CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Nuclei•added 2 days ago•44 views

Weaver OA 9.5 - Information Disclosure

A vulnerability was found in Weaver OA 9.5 and classified as problematic. This issue affects some unknown processing of the file /building/backmgr/urlpage/mobileurl/configfile/jx2config.ini. The manipulation leads to files or directories accessible. The attack may be initiated remotely. id:...

7.5CVSS5.4AI score0.54232EPSS

Exploits1References5

RedhatCVE•added 2026/06/16 1:31 p.m.•5 views

CVE-2026-6039

A flaw was found in LibreOffice. This vulnerability, a heap buffer overflow, occurs when processing specially crafted DXF Drawing Exchange Format polyline files. An attacker could exploit this by convincing a user to open a malicious DXF file, which may lead to a denial of service DoS due to...

6.9CVSS5.4AI score0.00157EPSS

Exploits0References4

OSV•added 2026/06/12 12:25 p.m.•5 views

OESA-2026-2634 libsolv security update

A free package dependency solver using a satisfiability algorithm. The library is based on two major, but independent, blocks: Security Fixes: A flaw was found in libsolv. A stack-based buffer overflow vulnerability exists in the PGP verification component due to incorrect length handling when...

6.5CVSS5.9AI score0.0035EPSS

Exploits0References4

Debian CVE•added 2026/06/09 4:3 p.m.•15 views

CVE-2026-34181

Issue Summary: The PKCS12 file processing fails to perform sufficient input validation for files that use Password-Based Message Authentication Code 1 PBMAC1 integrity mechanism allowing a certificate and private key forgery. Impact Summary: An attacker impersonating a user can cause a service...

7.4CVSS5.6AI score0.00196EPSS

Exploits0

RedhatCVE•added 2026/06/05 7:16 p.m.•7 views

CVE-2026-42311

Pillow is a Python imaging library. From version 10.3.0 to before version 12.2.0, processing a malicious PSD file could lead to memory corruption, potentially resulting in a crash or arbitrary code execution. This issue has been patched in version 12.2.0...

8.6CVSS7.4AI score0.0015EPSS

Exploits0References1

Vulnrichment•added 2026/05/27 1:14 p.m.•9 views

CVE-2026-7524 Path Traversal Vulnerability in File Processing Components Allows Unauthorized File System Access and Potential Remote Code Execution

IBM Langflow OSS 1.0.0 through 1.9.1 could allow remote code execution due to improper validation of symbolic links during archive extraction...

9.8CVSS6.4AI score0.00624EPSS

Exploits0References1

AlmaLinux•added 2026/05/26 12:0 a.m.•12 views

Important: compat-libtiff3 security update

The libtiff3 package provides libtiff 3, an older version of libtiff library for manipulating TIFF Tagged Image File Format image format files. This version should be used only if you are unable to use the current version of libtiff. Security Fixes: libtiff: libtiff: Arbitrary code execution or...

7.8CVSS6.2AI score0.00553EPSS

Exploits0References4

IBM Security Bulletins•added 2026/05/19 3:54 p.m.•6 views

Security Bulletin: Path Traversal Vulnerability in File Processing Components Allows Unauthorized File System Access and Potential Remote Code Execution

Summary A path traversal vulnerability exists in multiple Langflow OSS file processing components Docling, Docling Serve, Read File, NVIDIA Retriever Extraction, Video File, and Unstructured API that are based on BaseFileComponent. The vulnerability in the unpackbundle function allows attackers t...

9.8CVSS6.5AI score0.00624EPSS

Exploits0Affected Software1

OSV•added 2026/05/15 2:0 p.m.•5 views

OESA-2026-2297 vim security update

Vim is an advanced text editor that seeks to provide the power of the de-facto Unix editor 'Vi', with a more complete feature set. Vim is a highly configurable text editor built to enable efficient text editing. It is an improved version of the vi editor distributed with most UNIX systems. Securi...

RedHat Linux•added 2026/05/11 4:0 a.m.•9 views

Important: Red Hat Security Advisory: LibRaw security update

An update for LibRaw is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring Syst...

9.8CVSS5.8AI score0.00464EPSS

Exploits1References2

Tenable Nessus•added 2026/05/11 12:0 a.m.•7 views

RHEL 8 : LibRaw (RHSA-2026:15924)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2026:15924 advisory. LibRaw is a library for reading RAW files obtained from digital photo cameras CRW/CR2, NEF, RAF, DNG, and others. Security Fixes: LibRaw: LibRaw:...

9.8CVSS6.1AI score0.00464EPSS

Exploits1References4

Tenable Nessus•added 2026/05/11 12:0 a.m.•7 views

RHEL 8 : LibRaw (RHSA-2026:15925)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2026:15925 advisory. LibRaw is a library for reading RAW files obtained from digital photo cameras CRW/CR2, NEF, RAF, DNG, and others. Security Fixes: LibRaw: LibRaw:...

9.8CVSS6.1AI score0.00464EPSS

Exploits1References4

OESA-2026-2204 vim security update

OESA-2026-2203 vim security update

OESA-2026-2202 vim security update

OESA-2026-2201 vim security update

Tenable Nessus•added 2026/05/09 12:0 a.m.•8 views

Linux Distros Unpatched Vulnerability : CVE-2026-42311

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Pillow is a Python imaging library. From version 10.3.0 to before version 12.2.0, processing a malicious PSD file could lead to memory corruption, potentially...

8.6CVSS7.3AI score0.0015EPSS