CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

129 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: s390/zcrypt: Fixed a memory leak when CCA cards are used as accelerators. Tests revealed that a memory leak occurs when CCA cards are used as accelerators for clear-key RSA requests ME and CRT. With the recent modifications to...

5.5CVSS5.8AI score0.00015EPSS

Exploits0References1

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux - уязвимость в mbedtls

A issue was discovered in Arm Mbed TLS prior to version 2.23.0. Due to a side channel in modular exponentiation, an RSA private key used in a secure enclave could be disclosed...

5.3CVSS6.6AI score0.00516EPSS

Exploits1References2

OSSF Malicious Packages•added 2026/03/16 12:0 a.m.•3 views

Malicious code in syntax-exponentiation-operator (npm)

The package 'syntax-exponentiation-operator' is part of the PhantomRaven supply chain attack campaign Wave 2. It uses a Remote Dynamic Dependency RDD technique: the published package appears benign but includes a URL-based dependency in package.json pointing to an attacker-controlled C2 server...

5.5AI score

Exploits0References3

OSV•added 2026/03/16 12:0 a.m.•1 views

MAL-2026-1532 Malicious code in syntax-exponentiation-operator (npm)

5.6AI score

Exploits0References3

Snyk•added 2026/02/03 3:57 a.m.•3 views

Malicious Package

Overview transform-exponentiation-operator is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and...

9.8CVSS5.4AI score

Exploits0References2

OSSF Malicious Packages•added 2026/02/03 3:57 a.m.•8 views

Malicious code in transform-exponentiation-operator (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d1b79481ce559cb600cfe4b2897847eb06d38b5cbe4ef456339cbbac7b240e60 The package transform-exponentiation-operator was found to contain malicious code. Source: ghsa-malware...

5.4AI score

Exploits0References1

OSV•added 2026/02/03 3:57 a.m.•3 views

MAL-2026-665 Malicious code in transform-exponentiation-operator (npm)

5.5AI score

Exploits0References1

OSV•added 2025/11/21 3:59 p.m.•2 views

JLSEC-2025-221 Use of a Broken or Risky Cryptographic Algorithm in the function mbedtls_mpi_exp_mod() in lignum.c i...

Use of a Broken or Risky Cryptographic Algorithm in the function mbedtlsmpiexpmod in lignum.c in Mbed TLS Mbed TLS all versions before 3.0.0, 2.27.0 or 2.16.11 allows attackers with access to precise enough timing and memory access information typically an untrusted operating system attacking a...

4.7CVSS6.5AI score0.0005EPSS

Exploits0References4

OSV•added 2025/11/21 3:59 p.m.•4 views

JLSEC-2025-204 An issue was discovered in Arm Mbed TLS before 2.23.0

An issue was discovered in Arm Mbed TLS before 2.23.0. Because of a side channel in modular exponentiation, an RSA private key used in a secure enclave could be disclosed...

5.3CVSS7.4AI score0.00516EPSS

Exploits1References5

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2016-7770

Malware in sbrugna...

7.5CVSS7.6AI score0.00721EPSS

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2016-9510

Malware in sbrugna...

5.9CVSS5.7AI score0.00373EPSS

Exploits0References7

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2020-23949

Malware in sbrugna...

5.3CVSS5.5AI score0.00516EPSS

Exploits1References6

EUVD•added 2025/10/07 12:30 a.m.•6 views

EUVD-2016-0737

Malware in sbrugna...

5.1CVSS7.5AI score0.00545EPSS

Exploits1References54

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2010-0953

Malware in sbrugna...

4CVSS8.6AI score0.00098EPSS

Exploits0References9

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2016-7772

Malware in sbrugna...

5.9CVSS5.7AI score0.00297EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-1438

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.0028EPSS

Exploits0References8

Tenable Nessus•added 2025/08/15 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2020-36421

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Arm Mbed TLS before 2.23.0. Because of a side channel in modular exponentiation, an RSA private key used in a secure enclave could be...

5.3CVSS6AI score0.00516EPSS

Exploits1References2

RedhatCVE•added 2025/05/22 3:34 p.m.•8 views

CVE-2020-36421

An issue was discovered in Arm Mbed TLS before 2.23.0. Because of a side channel in modular exponentiation, an RSA private key used in a secure enclave could be disclosed...

5.3CVSS6.7AI score0.00516EPSS

Exploits1

Snyk•added 2025/03/14 10:0 p.m.•3 views

Allocation of Resources Without Limits or Throttling

Overview gmpy2 is a gmpy2 interface to GMP, MPFR, and MPC for Python 3.7+ Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling when performing arbitrary-precision calculations based on the GNU Multiple Precision Arithmetic Library GMP, in...

8.7CVSS6.9AI score

Exploits0References2

Tenable Nessus•added 2024/10/30 12:0 a.m.•15 views

F5 Networks BIG-IP : Diffie-Hellman key exchange protocol vulnerability (K000148343)

The version of F5 Networks BIG-IP installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the K000148343 advisory. Validating the order of the public keys in the Diffie-Hellman Key Agreement Protocol, when an approved safe prime is...

7.5CVSS6.9AI score0.00645EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by