CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNNVD•added 2026/05/15 12:0 a.m.•5 views

AMD Ryzen 缓冲区错误漏洞

The AMD Ryzen is a central processing unit CPU developed by American semiconductor company AMD. The AMD Ryzen has a buffer error vulnerability, which stems from out-of-bounds reading. This vulnerability could allow malicious local attackers with low privileges to cause losses related to...

4.8CVSS6AI score0.00016EPSS

CNNVD•added 2026/05/15 12:0 a.m.•9 views

Imager::File::GIF 缓冲区错误漏洞

Imager::File::GIF is a Perl image module developed by Tony Cook, which supports the reading, writing, and processing of GIF images. Versions of Imager::File::GIF 1.002 and earlier contained a buffer error vulnerability. This vulnerability stemmed from the ireadgifmultilow function, which allocate...

5.3CVSS6AI score0.00005EPSS

CNNVD•added 2026/05/15 12:0 a.m.•6 views

Traefik 安全漏洞

Traefik is an open-source reverse proxy and load balancing tool developed by Traefik. Vulnerabilities exist in versions prior to Traefik 2.11.44, 3.6.15, and 3.7.0-rc.3. These vulnerabilities stem from the errors middleware module, which forwards the entire set of request headers including...

6.9CVSS5.8AI score0.00038EPSS

Exploits1References1

CNNVD•added 2026/05/15 12:0 a.m.•6 views

AMD Graphics Driver 缓冲区错误漏洞

AMD Graphics Driver is an integrated graphics driver developed by American semiconductor company AMD. The AMD Graphics Driver contains a buffer error vulnerability, which stems from out-of-buffer writes, potentially allowing local users to gain elevated privileges through remote code execution...

8.5CVSS6.3AI score0.00047EPSS

CNNVD•added 2026/05/15 12:0 a.m.•5 views

AMD Processors 缓冲区错误漏洞

AMD Processors are a series of processors developed by American semiconductor company AMD. AMD Processors have a buffer error vulnerability, which stems from out-of-bounds reading. This vulnerability could allow attackers to access memory locations at will, resulting in loss of availability and...

5.8CVSS6AI score0.00016EPSS

CNNVD•added 2026/05/15 12:0 a.m.•6 views

AMD Chipset 缓冲区错误漏洞

The AMD Chipset is a series of chips developed by American semiconductor company AMD. The AMD Chipset contains a buffer error vulnerability, which stems from improper input validation. This vulnerability may allow local attackers to read or write data beyond their intended scope, resulting in an...

8.5CVSS6AI score0.00016EPSS

UbuntuCve•added 2026/05/14 9:16 p.m.•6 views

CVE-2026-44662

rust-openssl provides OpenSSL bindings for the Rust programming language. From 0.10.0 to before 0.10.79, CipherCtxRef::cipherupdate, CipherCtxRef::cipherupdatevec, and symm::Crypter::update incorrectly sized output buffers when used with AES key-wrap-with-padding ciphers EVPaes128,192,256wrappad...

5.1CVSS5.8AI score0.00006EPSS

CVE•added 2026/05/14 7:59 p.m.•19 views

CVE-2026-44638

CVE-2026-44638 affects the libsixel SIXEL encoder/decoder. A wrong NULL check after allocation in sixel_decode_raw and sixel_decode causes a NULL pointer dereference when allocation fails, enabling a denial-of-service for callers under low-memory conditions. The issue stems from testing the addre...

2.5CVSS5.8AI score0.00018EPSS

Exploits1References1Affected Software1

RedhatCVE•added 2026/05/14 7:58 p.m.•5 views

CVE-2026-42545

Granian is a Rust HTTP server for Python applications. From 0.2.0 to 2.7.4, Granian aborts a worker process if a WSGI application returns an invalid HTTP response header name or value. The WSGI response conversion path uses .unwrap on both the header name and header value constructors, so malform...

5.9CVSS5.8AI score0.00052EPSS

Snyk•added 2026/05/14 7:16 p.m.•5 views

Insertion of Sensitive Information into Log File

Overview Affected versions of this package are vulnerable to Insertion of Sensitive Information into Log File in the LoggingRestClientCustomizer method. An attacker can access sensitive information by triggering HTTP requests that result in error responses, causing the full request body, response...

Debian CVE•added 2026/05/14 7:8 p.m.•8 views

CVE-2026-43996

OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. Prior to 3.0.18.0 and 3.1.13.0, the bounds check in TGAInput::decodepixel computes k + palbytespp as unsigned 32-bit arithmetic. When k = 0xFFFFFFFC and palbytespp = 4...

5.5CVSS5.9AI score0.00013EPSS

Exploits1

EUVD•added 2026/05/14 4:48 p.m.•5 views

EUVD-2026-30335

Valtimo is an open-source business process automation platform. From 12.4.0 to 12.33.0 and 13.26.0, the LoggingRestClientCustomizer in the web module automatically intercepts all outgoing HTTP calls made via Spring's RestClient and logs the full request body, response body, and response headers...

CVE•added 2026/05/14 4:48 p.m.•11 views

CVE-2026-44516

Valtimo (versions 12.4.0–12.33.0 and 13.26.0) contains a vulnerability in the web module where the LoggingRestClientCustomizer intercepts outgoing HTTP calls via Spring RestClient and logs full request/response bodies and headers. When errors occur, this data can appear in HttpClientErrorExceptio...

ATTACKERKB•added 2026/05/14 4:48 p.m.•4 views

CVE-2026-44516