CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

SUSE CVE•added 2026/04/20 11:26 p.m.•3 views

SUSE CVE-2026-33516

xrdp is an open source RDP server. Versions through 0.10.5 contain an out-of-bounds read vulnerability during the RDP capability exchange phase. The issue occurs when memory is accessed before validating the remaining buffer length. A remote, unauthenticated attacker can trigger this vulnerabilit...

9.1CVSS5.8AI score0.00427EPSS

Vulnrichment•added 2026/04/20 11:8 p.m.•2 views

CVE-2026-41295 OpenClaw < 2026.4.2 - Untrusted Workspace Channel Shadow Code Execution during Built-in Channel Setup

OpenClaw before 2026.4.2 contains an improper trust boundary vulnerability allowing untrusted workspace channel shadows to execute during built-in channel setup and login. Attackers can clone a workspace with a malicious plugin claiming a bundled channel id to achieve unintended in-process code...

8.5CVSS6.3AI score0.00133EPSS

RedhatCVE•added 2026/04/20 7:23 p.m.•4 views

CVE-2026-41253

In iTerm2 through 3.6.9, displaying a .txt file can cause code execution via DCS 2000p and OSC 135 data, if the working directory contains a malicious file whose name is valid output from the conductor encoding path, such as a pathname with an initial ace/c+ substring, aka "hypothetical in-band...

7.8CVSS6.2AI score0.00199EPSS

RedhatCVE•added 2026/04/20 7:22 p.m.•1 views

CVE-2026-40317

NovumOS is a custom 32-bit operating system written in Zig and x86 Assembly. In versions prior to 0.24, Syscall 12 JumpToUser accepts an arbitrary entry point address from user-space registers without validation, allowing any Ring 3 user-mode process to jump to kernel addresses and execute...

9.3CVSS6AI score0.00225EPSS

RedHat Linux•added 2026/04/20 6:53 p.m.•7 views

net/url: Incorrect parsing of IPv6 host literals in net/url

The Go standard library function net/url.Parse insufficiently validated the host/authority component and accepted some invalid URLs by effectively treating garbage before an IP-literal as ignorable. The function should have rejected this as invalid...

7.5CVSS7.4AI score0.0052EPSS

Exploits0References8

OSV•added 2026/04/20 6:28 p.m.•2 views

OPENSUSE-SU-2026:20589-1 Security update for tor

This update for tor fixes the following issues: Changes in tor: - update to 0.4.8.23: Fix a memory compare using the wrong length. This could lead to a remote crash when using the conflux subsystem TROVE-2026-004, boo1262302 Fix a series of defense in depth security issues found across the codeba...

5.8AI score

Exploits0References2

EUVD•added 2026/04/20 12:32 p.m.•1 views

EUVD-2026-23834

NVD•added 2026/04/20 12:16 p.m.•2 views

CVE-2026-5958

2.1CVSS0.00142EPSS

CISA•added 2026/04/20 12:0 p.m.•8 views

CISA Adds Eight Known Exploited Vulnerabilities to Catalog

CISA has added eight new vulnerabilities to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2023-27351link is external PaperCut NG/MF Improper Authentication Vulnerability CVE-2024-27199link is external JetBrains TeamCity Relative Path Traversal...

8.2CVSS5.8AI score0.99991EPSS

In wildExploits12References13

CVE•added 2026/04/20 11:59 a.m.•69 views

CVE-2026-5958

The CVE concerns GNU sed. When sed is invoked with both -i (in-place edit) and --follow-symlinks, open_next_file() performs two non-atomic operations on the same path: (1) resolve the symlink to its target and store the resolved path, and (2) open the original symlink path to read the file. A rac...

ATTACKERKB•added 2026/04/20 11:59 a.m.•1 views

CVE-2026-5958

Exploits0References3Affected Software1

Vulnrichment•added 2026/04/20 11:59 a.m.•1 views

CVE-2026-5958 Race Condition in GNU Sed

Cvelist•added 2026/04/20 11:59 a.m.•32 views

Exploits0References2

CVE-2026-5958 Race Condition in GNU Sed

2.1CVSS0.00142EPSS

Exploits0References2

Debian CVE•added 2026/04/20 11:59 a.m.•5 views

CVE-2026-5958

2.1CVSS5.6AI score0.00142EPSS

Exploits0

Cvelist•added 2026/04/20 10:5 a.m.•29 views

CVE-2026-6654 Use-After-Free and Double-Free in IntoIter::drop when element drop panics

Double-Free / Use-After-Free UAF in the IntoIter::drop and ThinVec::clear functions in the thinvec crate. A panic in ptr::dropinplace skips setting the length to zero...

0.00139EPSS

EUVD•added 2026/04/20 10:5 a.m.•4 views

EUVD-2026-23832

Double-Free / Use-After-Free UAF in the IntoIter::drop and ThinVec::clear functions in the thinvec crate. A panic in ptr::dropinplace skips setting the length to zero...

5.1CVSS5.8AI score0.00139EPSS

NVD•added 2026/04/20 9:16 a.m.•4 views

CVE-2026-6619

A vulnerability has been found in langgenius dify up to 1.13.3. Impacted is the function openInNewTab of the file web/app/components/base/image-uploader/image-preview.tsx of the component ImagePreview. The manipulation of the argument filename leads to cross site scripting. The attack may be...

5.1CVSS0.00206EPSS

Exploits0References4

Vulnrichment•added 2026/04/20 9:0 a.m.•3 views

CVE-2025-13480 Incorrect authorization in Fudo Enterprise

Fudo Enterprise in versions from 5.5.0 through 5.6.2 allows low privileged users to access certain administrator-only resources via improperly protected API endpoints. This includes sensitive information such as system logs and parts of system configuration settings. This vulnerability has been...

5.1CVSS5.7AI score0.00257EPSS