CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedHat Linux•added 2026/04/16 2:52 p.m.•3 views

dotnet: .NET: Denial of Service via stack overflow

A flaw was found in .NET. A remote attacker could exploit a stack overflow vulnerability during encrypted key nested decryption, leading to a Denial of Service DoS. This could make the affected system unavailable to legitimate users...

RedHat Linux•added 2026/04/16 2:50 p.m.•2 views

dotnet: .NET: Denial of Service via stack overflow

RedHat Linux•added 2026/04/16 2:48 p.m.•1 views

dotnet: .NET: Denial of Service via stack overflow

7.5CVSS6.3AI score0.00256EPSS

RedHat Linux•added 2026/04/16 2:48 p.m.•2 views

dotnet: .NET: Security Bypass and Denial of Service Vulnerability

RedHat Linux•added 2026/04/16 2:46 p.m.•1 views

dotnet: .NET: Denial of Service via stack overflow

7.5CVSS6.3AI score0.00256EPSS

RedHat Linux•added 2026/04/16 2:46 p.m.•2 views

dotnet: .NET: Security Bypass and Denial of Service Vulnerability

RedHat Linux•added 2026/04/16 2:19 p.m.•4 views

dotnet: .NET: Denial of Service via stack overflow

RedHat Linux•added 2026/04/16 2:14 p.m.•1 views

dotnet: .NET: Security Bypass and Denial of Service Vulnerability

7.5CVSS5.8AI score0.03084EPSS

RedHat Linux•added 2026/04/16 2:14 p.m.•3 views

dotnet: .NET: Denial of Service via stack overflow

RedHat Linux•added 2026/04/16 2:9 p.m.•3 views

dotnet: .NET: Security Bypass and Denial of Service Vulnerability

RedHat Linux•added 2026/04/16 2:9 p.m.•3 views

dotnet: .NET: Denial of Service via stack overflow

7.5CVSS6.3AI score0.00256EPSS

Talos Blog•added 2026/04/16 10:0 a.m.•3 views

PowMix botnet targets Czech workforce

Cisco Talos discovered an ongoing malicious campaign, operating since at least December 2025, affecting a broader workforce in the Czech Republic with a previously undocumented botnet we call "PowMix." PowMix employs randomized command-and-control C2 beaconing intervals, rather than persistent...

6.5AI score

Exploits0

OSSF Malicious Packages•added 2026/04/15 10:5 p.m.•4 views

Malicious code in chai-as-encrypted (npm)

chai-as-encrypted is a malicious npm package that when imported downloads a C2 dropper from https://api.npoint.io/29ebd497b6f232e6b0a9 and executes it similar to malware in to chai-await-test. --- -= Per source details. Do not edit below this line.=- Source: amazon-inspector...

5.7AI score

Exploits0References2

OSV•added 2026/04/15 10:5 p.m.•0 views

MAL-2026-2888 Malicious code in chai-as-encrypted (npm)

5.7AI score

Exploits0References2

Snyk•added 2026/04/15 10:13 a.m.•1 views

Allocation of Resources Without Limits or Throttling

Overview Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling through the AEADEncDataPacket parser in AEADEncDataPacket.java. An attacker can crash packet parsing by supplying an AEAD-encrypted OpenPGP packet with an out-of-range chunk size valu...

8.7CVSS5.7AI score0.00019EPSS

Exploits0References2

OSV•added 2026/04/14 11:31 p.m.•2 views

GHSA-W3X6-4M5H-CXQF Microsoft Security Advisory CVE-2026-26171 – .NET Denial of Service Vulnerability

Executive Summary: Microsoft is releasing this security advisory to provide information about a vulnerability in System.Security.Cryptography.Xml. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability. A vulnerability exists in...