Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

5079 matches found

AstraLinux
AstraLinuxadded 5 days ago5 views

Astra Linux – Vulnerability in binutils

A vulnerability has been discovered in GNU Binutils 2.45. This vulnerability affects the function bfdelfgcrecordvtentry in the file bfd/elflink.c of the Linker component. Manipulation of this function can lead to out-of-bounds reading. Access to local resources is required to carry out this attac...

5.5CVSS5AI score0.00184EPSS
Exploits1References2
GithubExploit
GithubExploitadded 2026/06/16 8:52 a.m.47 views

objdump-dlx-calc-poc

objdump dlx calc poc Small repro for an objdump -g crash-to...

5.3AI score
Exploits0
Tenable Nessus
Tenable Nessusadded 2026/06/12 12:0 a.m.9 views

EulerOS Virtualization 2.13.1 : binutils (EulerOS-SA-2026-2367)

According to the versions of the binutils packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A flaw was found in GNU Binutils. This heap-based buffer overflow vulnerability, specifically an out-of- bounds read in the bfd...

7.5CVSS6.3AI score0.00256EPSS
Exploits3References6
Tenable Nessus
Tenable Nessusadded 2026/06/12 12:0 a.m.8 views

EulerOS Virtualization 2.13.0 : binutils (EulerOS-SA-2026-2396)

According to the versions of the binutils packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A flaw was found in GNU Binutils. This heap-based buffer overflow vulnerability, specifically an out-of- bounds read in the bfd...

7.5CVSS6.4AI score0.00256EPSS
Exploits3References6
RedhatCVE
RedhatCVEadded 2026/06/11 2:59 p.m.8 views

CVE-2026-49497

Ghidra before 12.1 contains a path traversal vulnerability in SameDirDebugInfoProvider that fails to validate filenames from ELF binary .gnudebuglink sections before constructing file paths. Attackers can craft malicious ELF binaries with traversal sequences to probe filesystem existence and leak...

4.6CVSS5.6AI score0.00185EPSS
Exploits1References1
NVD
NVDadded 2026/06/10 8:17 p.m.6 views

CVE-2026-46529

Atril Document Viewer is the default document reader of the MATE desktop environment for Linux. A single-click remote code execution vulnerability in versions prior to 1.26.3 and 1.28.4 allows an attacker to achieve arbitrary code execution as the user by tricking them into clicking a link inside...

8.4CVSS0.00555EPSS
Exploits0References9
Debian CVE
Debian CVEadded 2026/06/10 7:46 p.m.7 views

CVE-2026-46529

Atril Document Viewer is the default document reader of the MATE desktop environment for Linux. A single-click remote code execution vulnerability in versions prior to 1.26.3 and 1.28.4 allows an attacker to achieve arbitrary code execution as the user by tricking them into clicking a link inside...

8.4CVSS6.5AI score0.00555EPSS
Exploits0
NVD
NVDadded 2026/06/10 2:16 p.m.10 views

CVE-2026-49497

Ghidra before 12.1 contains a path traversal vulnerability in SameDirDebugInfoProvider that fails to validate filenames from ELF binary .gnudebuglink sections before constructing file paths. Attackers can craft malicious ELF binaries with traversal sequences to probe filesystem existence and leak...

4.6CVSS0.00185EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2026/06/10 12:37 p.m.8 views

CVE-2026-49497 Ghidra < 12.1 - Path Traversal via .gnu_debuglink in DWARF External Debug File Resolution

Ghidra before 12.1 contains a path traversal vulnerability in SameDirDebugInfoProvider that fails to validate filenames from ELF binary .gnudebuglink sections before constructing file paths. Attackers can craft malicious ELF binaries with traversal sequences to probe filesystem existence and leak...

4.6CVSS5.6AI score0.00185EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2026/06/09 12:0 a.m.4 views

EulerOS 2.0 SP11 : binutils (EulerOS-SA-2026-2236)

According to the versions of the binutils packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : GNU Binutils thru 2.46 readelf contains a null pointer dereference vulnerability when processing a crafted ELF binary with malformed header...

