CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4732 matches found

OSV•added 2026/04/28 12:0 a.m.•4 views

ALSA-2026:11369 Important: xorg-x11-server-Xwayland security update

Xwayland is an X server for running X clients under Wayland. Security Fixes: xorg: xwayland: X.Org X server: Denial of Service via integer underflow in XKB compatibility map handling CVE-2026-33999 xorg: xwayland: X.Org X server: Use-after-free vulnerability leads to server crash and potential...

7.8CVSS5.6AI score0.00005EPSS

Exploits0References8

SUSE Linux•added 2026/04/27 12:6 p.m.•2 views

Security update for freerdp

This update for freerdp fixes the following issues: CVE-2026-25941: Out-of-Bounds Read in client RDPGFX channel via crafted WIRETOSURFACE2 PDU bsc1258919. CVE-2026-25942: Global-buffer-overflow in xfrailserverexecuteresult bsc1258920. CVE-2026-25952: Heap-use-after-free in xfSetWindowMinMaxInfo...

8.2CVSS5.7AI score0.00164EPSS

Exploits13References58

SUSE Linux•added 2026/04/27 12:6 p.m.•2 views

Security update for freerdp

8.2CVSS5.7AI score0.00164EPSS

Exploits13References58

SUSE Linux•added 2026/04/27 12:5 p.m.•2 views

Security update for freerdp

8.2CVSS5.7AI score0.00164EPSS

Exploits15References70

OSV•added 2026/04/27 12:5 p.m.•3 views

SUSE-SU-2026:1633-1 Security update for freerdp

This update for freerdp fixes the following issues: - CVE-2026-25941: Out-of-Bounds Read in client RDPGFX channel via crafted WIRETOSURFACE2 PDU bsc1258919. - CVE-2026-25942: Global-buffer-overflow in xfrailserverexecuteresult bsc1258920. - CVE-2026-25952: Heap-use-after-free in...

9.8CVSS5AI score0.00164EPSS

Exploits15References35

SUSE Linux•added 2026/04/27 12:4 p.m.•3 views

Security update for freerdp

8.2CVSS5.7AI score0.00164EPSS

Exploits13References58

OSV•added 2026/04/27 12:4 p.m.•1 views

SUSE-SU-2026:1632-1 Security update for freerdp

9.8CVSS4.9AI score0.00164EPSS

Exploits13References30

RedHat Linux•added 2026/04/27 8:36 a.m.•3 views

xorg: xwayland: X.Org X server: Denial of Service via integer underflow in XKB compatibility map handling

A flaw was found in the X.Org X server. This integer underflow vulnerability, specifically in the XKB compatibility map handling, allows an attacker with local or remote X11 server access to trigger a buffer read overrun. This can lead to memory-safety violations and potentially a denial of servi...

7.8CVSS5.7AI score0.00005EPSS

Exploits0References4

Tenable Nessus•added 2026/04/27 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-31649

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: stmmac: fix integer underflow in chain mode The jumbofrm chain-mode implementation unconditionally computes len = nopagedlen - bmax; where nopagedlen =...

9.8CVSS5.8AI score0.00076EPSS

Exploits0References3

AlmaLinux•added 2026/04/27 12:0 a.m.•3 views

Important: tigervnc security update

Virtual Network Computing VNC is a remote display system which allows users to view a computing desktop environment not only on the machine where it is running, but from anywhere on the Internet and from a wide variety of machine architectures. TigerVNC is a suite of VNC servers and clients...

9.8CVSS5.7AI score0.00034EPSS

Exploits0References10

Tenable Nessus•added 2026/04/27 12:0 a.m.•3 views

Unity Linux 20.1070e Security Update: freerdp (UTSA-2026-014305)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-014305 advisory. FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, Integer Underflow in updatereadcachebitmaporder Function of FreeRDP's Core Library...

3.1CVSS4.7AI score0.00059EPSS

Exploits0References4

Microsoft CVE•added 2026/04/26 8:8 a.m.•1 views

net: stmmac: fix integer underflow in chain mode

...

9.8CVSS5.8AI score0.00076EPSS

Exploits0

SUSE CVE•added 2026/04/25 1:37 a.m.•4 views

SUSE CVE-2026-31649

In the Linux kernel, the following vulnerability has been resolved: net: stmmac: fix integer underflow in chain mode The jumbofrm chain-mode implementation unconditionally computes len = nopagedlen - bmax; where nopagedlen = skbheadlenskb linear bytes only and bmax is BUFSIZE8KiB or BUFSIZE2KiB...

7.5CVSS6.1AI score0.00076EPSS

Exploits0References23

RedhatCVE•added 2026/04/24 10:24 p.m.•2 views

CVE-2026-31662

A flaw was found in the Linux kernel's Transparent Inter-Process Communication TIPC protocol. An attacker can exploit an integer underflow vulnerability by sending duplicate group acknowledgment messages GRPACKMSG. This causes the bcackers counter to wrap around, leading to persistent network...

7.5CVSS5.4AI score0.00074EPSS

Exploits0References4

RedhatCVE•added 2026/04/24 9:50 p.m.•3 views

CVE-2026-31649

A flaw was found in the Linux kernel's stmmac network driver. An integer underflow vulnerability in the jumbofrm function, when processing specially crafted fragmented network packets, can lead to a memory disclosure and potential memory corruption. This issue allows an attacker to read arbitrary...

9.8CVSS5.5AI score0.00076EPSS

Exploits0References4

RedhatCVE•added 2026/04/24 8:16 p.m.•3 views

CVE-2026-31617

A flaw was found in the Linux kernel's USB Network Control Model NCM gadget driver. A malicious USB host could exploit an integer underflow vulnerability when processing Network Transfer Block NTB headers. This allows the host to manipulate internal data pointers, causing adjacent kernel memory t...

7CVSS5.1AI score0.00014EPSS

Exploits0References4

OSV•added 2026/04/24 3:16 p.m.•2 views

DEBIAN-CVE-2026-31649

9.8CVSS6.1AI score0.00076EPSS

Exploits0References1