: Security Bypass and Denial of Service Vulnerability CVE-2026-26171 dotnet: .NET: Denial of Service via stack overflow CVE-2026-32203 dotnet:...

7.5CVSS6.4AI score0.0111EPSS

Exploits0References6

Positive Technologies•added 2026/03/04 12:0 a.m.•4 views

PT-2026-22890

SEPPmail Secure Email Gateway before version 15.0.1 incorrectly interprets email addresses in the email headers, causing an interpretation conflict with other mail infrastructure that allows an attacker to fake the source of the email or decrypt it...

7.8CVSS5.9AI score0.00213EPSS

Exploits0References2

IBM Security Bulletins•added 2026/02/25 5:18 p.m.•14 views

Security Bulletin: TSSC/IMC addresses multiple security vulnerabilities.

Summary TSSC/IMC addresses multiple security vulnerabilities, listed in the CVEs below. Vulnerability Details CVEID:CVE-2025-14523 DESCRIPTION: A flaw in libsoup’s HTTP header handling allows multiple Host: headers in a request and returns the last occurrence for server-side processing. Common...

9.8CVSS6.2AI score0.4269EPSS

Exploits2Affected Software1

Github Security Blog•added 2026/02/13 8:55 p.m.•10 views

rPGP's integrity protection of encrypted data was not always checked

Summary For some messages, rPGP returned incorrectly decrypted data without signaling that integrity protection was invalid. Details When decrypting SEIPD Symmetrically Encrypted and Integrity Protected Data Packet, rPGP previously did not under all circumstances report the absence of valid...

5.5AI score

Exploits0References2Affected Software1

Tenable Nessus•added 2026/01/13 12:0 a.m.•4 views

MiracleLinux 9 : kernel-5.14.0-611.16.1.el9_7 (AXSA:2025-11625:100)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-11625:100 advisory. kernel: cloneprivatemnt: make sure that caller has CAPSYSADMIN in the right userns CVE-2025-38499 kernel: iommufd: Fix race during abort for file...

7CVSS7.1AI score0.00162EPSS

Exploits0References4