CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4762 matches found

RedhatCVE•added 2026/06/10 9:0 p.m.•7 views

CVE-2026-42980

Integer underflow wrap or wraparound in Windows NT OS Kernel allows an authorized attacker to elevate privileges locally...

7.8CVSS5.4AI score0.05659EPSS

Exploits0References1

RedhatCVE•added 2026/06/10 9:0 p.m.•8 views

CVE-2026-42916

Integer underflow wrap or wraparound in Windows NT OS Kernel allows an authorized attacker to elevate privileges locally...

7.8CVSS5.4AI score0.00326EPSS

Exploits0References1

Cvelist•added 2026/06/10 8:32 p.m.•29 views

CVE-2026-42542 TDengine has an integer underflow in uvConnMayGetUserInfo() allows unauthenticated remote crash (DoS)

TDengine is an open source, time-series database optimized for Internet of Things devices. In versions 3.4.0.0 through 3.4.1.5, an unauthenticated remote attacker can crash the taosd server process by sending a single crafted RPC packet. No credentials or prior session state are required. Version...

7.5CVSS0.00539EPSS

Exploits1References2

CVE•added 2026/06/10 8:32 p.m.•33 views

CVE-2026-42542

CVE-2026-42542 affects TDengine versions 3.4.0.0–3.4.1.5. An unauthenticated remote attacker can cause a denial of service by sending a single crafted RPC packet, triggering an integer underflow in uvConnMayGetUserInfo() and crashing the taosd server. Impact is limited to availability (A) with ne...

7.5CVSS5.5AI score0.00539EPSS

Exploits1References2Affected Software1

OSV•added 2026/06/09 8:16 p.m.•4 views

UBUNTU-CVE-2026-11824

SQLite before 3.53.2 contains a heap-based buffer overflow vulnerability in the FTS5 full-text search extension that allows attackers to cause a crash or execute arbitrary code by supplying a crafted database with malicious continuation page metadata specifying a szLeaf value smaller than 4...

8.5CVSS6.3AI score0.00175EPSS

Exploits0References4

CVE•added 2026/06/09 7:21 p.m.•44 views

CVE-2026-11824

Summary: CVE-2026-11824 affects SQLite before 3.53.2 via the FTS5 full‑text search extension. A crafted database can trigger a heap‑based buffer overflow by manipulating continuation page metadata (szLeaf value

8.5CVSS6.2AI score0.00175EPSS

Exploits0References4Affected Software1

Cvelist•added 2026/06/09 7:21 p.m.•41 views

CVE-2026-11824 SQLite before 3.53.2 Heap Buffer Overflow via FTS5 fts5ChunkIterate

8.5CVSS0.00175EPSS

Exploits0References4

Vulnrichment•added 2026/06/09 7:21 p.m.•7 views

CVE-2026-11824 SQLite before 3.53.2 Heap Buffer Overflow via FTS5 fts5ChunkIterate

8.5CVSS6.2AI score0.00175EPSS

Exploits0References4

Debian CVE•added 2026/06/09 7:21 p.m.•5 views

CVE-2026-11824

8.5CVSS6.2AI score0.00175EPSS

Exploits0

AlpineLinux•added 2026/06/09 7:21 p.m.•6 views

CVE-2026-11824

8.5CVSS6.2AI score0.00175EPSS

Exploits0References4

Cvelist•added 2026/06/09 7:8 p.m.•37 views

CVE-2026-11822 SQLite before 3.53.2 Memory Corruption in FTS5 Extension

SQLite before 3.53.2 contains memory corruption vulnerabilities in the FTS5 full-text search extension that allow attackers to cause process crashes, memory exhaustion, or arbitrary code execution by supplying a crafted database with malformed FTS5 page data. Attackers can trigger an out-of-bound...

8.5CVSS0.00175EPSS

Exploits0References4