CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2026/05/28 10:16 a.m.•1 views

UBUNTU-CVE-2026-46149

7.1CVSS5.7AI score0.00013EPSS

Cvelist•added 2026/05/28 9:36 a.m.•25 views

CVE-2026-46149 scsi: target: configfs: Bound snprintf() return in tg_pt_gp_members_show()

7.1CVSS0.00013EPSS

ATTACKERKB•added 2026/05/28 9:36 a.m.•6 views

CVE-2026-46149

7.1CVSS5.7AI score0.00013EPSS

Exploits0References9Affected Software1

CVE•added 2026/05/28 9:36 a.m.•11 views

CVE-2026-46149

Summary: CVE-2026-46149 affects the Linux kernel SCSI target subsystem, specifically the configfs path in tg_pt_gp_members_show(). The function formats LUN paths with snprintf() into a 256-byte stack buffer and then copies cur_len bytes via memcpy(), but snprintf() may return a length that exceed...

7.1CVSS5.7AI score0.00013EPSS

Positive Technologies•added 2026/05/28 12:0 a.m.•4 views

PT-2026-44272

In the Linux kernel, the following vulnerability has been resolved: scsi: target: configfs: Bound snprintf return in tg pt gp members show target tg pt gp members show formats LUN paths with snprintf into a 256-byte stack buffer, then will memcpy cur len bytes from that buffer. snprintf returns t...

5.8AI score0.00013EPSS

Exploits0References6

SUSE CVE•added 2026/05/22 2:19 a.m.•5 views

SUSE CVE-2026-44071

Netatalk 3.1.2 through 4.4.2 is compiled without FORTIFYSOURCE, which disables built-in buffer overflow detection at runtime, potentially allowing a remote attacker to cause a minor denial of service via memory errors that would otherwise be caught and safely terminated by runtime protection...

RedhatCVE•added 2026/05/21 1:5 p.m.•9 views

Exploits0References3

CVE-2026-44071

A flaw was found in Netatalk. This issue arises because the software is compiled without FORTIFYSOURCE, a security feature that provides built-in buffer overflow detection at runtime. A remote attacker could exploit this by triggering memory errors that would otherwise be safely handled, leading ...

3.7CVSS5.9AI score0.00163EPSS

NVD•added 2026/05/21 9:16 a.m.•9 views

CVE-2026-44071

3.7CVSS0.00163EPSS

Vulnrichment•added 2026/05/21 8:14 a.m.•5 views

CVE-2026-44071 FORTIFY_SOURCE disabled

EUVD•added 2026/05/21 8:14 a.m.•6 views

EUVD-2026-31241

AlpineLinux•added 2026/05/21 8:14 a.m.•4 views

CVE-2026-44071

ATTACKERKB•added 2026/05/21 8:14 a.m.•3 views

Exploits0

CVE-2026-44071

Exploits0References2Affected Software1

Cvelist•added 2026/05/21 8:14 a.m.•31 views

CVE-2026-44071 FORTIFY_SOURCE disabled

3.7CVSS0.00163EPSS

CVE•added 2026/05/21 8:14 a.m.•11 views

CVE-2026-44071

Netatalk versions 3.1.2 through 4.4.2 are compiled without FORTIFY_SOURCE, disabling built-in runtime buffer overflow detection. This may allow a remote attacker to cause a minor denial of service via memory errors that would otherwise be detected and terminated. No exploit details or patched ver...

CNNVD•added 2026/05/21 12:0 a.m.•4 views

Netatalk 安全漏洞

Netatalk is an open-source software developed by Netatalk. It provides AFP file server functionality for Classic Mac OS and macOS on Unix-like operating systems. Versions 3.1.2 to 4.4.2 of Netatalk contain security vulnerabilities. These vulnerabilities stem from the lack of FORTIFYSOURCE...

Positive Technologies•added 2026/05/21 12:0 a.m.•8 views

PT-2026-42436

Netatalk 3.1.2 through 4.4.2 is compiled without FORTIFY SOURCE, which disables built-in buffer overflow detection at runtime, potentially allowing a remote attacker to cause a minor denial of service via memory errors that would otherwise be caught and safely terminated by runtime protection...

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в linux-5.15

In the Linux kernel, the following vulnerability has been resolved: ovl: Use the “buf” flexible array as the destination for memcpy. The “buf” flexible array must be used as the destination for memcpy to avoid false positive run-time warnings from the recent FORTIFYSOURCE hardening measures:...

5.5CVSS5.8AI score0.00016EPSS