CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNNVD•added 2026/06/09 12:0 a.m.•10 views

Microsoft Office Excel 缓冲区错误漏洞

Microsoft Office Excel is a spreadsheet software developed by Microsoft in the United States. Microsoft Office Excel has a buffer error vulnerability, which stems from integer underflow. This vulnerability may allow unauthorized attackers to execute code locally...

7.8CVSS5.9AI score0.00372EPSS

CNNVD•added 2026/06/09 12:0 a.m.•9 views

Microsoft Office Excel 安全漏洞

7.8CVSS5.5AI score0.00372EPSS

CNNVD•added 2026/06/09 12:0 a.m.•9 views

Microsoft Office Excel 安全漏洞

Microsoft Office Excel is a spreadsheet software developed by Microsoft. There is a security vulnerability in Microsoft Office Excel, which stems from integer underflow, potentially allowing unauthorized attackers to execute code locally...

7.8CVSS5.5AI score0.00372EPSS

CNNVD•added 2026/06/09 12:0 a.m.•8 views

Microsoft Office Excel 竞争条件问题漏洞

Microsoft Office Excel is a spreadsheet software developed by Microsoft in the United States. There is a vulnerability known as a “race condition issue” in Microsoft Office Excel. This vulnerability stems from integer underflow, which may allow unauthorized attackers to execute code locally...

7CVSS5.6AI score0.00263EPSS

Zero Day Initiative•added 2026/06/09 12:0 a.m.•8 views

X.Org Server XkbSetCompatMap Integer Underflow Privilege Escalation Vulnerability

This vulnerability allows local attackers to escalate privileges on affected installations of X.Org Server. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the handling of...

7.8CVSS5.8AI score0.0038EPSS

Tenable Nessus•added 2026/06/09 12:0 a.m.•7 views

RHEL 9 : krb5 (RHSA-2026:24683)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2026:24683 advisory. Kerberos is a network authentication system, which can improve the security of your network by eliminating the insecure practice of sending password...

5.9CVSS5.6AI score0.0046EPSS

RedHat Linux•added 2026/06/08 3:17 a.m.•75 views

frr: denial of service via crafted BGP UPDATE message

A flaw was found in FRRouting FRR. An unauthenticated remote attacker can exploit an integer underflow vulnerability by supplying a specially crafted BGP Border Gateway Protocol UPDATE message. This issue can lead to a Denial of Service DoS...

7.5CVSS5.5AI score0.00263EPSS

Exploits0References5

RedHat Linux•added 2026/06/08 2:7 a.m.•9 views

xorg: xwayland: X.Org X server: Denial of Service via integer underflow in XKB compatibility map handling

A flaw was found in the X.Org X server. This integer underflow vulnerability, specifically in the XKB compatibility map handling, allows an attacker with local or remote X11 server access to trigger a buffer read overrun. This can lead to memory-safety violations and potentially a denial of servi...

7.8CVSS5.7AI score0.0038EPSS

Vulnrichment•added 2026/06/07 12:8 p.m.•8 views

CVE-2026-49494 Xcitium Client Security / Comodo Internet Security Remote Denial of Service

Xcitium Client Security XCS before 13.8.2.10019 and Comodo Internet Security CIS through 12.3.4.8162 fix expected by 2026 Q3 contain an integer underflow vulnerability in the firewall driver Inspect.sys that allows remote unauthenticated attackers to crash the system by sending a crafted IPv6...

8.7CVSS6.2AI score0.00536EPSS

Cvelist•added 2026/06/07 12:8 p.m.•46 views

CVE-2026-49494 Xcitium Client Security / Comodo Internet Security Remote Denial of Service

8.7CVSS0.00536EPSS

CNNVD•added 2026/06/07 12:0 a.m.•8 views

Comodo Internet Security 数字错误漏洞

Comodo Internet Security is a set of computer security software developed by the American company Comodo, primarily aimed at internet security. Comodo Internet Security has a digital error vulnerability; this vulnerability stems from an integer underflow in the IPv6 packet resolver within the...

8.7CVSS5.8AI score0.00536EPSS

Exploits0References3

RedhatCVE•added 2026/06/06 6:42 a.m.•12 views

CVE-2026-50593

Graphite before 1.3.15 has an integer underflow and resultant out-of-bounds write via Graphite actions, because slotat does not ensure that an offset is within the allowed slot-map range...

7.3CVSS5.5AI score0.00112EPSS

SUSE CVE•added 2026/06/06 2:45 a.m.•6 views

SUSE CVE-2026-50593

Graphite before 1.3.15 has an integer underflow and resultant out-of-bounds write via Graphite actions, because slotat does not ensure that an offset is within the allowed slot-map range...

7.1CVSS5.5AI score0.00112EPSS

Exploits0References8

RedhatCVE•added 2026/06/05 7:58 p.m.•12 views

CVE-2026-5589

An integer underflow in btmeshsolrecv in the Bluetooth Mesh solicitation handling subsys/bluetooth/mesh/solicitation.c leads to an out-of-bounds write. When CONFIGBTMESHODPRIVPROXYSRV is enabled, the function parses solicitation PDUs from raw BLE advertising payloads. The AD parsing loop reads an...

6.3CVSS5.9AI score0.00218EPSS