CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

An update is available for gnutls. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The gnutls packages provide the GNU Transport Layer Security GnuTLS library,...

9.8CVSS5.8AI score0.00715EPSS

Exploits2

OSV•added last week•1 views

MINI-RHGG-W9V2-2R2V

Bulletin has no description...

6.1CVSS5.2AI score0.00031EPSS

Exploits0

OSV•added last week•2 views

MINI-2MC2-HQ6X-CWRC

Bulletin has no description...

5.3CVSS6.2AI score0.00046EPSS

Exploits0

OSV•added last week•3 views

MINI-WXG6-922P-8VQQ

Bulletin has no description...

4.4CVSS6.2AI score0.00032EPSS

Exploits2

OSV•added last week•4 views

BIT-AUTHENTIK-2026-49448 authentik: SourceStage bypass via empty POST

authentik is an open-source identity provider. Prior to versions 2025.12.6, 2026.2.4, and 2026.5.1, the Source stage can be bypassed by sending an empty POST. This issue has been patched in versions 2025.12.6, 2026.2.4, and 2026.5.1...

9.8CVSS5.3AI score0.00067EPSS

Exploits1References2

OSV•added last week•3 views

MINI-5XCR-5479-36X7

Bulletin has no description...

7.5CVSS5.7AI score0.00054EPSS

Exploits0

OSV•added last week•2 views

MINI-5GQJ-JQMX-255Q

Bulletin has no description...

9.1CVSS5.1AI score0.00038EPSS

Exploits0

OSV•added last week•2 views

MINI-HM82-RC69-2CXR

Bulletin has no description...

9.1CVSS5.7AI score0.00033EPSS

Exploits0

OSV•added last week•2 views

MINI-J5FR-W6PV-QWF2

Bulletin has no description...

7.5CVSS5.7AI score0.0002EPSS

Exploits0

OSV•added 2026/06/05 1:25 a.m.•6 views

MINI-PMGP-GC98-5V2R

Bulletin has no description...

7.5CVSS6.8AI score0.00035EPSS

Exploits0

OSV•added 2026/06/04 6:40 p.m.•4 views

MINI-6V4Q-M4CX-H7QJ

Bulletin has no description...

6.3CVSS5.7AI score0.00034EPSS

Exploits0

OSV•added 2026/06/04 6:39 p.m.•3 views

MINI-M98W-H2JQ-6F8F

Bulletin has no description...

9.1CVSS5.7AI score0.00033EPSS

Exploits0

Cvelist•added 2026/06/04 5:22 p.m.•26 views

CVE-2026-41207 netty-incubator-codec-ohttp's HPKEContext operations may produce empty byte[] on failures

The netty incubator codec.bhttp is a java language binary http parser. Prior to version 0.0.21.Final, HKDFexpand returns non-NULL on failure. The byte is filled with zeros and has no way to distinguish success from failure. Since this output is used as HKDF key material for the response AEAD, a...

6.9CVSS0.0004EPSS

Exploits0References2

OSV•added 2026/06/04 4:27 p.m.•3 views

MINI-X8G6-V7RX-MWXG

Bulletin has no description...

6.3CVSS5.7AI score0.00034EPSS

Exploits0

OSV•added 2026/06/04 3:52 p.m.•2 views

MINI-M95W-GWC6-52F9

Bulletin has no description...

7.5CVSS5.2AI score0.00035EPSS

Exploits0

ATTACKERKB•added 2026/06/04 2:21 p.m.•4 views

CVE-2026-7774

tarfile.datafilter could be bypassed using crafted link entries, including symlinks with empty or directory-like names, to redirect later archive members outside the intended extraction directory. This allowed a malicious tar archive to cause tarfile.extractall to write files outside the...

6.9CVSS5.8AI score0.00056EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by