CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

29576 matches found

Tenable Nessus•added 2026/05/02 12:0 a.m.•1 views

Fedora 44 : GitPython (2026-9342da13e0)

The remote Fedora 44 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2026-9342da13e0 advisory. Fixes security defects GHSA-rpm5-65cw-6hj4, GHSA-x2qx-6953-8485, GHSA-7545-fcxq-7j24, and GHSA-v87r-6q3f-2j67. Tenable has extracted the preceding descriptio...

5.8AI score

Exploits0References1

OSSF Malicious Packages•added 2026/05/01 9:44 p.m.•5 views

Malicious code in graphicsctxs (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 4786ca298bffb09916e622e06411ae44cb51c842a6eb9bf7bcf445c051463888 Packages in this campaign are used to exfiltrate data from users installing code from prepared Github repositories. Packages contain code to exfiltrate files...

5.8AI score

Exploits0References4

Circl•added 2026/05/01 8:44 p.m.•6 views

CVE-2026-44003

creationtimestamp| type| source ---|---|--- 2026-05-01 20:44:52+00:00| published-proof-of-concept| https://github.com/patriksimek/vm2/security/advisories/GHSA-wp5r-2gw5-m7q7...

5.8CVSS5.8AI score0.00248EPSS

Exploits1References1

Circl•added 2026/05/01 8:44 p.m.•6 views

CVE-2026-44002

creationtimestamp| type| source ---|---|--- 2026-05-01 20:44:37+00:00| published-proof-of-concept| https://github.com/patriksimek/vm2/security/advisories/GHSA-v27g-jcqj-v8rw...

5.8CVSS5.8AI score0.00241EPSS

Exploits1References1

Circl•added 2026/05/01 8:43 p.m.•5 views

CVE-2026-44004

creationtimestamp| type| source ---|---|--- 2026-05-01 20:43:52+00:00| published-proof-of-concept| https://github.com/patriksimek/vm2/security/advisories/GHSA-6785-pvv7-mvg7...

7.5CVSS5.8AI score0.0032EPSS

Exploits1References1

Circl•added 2026/05/01 8:42 p.m.•6 views

CVE-2026-44005

creationtimestamp| type| source ---|---|--- 2026-05-01 20:42:00+00:00| published-proof-of-concept| https://github.com/patriksimek/vm2/security/advisories/GHSA-vwrp-x96c-mhwq...

10CVSS6AI score0.00562EPSS

Exploits1References1

Chainguard•added 2026/05/01 7:17 p.m.•5 views

GHSA-5GVM-8X7G-H7XX vulnerabilities

Vulnerabilities for packages: linux-gcp, linux-azure, linux-aws, linux-qemu, linux-vmware...

5.8AI score

Exploits0

Chainguard•added 2026/05/01 7:17 p.m.•4 views

GHSA-FCFJ-3H7Q-75MQ vulnerabilities

Vulnerabilities for packages: linux-gcp, linux-azure, linux-aws, linux-qemu, linux-vmware...

5.8AI score

Exploits0

Chainguard•added 2026/05/01 7:17 p.m.•4 views

GHSA-V898-XG3C-W4RJ vulnerabilities

Vulnerabilities for packages: glibc...

5.8AI score

Exploits0

Circl•added 2026/05/01 3:17 p.m.•4 views

CVE-2026-44426

creationtimestamp| type| source ---|---|--- 2026-05-01 15:17:47+00:00| published-proof-of-concept| https://github.com/shellhub-io/shellhub/security/advisories/GHSA-vwx9-7qcf-gg7f...

6.5CVSS5.8AI score0.00308EPSS

Exploits1References1

Circl•added 2026/05/01 2:27 p.m.•6 views

CVE-2026-41888

creationtimestamp| type| source ---|---|--- 2026-05-01 14:27:56+00:00| published-proof-of-concept| https://github.com/distribution/distribution/security/advisories/GHSA-6pjf-3r9x-m592...

6.5CVSS5.8AI score0.00294EPSS

Exploits1References1

The Hacker News•added 2026/05/01 9:43 a.m.•7 views

Poisoned Ruby Gems and Go Modules Exploit CI Pipelines for Credential Theft

A new software supply chain attack campaign has been observed using sleeper packages as a conduit to subsequently push malicious payloads that enabled credential theft, GitHub Actions tampering, and SSH persistence. The activity has been attributed to the GitHub account "BufferZoneCorp ," which h...

5.8AI score

Exploits0

Circl•added 2026/05/01 6:10 a.m.•0 views

GHSA-MQQ7-WXX5-MP8H

creationtimestamp| type| source ---|---|--- 2026-05-01 06:10:28+00:00| seen| https://gist.github.com/alon710/63a0b9d45c1b8aff3ea39f384d9c8809...

5.8AI score

Exploits0References1

Circl•added 2026/05/01 5:46 a.m.•13 views

CVE-2026-40893

creationtimestamp| type| source ---|---|--- 2026-05-01 05:46:38+00:00| published-proof-of-concept| https://github.com/gotenberg/gotenberg/security/advisories/GHSA-62p3-hvxx-fxg4...

8.2CVSS5.8AI score0.00347EPSS

Exploits1References1

Circl•added 2026/05/01 3:40 a.m.•4 views

CVE-2026-44312

creationtimestamp| type| source ---|---|--- 2026-05-01 03:40:10+00:00| published-proof-of-concept| https://github.com/premailer/cssparser/security/advisories/GHSA-ff6c-w6qf-7xqc...

5.8CVSS5.8AI score0.00146EPSS

Exploits0References1

Wolfi•added 2026/05/01 1:48 a.m.•9 views

GHSA-48WR-P98V-9W5H vulnerabilities

Vulnerabilities for packages: ffmpeg...

5.2AI score

Exploits0

Wolfi•added 2026/05/01 1:48 a.m.•7 views

GHSA-4WRG-8WPC-H923 vulnerabilities

Vulnerabilities for packages: apache-nifi-registry, apache-nifi...

5.2AI score

Exploits0

Tenable Nessus•added 2026/05/01 12:0 a.m.•4 views

GitHub Enterprise 3.x < 3.14.25 / 3.15.x < 3.15.20 / 3.16.x < 3.16.16 / 3.17.x < 3.17.13 / 3.18.x < 3.18.7 / 3.19.x < 3.19.4 RCE (CVE-2026-3854)

The version of GitHub Enterprise installed on the remote host is affected by a remote code execution vulnerability: - An improper neutralization of special elements vulnerability was identified in GitHub Enterprise Server that allowed an attacker with push access to a repository to achieve remote...

8.8CVSS6.7AI score0.09884EPSS

Exploits5References8

Circl•added 2026/04/30 11:0 p.m.•2 views

CVE-2026-3143

creationtimestamp| type| source ---|---|--- 2026-04-30 23:00:04+00:00| seen| https://t.me/GithubRedTeam/82241 2026-04-30 23:00:10+00:00| seen| Telegram/P45NJHmymloXtZIQDhqedqgrJijkJmCthR1UJzeSteIHM 2026-05-07 20:00:04+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/83256 2026-05-08...

5.3CVSS5.7AI score0.00257EPSS

Exploits1References3

Chainguard•added 2026/04/30 7:17 p.m.•4 views

GHSA-V4P8-MG3P-G94G vulnerabilities

Vulnerabilities for packages: litellm...

5.2AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by