7.5CVSS6.1AI score0.00256EPSS
Exploits2References3
Tenable Nessus
Tenable Nessusadded 2026/06/06 12:0 a.m.9 views

EulerOS Virtualization 2.13.0 : gdb (EulerOS-SA-2026-2164)

According to the versions of the gdb packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A flaw has been found in GNU Binutils 2.45. Impacted is the function bfdelfparseehframe of the file bfd/elf-eh-frame.c of the componen...

7.8CVSS5.5AI score0.00667EPSS
Exploits6References7
RedhatCVE
RedhatCVEadded 2026/06/05 7:50 p.m.8 views

CVE-2026-21996

An unprivileged attacker can reliably trigger a crash of the dtrace process with a malicious ELF binary due to an integer Divide-by-Zero in Pbuildfilesymtab...

5.5CVSS5.5AI score0.0011EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/06/05 7:33 p.m.5 views

CVE-2026-45676

OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, OBI's replacement ELF parser trusts section offsets, counts, and string offsets from the executable file. A crafted local ELF can make OBI dereference invalid section...

5.5CVSS5.4AI score0.00162EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2026/06/05 7:23 p.m.7 views

CVE-2026-35233

An unprivileged attacker can craft a user-space process with a malicious ELF binary containing an out-of-range shlink field. When root-level dtrace attaches to -- or instruments -- that process via dtrace -p , pid probes, or USDT, the ELF parser reads heap memory beyond the allocated section cach...

4.4CVSS5.5AI score0.00108EPSS
Exploits0References1
NVD
NVDadded 2026/06/02 4:16 p.m.12 views

CVE-2026-45676

OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, OBI's replacement ELF parser trusts section offsets, counts, and string offsets from the executable file. A crafted local ELF can make OBI dereference invalid section...

5.5CVSS0.00162EPSS
Exploits1References2
CVE
CVEadded 2026/06/02 3:23 p.m.21 views

CVE-2026-45676

CVE-2026-45676 affects OpenTelemetry eBPF Instrumentation (OBI). Before version 0.9.0, OBI’s replacement ELF parser trusts section offsets, counts, and string offsets from the executable, allowing a crafted local ELF to trigger invalid dereferences or out-of-bounds slicing in the parser. The vuln...

5.5CVSS5.8AI score0.00162EPSS
Exploits1References2Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/06/02 3:23 p.m.6 views

CVE-2026-45676

OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, OBI's replacement ELF parser trusts section offsets, counts, and string offsets from the executable file. A crafted local ELF can make OBI dereference invalid section...

5.5CVSS5.8AI score0.00162EPSS
Exploits1References3Affected Software1
Cvelist
Cvelistadded 2026/06/02 3:23 p.m.36 views

CVE-2026-45676 OpenTelemetry eBPF Instrumentation: Unsafe fastelf parsing allows malformed ELF to crash agent

OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, OBI's replacement ELF parser trusts section offsets, counts, and string offsets from the executable file. A crafted local ELF can make OBI dereference invalid section...

5.5CVSS0.00162EPSS
Exploits1References2
EUVD
EUVDadded 2026/06/02 3:23 p.m.11 views

EUVD-2026-33951

OpenTelemetry eBPF Instrumentation provides eBPF instrumentation based on the OpenTelemetry standard. Prior to version 0.9.0, OBI's replacement ELF parser trusts section offsets, counts, and string offsets from the executable file. A crafted local ELF can make OBI dereference invalid section...

5.5CVSS5.8AI score0.00162EPSS
Exploits1References2
CNNVD
CNNVDadded 2026/06/02 12:0 a.m.5 views

OpenTelemetry eBPF Instrumentation 安全漏洞

OpenTelemetry eBPF Instrumentation is an open-source eBPF-based lightweight telemetry data collection tool developed by OpenTelemetry. Versions of OpenTelemetry eBPF Instrumentation prior to 0.9.0 contained security vulnerabilities. These vulnerabilities stemmed from replacing the ELF parser’s...

5.5CVSS5.3AI score0.00162EPSS
Exploits1References2
Rows per page
Query Builder