CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

In the Linux kernel, the following vulnerability has been resolved: sound: ua101: fix division by zero at probe Add a missing sanity check for bNrChannels in detectusbformat to prevent a division by zero in playbackurbcomplete and captureurbcomplete. USB core does not validate class-specific...

5.7AI score0.00032EPSS

Exploits0References1

OSV•added 2026/05/27 2:17 p.m.•3 views

DEBIAN-CVE-2026-46021

In the Linux kernel, the following vulnerability has been resolved: thermal: core: Fix thermal zone governor cleanup issues If thermalzonedeviceregisterwithtrips fails after adding a thermal governor to the thermal zone being registered, the governor is not removed from it as appropriate which ma...

5.7AI score0.00024EPSS

Exploits0References1

OSV•added 2026/05/26 10:7 a.m.•4 views

RHSA-2026:20589 Red Hat Security Advisory: dnsmasq security update

Bulletin has no description...

8.8CVSS5.7AI score0.0024EPSS

Exploits3References24

OSV•added 2026/05/23 3:10 p.m.•9 views

MINI-F52H-RGH6-G8X5

Bulletin has no description...

6.3CVSS5.7AI score0.00044EPSS

Exploits0

OSV•added 2026/05/21 6:10 a.m.•1 views

BELL-CVE-2026-5947

Bulletin has no description...

5.9CVSS5.7AI score0.00044EPSS

Exploits0References1

OSV•added 2026/05/20 10:16 a.m.•5 views

DEBIAN-CVE-2026-41054

In src/havegecmd.c, the sockethandler function performs a credential check on the abstract UNIX socket \0/sys/entropy/haveged. However, while it detects if the connecting user is not root cred.uid != 0 and prepares a negative acknowledgement ASCIINAK, it fails to stop execution. The code proceeds...

7.8CVSS6AI score0.00004EPSS

Exploits0References1

OSSF Malicious Packages•added 2026/05/20 2:47 a.m.•6 views

Malicious code in @serviceshub/x-web-core (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1cd81c2623e8f621801dcbfbf7d7eb8745bf702f1d5e85e410872400c7d2eea7 Package ships a trivial index.js module.exports = ; and exists solely to pull a direct-URL tarball dependency at install time. package.json line 9...

5.9AI score

Exploits0References1

OSV•added 2026/05/19 2:16 p.m.•4 views

DEBIAN-CVE-2026-8950

Same-origin policy bypass in the Networking: HTTP component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird 151, and Thunderbird 140.11...

9.3CVSS5.8AI score0.00018EPSS

Exploits0References1

OSV•added 2026/05/17 12:45 p.m.•1 views

MINI-3CGH-3Q2R-X8P3

Bulletin has no description...

6.5CVSS5.7AI score0.00053EPSS

Exploits0

OSV•added 2026/05/17 12:33 p.m.•5 views

MINI-PPPM-M34F-WWH9

Bulletin has no description...

6.4CVSS7.2AI score0.0001EPSS

Exploits0