CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2 days ago•29 views

CVE-2026-54270 protobufjs: Memory amplification from preserved unknown fields in binary decode

5.3CVSS0.00293EPSS

CVE•added 2 days ago•9 views

CVE-2026-54270

CVE-2026-54270 concerns protobufjs, where versions 8.2.0–8.4.2 preserved unknown wire elements in message.$unknowns during binary decode and lacked a decode-time option to discard them. This could allow crafted protobuf payloads with many unknown fields to cause decoded messages to retain memory ...

5.3CVSS5.9AI score0.00293EPSS

Exploits0References1Affected Software1

AstraLinux•added 5 days ago•1 views

Astra Linux – Vulnerabilities in Linux, Linux-5.15, Linux-6.1, Linux-5.10

In the Linux kernel, the following vulnerability has been resolved: nvme: Avoid double-free of special payloads. If a discard request needs to be retried, and that retry may fail before a new special payload is added, a double-free will occur. Clear the RQFSPECIALLOAD when the request is cleaned...

7.8CVSS6.1AI score0.00246EPSS

Exploits0References2

AstraLinux•added 5 days ago•4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: md/raid0, raid10: Do not set discard sectors for the request queue. It should use diskstacklimits to determine the appropriate maxdiscardsectors instead of setting the value using stack drivers. There is also a bug. If all...

5.4AI score0.00166EPSS

Exploits0References2

OSV•added 2026/06/15 8:13 p.m.•3 views

GHSA-94RC-8X27-4472 protobufjs: Memory amplification from preserved unknown fields in binary decode

Summary protobufjs 8.2.0 added support for preserving unknown fields encountered during binary decode. Affected versions preserved unknown wire elements in message.$unknowns and did not provide a decode-time option to discard unknown fields before retaining them. A crafted protobuf payload...

5.3CVSS5.3AI score0.00293EPSS

Exploits0References2

EUVD•added 2026/06/12 8:39 p.m.•8 views

EUVD-2026-36566

ApostropheCMS is an open-source Node.js content management system, and sanitize-html provides a simple HTML sanitizer with a clear API. Under the default configuration, versions of sanitize-html prior to 2.17.4 can turn attacker-controlled content inside a disallowed xmp element into live HTML or...

9.3CVSS5.2AI score0.00323EPSS

RedhatCVE•added 2026/06/10 9:4 p.m.•7 views

CVE-2026-49958

Hermes WebUI before version 0.51.303 contains a time-of-check time-of-use TOCTOU race condition vulnerability in the gitdiscard function within api/workspacegit.py that allows attackers to delete files outside the configured workspace boundary by replacing a validated path component with a symlin...

EUVD•added 2026/06/09 6:31 p.m.•6 views

EUVD-2026-35706

NVD•added 2026/06/09 5:17 p.m.•7 views

Exploits0References6

CVE-2026-49958

5CVSS0.00081EPSS

Cvelist•added 2026/06/09 4:35 p.m.•31 views

CVE-2026-49958 Hermes WebUI < 0.51.303 TOCTOU Race Condition via git_discard

5CVSS0.00081EPSS

CVE•added 2026/06/09 4:35 p.m.•13 views

CVE-2026-49958

Hermes WebUI is affected by a TOCTOU race in git_discard (api/workspace_git.py) prior to version 0.51.303. An attacker can replace a validated path component with a symlink between safe_resolve_ws() and the subsequent Path.unlink() or shutil.rmtree() call, causing the delete operation to follow t...

Vulnrichment•added 2026/06/09 4:35 p.m.•8 views

CVE-2026-49958 Hermes WebUI < 0.51.303 TOCTOU Race Condition via git_discard

CNNVD•added 2026/06/09 12:0 a.m.•9 views

Hermes Web UI 安全漏洞

Hermes Web UI is a lightweight, dark-themed web interface developed by Nathan Esquenazi. Versions of Hermes Web UI prior to 0.51.303 contained security vulnerabilities, which were caused by a TOCTOU race condition in the gitdiscard function. This vulnerability could allow attackers to delete file...

5CVSS5.3AI score0.00081EPSS

Positive Technologies•added 2026/06/09 12:0 a.m.•10 views

PT-2026-48120

Hermes WebUI before version 0.51.303 contains a time-of-check time-of-use TOCTOU race condition vulnerability in the git discard function within api/workspace git.py that allows attackers to delete files outside the configured workspace boundary by replacing a validated path component with a...

Amazon•added 2026/06/08 12:0 a.m.•11 views

Exploits0References6

Important: docker

Issue Overview: The RSA and DSA public key parsers did not enforce size limits on key parameters. A crafted public key with an excessively large modulus or DSA parameter could cause several minutes of CPU consumption during signature verification. This could be triggered by unauthenticated client...

10CVSS5.6AI score0.00392EPSS

Exploits0

Tenable Nessus•added 2026/06/08 12:0 a.m.•9 views

Amazon Linux 2 : containerd, --advisory ALAS2DOCKER-2026-127 (ALASDOCKER-2026-127)

The version of containerd installed on the remote host is prior to 2.1.7-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2DOCKER-2026-127 advisory. An authenticated SSH client that repeatedly opened channels which were rejected by the server caused unbounded...

10CVSS7AI score0.00466EPSS

Exploits0References28

OSV•added 2026/06/04 4:16 p.m.•7 views

ALPINE-CVE-2026-40930

LIBPNG is a reference library for use in applications that process PNG Portable Network Graphics raster image files. In version 1.8.0, three inter-frame chunk discard paths in the push-mode APNG parser clear the chunk-header flag without consuming the chunk body and CRC, allowing...

5.4CVSS5.4AI score0.00202EPSS

RedHat Linux•added 2026/06/04 3:52 p.m.•6 views

kernel: nvme: avoid double free special payload

In the Linux kernel, the following vulnerability has been resolved: nvme: avoid double free special payload If a discard request needs to be retried, and that retry may fail before a new special payload is added, a double free will result. Clear the RQFSPECIALLOAD when the request is cleaned...

7.8CVSS6.3AI score0.00246EPSS