CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2026/01/13 12:0 a.m.•2 views

MiracleLinux 9 : glibc-2.34-168.el9_6.19 (AXSA:2025-10672:12)

The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10672:12 advisory. glibc: static setuid binary dlopen may incorrectly search LDLIBRARYPATH CVE-2025-4802 Tenable has extracted the preceding description block directly from th...

7.8CVSS7AI score0.00043EPSS

Tenable Nessus•added 2025/10/07 12:0 a.m.•1 views

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: glibc (UTSA-2025-177646)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-177646 advisory. Untrusted LDLIBRARYPATH environment variable vulnerability in the GNU C Library version 2.27 to 2.38 allows attacker controlled loading of dynamically shared library...

7.8CVSS7AI score0.00043EPSS

Exploits1References4

OSV•added 2025/10/04 12:11 a.m.•2 views

RLSA-2025:8655 Moderate: glibc security update

The glibc packages provide the standard C libraries libc, POSIX thread libraries libpthread, standard math libraries libm, and the name service cache daemon nscd used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Security Fixes: glibc:...

7CVSS7.2AI score0.00043EPSS

OSV•added 2025/09/26 1:15 p.m.•2 views

CLSA-2025-1758892548 glibc: Fix of CVE-2025-4802

CVE-2025-4802: prevent untrusted LDLIBRARYPATH from loading dynamically shared libraries in statically compiled binaries that call dlopen...

OSV•added 2025/09/12 6:0 p.m.•1 views

Exploits1References1

CLSA-2025-1757700003 glibc: Fix of CVE-2025-4802

CVE-2025-4802: prevent untrusted LDLIBRARYPATH from loading dynamically shared libraries in statically compiled binaries that call dlopen...

OSV•added 2025/09/12 3:21 p.m.•1 views

Exploits1References1

CLSA-2025-1757690477 glibc: Fix of CVE-2025-4802

CVE-2025-4802: prevent untrusted LDLIBRARYPATH from loading dynamically shared libraries in statically compiled binaries that call dlopen...

Tenable Nessus•added 2025/09/10 12:0 a.m.•2 views

Exploits1References1

EulerOS 2.0 SP9 : glibc (EulerOS-SA-2025-2123)

According to the versions of the glibc packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : Untrusted LDLIBRARYPATH environment variable vulnerability in the GNU C Library version 2.27 to 2.38 allows attacker controlled loading of...

Tenable Nessus•added 2025/09/10 12:0 a.m.•2 views

EulerOS 2.0 SP9 : glibc (EulerOS-SA-2025-2124)

Microsoft CVE•added 2025/09/04 7:2 a.m.•1 views

Untrusted LD_LIBRARY_PATH environment variable vulnerability in the GNU C Library version 2.27 to 2.38 allows attacker controlled loading of dynamically shared library in statically compiled setuid binaries that call dlopen (including internal dlopen calls after setlocale or calls to NSS functions such as getaddrinfo).

...

8.4CVSS7AI score0.00043EPSS

Exploits1

Tenable Nessus•added 2025/08/14 12:0 a.m.•2 views

EulerOS 2.0 SP11 : glibc (EulerOS-SA-2025-1925)

Tenable Nessus•added 2025/08/14 12:0 a.m.•1 views

EulerOS 2.0 SP11 : glibc (EulerOS-SA-2025-1951)

OpenVAS•added 2025/08/12 12:0 a.m.•3 views

Huawei EulerOS: Security Advisory for glibc (EulerOS-SA-2025-1951)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.5AI score0.00043EPSS

Redos•added 2025/07/22 12:0 a.m.•4 views

ROS-20250722-04

Vulnerability of the glibc system library dlopen function is related to the use of an insecure search path for executable programs when processing the LDLIBRARYPATH variable. executable programs when processing the LDLIBRARYPATH variable. Exploitation of the vulnerability could allow an attacker...

7.8CVSS7.8AI score0.00043EPSS

Exploits1

Amazon•added 2025/06/10 12:0 a.m.•2 views

Important: glibc

Issue Overview: Untrusted LDLIBRARYPATH environment variable vulnerability in the GNU C Library version 2.27 to 2.38 allows attacker controlled loading of dynamically shared library in statically compiled setuid binaries that call dlopen including internal dlopen calls after setlocale or calls to...

7.8CVSS6.9AI score0.00043EPSS

Exploits1

RedHat Linux•added 2025/06/09 2:48 p.m.•4 views

glibc: static setuid binary dlopen may incorrectly search LD_LIBRARY_PATH

A flaw was found in the glibc library. A statically linked setuid binary that calls dlopen, including internal dlopen calls after setlocale or calls to NSS functions such as getaddrinfo, may incorrectly search LDLIBRARYPATH to determine which library to load, allowing a local attacker to load...

RedHat Linux•added 2025/06/09 9:11 a.m.•3 views

Exploits1References8

glibc: static setuid binary dlopen may incorrectly search LD_LIBRARY_PATH