CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

43 matches found

OSV•added 2026/05/20 3:27 p.m.•4 views

CLSA-2026-1779290839 giflib: Fix of CVE-2026-26740

CVE-2026-26740: fix heap OOB write when rewriting truncated GCE in EGifGCBToSavedExtension...

8.2CVSS5.8AI score0.00215EPSS

Exploits1References1

RedHat Linux•added 2026/04/22 5:51 p.m.•3 views

giflib: giflib: Denial of Service via buffer overflow in EGifGCBToExtension

A flaw was found in giflib. A remote attacker can exploit a buffer overflow vulnerability in the EGifGCBToExtension function by providing a specially crafted Graphics Control Extension GCE block. This allows overwriting an existing GCE block without proper size validation, leading to a denial of...

8.2CVSS6.1AI score0.00215EPSS

Exploits1References5

OSV•added 2026/03/24 9:27 a.m.•0 views

SUSE-SU-2026:20822-1 Security update for systemd

This update for systemd fixes the following issues: Security issues: - CVE-2026-4105: privilege escalation due to improper access control in RegisterMachine D-Bus method bsc1259650. - CVE-2026-29111: local unprivileged user can trigger an assert in systemd bsc1259418. - udev: check for invalid...

6.7CVSS5.9AI score0.00026EPSS

Exploits0References9

RedhatCVE•added 2026/03/18 8:49 p.m.•2 views

CVE-2026-26740

8.2CVSS5.9AI score0.00215EPSS

Exploits1References4

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2021-17399

Malware in sbrugna...

9.8CVSS9.4AI score0.00607EPSS

Exploits1References3

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-2699

Malicious code in bioql PyPI...

8.8CVSS8.3AI score0.00095EPSS

Exploits0References4

RedhatCVE•added 2025/05/22 5:11 p.m.•5 views

CVE-2020-8903

A vulnerability in Google Cloud Platform's guest-oslogin versions between 20190304 and 20200507 allows a user that is only granted the role "roles/compute.osLogin" to escalate privileges to root. Using their membership to the "adm" group, users with this role are able to read the DHCP XID from th...

7.8CVSS6.5AI score0.00092EPSS

Exploits1References1

Github Security Blog•added 2024/01/31 12:21 a.m.•39 views

HashiCorp Vault Authentication bypass

HashiCorp Vault and Vault Enterprise versions 0.8.3 and newer, when configured with the GCP GCE auth method, may be vulnerable to authentication bypass. Fixed in 1.2.5, 1.3.8, 1.4.4, and 1.5.1...

8.2CVSS6.8AI score0.00866EPSS

Exploits0References5Affected Software1

OSV•added 2024/01/31 12:21 a.m.•24 views

GHSA-4MP7-2M29-GQXF HashiCorp Vault Authentication bypass

HashiCorp Vault and Vault Enterprise versions 0.8.3 and newer, when configured with the GCP GCE auth method, may be vulnerable to authentication bypass. Fixed in 1.2.5, 1.3.8, 1.4.4, and 1.5.1...

8.2CVSS8.1AI score0.00866EPSS

Exploits0References5

OSV•added 2023/10/12 12:30 a.m.•14 views

GHSA-8GWJ-M6VH-2G6J kOps privilege escalation vulnerability