CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

699 matches found

EUVD•added 2026/05/27 9:53 p.m.•5 views

EUVD-2026-32673

Microsoft UFO open-source framework for intelligent automation across devices and platforms. In 3.0.1-4-ge2626659, Microsoft UFO accepts client-supplied sessionid values in WebSocket task messages and reuses an existing in-memory session object if that sessionid already exists. If a prior session...

5.3CVSS5.8AI score0.00034EPSS

Exploits0References1

The Hacker News•added 2026/05/25 9:32 a.m.•15 views

Lazarus Deploys RemotePE Memory-Only RAT Against Financial and Crypto Firms

Cybersecurity researchers have shed light on a cross-platform malware called RemotePE that has been put to use by the North Korea-linked Lazarus Group in attacks targeting financial and cryptocurrency organizations. RemotePE, per NCC Group subsidiary Fox-IT, is part of a multi-stage attack chain...

5.8AI score

Exploits0

SUSE CVE•added 2026/05/23 1:29 a.m.•7 views

SUSE CVE-2026-39833

The in-memory keyring returned by NewKeyring silently accepted keys with the ConfirmBeforeUse constraint but never enforced it. The key would sign without any confirmation prompt, with no indication to the caller that the constraint was not in effect. NewKeyring now returns an error when...

7.7CVSS5.8AI score0.00042EPSS

Exploits0References3

NVD•added 2026/05/22 4:16 a.m.•7 views

CVE-2026-39833

9.1CVSS0.00042EPSS

Exploits0References5

OSV•added 2026/05/22 4:16 a.m.•7 views

UBUNTU-CVE-2026-39833

9.1CVSS5.8AI score0.00042EPSS

Exploits0References7

ATTACKERKB•added 2026/05/22 2:31 a.m.•3 views

CVE-2026-39833

5.8AI score0.00042EPSS

Exploits0References6

Cvelist•added 2026/05/22 2:31 a.m.•30 views

CVE-2026-39833 Invoking key constraints not enforced in golang.org/x/crypto/ssh/agent

0.00042EPSS

Exploits0References5

Debian CVE•added 2026/05/22 2:31 a.m.•4 views

CVE-2026-39833

9.1CVSS5.8AI score0.00042EPSS

Exploits0

OSV•added 2026/05/22 2:8 a.m.•1 views

GO-2026-5005 Invoking key constraints not enforced in golang.org/x/crypto/ssh/agent

9.1CVSS5.8AI score0.00042EPSS

Exploits0References4

Positive Technologies•added 2026/05/22 12:0 a.m.•4 views

PT-2026-42712

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description The in-memory keyring returned by the NewKeyring function silently accepted keys with the ConfirmBeforeUse constraint but failed to enforce it. This allowed keys...

9.1CVSS5.8AI score0.00042EPSS

Exploits0References34

UbuntuCve•added 2026/05/22 12:0 a.m.•9 views

CVE-2026-39833

9.1CVSS5.8AI score0.00042EPSS

Exploits0References6

CVE•added 2026/05/20 10:50 a.m.•6 views

CVE-2026-0857

CVE-2026-0857 describes Cleartext Storage of Sensitive Information in Memory for the Mesalvo Meona Client Launcher Component (through 19.06.2020 15:11:49) and Meona Server Component (through 2025.04 5+323020). The vulnerability impacts confidentiality (HIGH) with local attack vector and no user i...

6CVSS5.8AI score0.00007EPSS

Exploits0References1

ATTACKERKB•added 2026/05/20 10:50 a.m.•3 views

CVE-2026-0857

Cleartext Storage of Sensitive Information in Memory vulnerability in Mesalvo Meona Client Launcher Component, Mesalvo Meona Server Component. This issue affects Meona Client Launcher Component: through 19.06.2020 15:11:49; Meona Server Component: through 2025.04 5+323020...

6CVSS5.8AI score0.00007EPSS

Exploits0References2

Packet Storm News•added 2026/05/19 12:0 a.m.•4 views

Taking Cryptography out of the Data Path Via Near-Memory Processing in DRAM

Cryptographic algorithms such as AES-128 and SHA-256 are fundamental to ensuring data security and integrity. Although these algorithms are computationally efficient, their performance is often constrained by the processor-centric architectures e.g., CPUs, GPUs, primarily due to the memory...

5.8AI score

Exploits0

Fedora•added 2026/05/18 1:24 a.m.•14 views

[SECURITY] Fedora 42 Update: valkey-8.0.9-1.fc42

Valkey is an advanced key-value store. It is often referred to as a data structure server since keys can contain strings, hashes, lists, sets and sorted sets. You can run atomic operations on these types, like appending to a string; incrementing the value in a hash; pushing to a list; computing s...

8.8CVSS5.8AI score0.00103EPSS

Exploits0

Fedora•added 2026/05/18 12:59 a.m.•10 views

[SECURITY] Fedora 43 Update: valkey-8.1.7-1.fc43

8.8CVSS5.8AI score0.00103EPSS

Exploits0

Fedora•added 2026/05/18 12:44 a.m.•13 views

[SECURITY] Fedora 44 Update: valkey-9.0.4-1.fc44

8.8CVSS5.8AI score0.00103EPSS

Exploits0

Packet Storm News•added 2026/05/18 12:0 a.m.•5 views

nimrm 1.2.0

nimrm is a native WinRM interactive shell client written in Nim. It's designed to be a compact and fast tool for system administration and authorized security testing. Key features include NTLM and Kerberos authentication, in-memory operations, file transfers, OPSEC awareness, and cross platform...

5.6AI score

Exploits0

GithubExploit•added 2026/05/16 2:53 p.m.•45 views

Operation-Molasses

🍯 OPERATION MOLASSES PEKMEZ Zencefil Efendi's Cyber Dow...

6AI score

Exploits0

CVE•added 2026/05/15 7:26 p.m.•7 views

CVE-2026-44564

Open WebUI (self-hosted offline AI platform) contains a vulnerability in the ydoc:document:update Socket.IO handler that allows read-only users to modify in-memory Yjs documents. The handler validates room membership but does not verify write permission, and read-only users join the document room...

5.4CVSS5.8AI score0.00042EPSS

Exploits1References1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by