CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNNVD•added 2026/01/05 12:0 a.m.•2 views

Silicon Labs Z-Wave Protocol Controller 安全漏洞

Silicon Labs Z-Wave Protocol Controller is an IoT gateway middleware from Silicon Labs, USA. A security vulnerability exists in Silicon Labs Z-Wave Protocol Controller that originates from an integer underflow that could result in an out-of-bounds memory read...

5.3CVSS6.8AI score0.00101EPSS

Exploits0References2

NVD•added 2026/01/02 4:17 p.m.•2 views

CVE-2025-67269

An integer underflow vulnerability exists in the nextstate function in gpsd/packet.c of gpsd versions prior to commit ffa1d6f40bca0b035fc7f5e563160ebb67199da7. When parsing a NAVCOM packet, the payload length is calculated using lexer-length = sizetc - 4 without checking if the input byte c is le...

7.5CVSS0.00212EPSS

Exploits2References3

UbuntuCve•added 2026/01/02 4:17 p.m.•2 views

CVE-2025-67269

7.5CVSS5.9AI score0.00212EPSS

Exploits2References3

CNNVD•added 2026/01/02 12:0 a.m.•3 views

gpsd 安全漏洞

gpsd is a daemon program for receiving GPS data. A security vulnerability exists in gpsd that stems from an integer underflow in the nextstate function, which could lead to 100% CPU utilization and a denial of service...

7.5CVSS6.3AI score0.00212EPSS

Exploits2References4

Debian CVE•added 2026/01/02 12:0 a.m.•4 views

CVE-2025-67269

7.5CVSS5.4AI score0.00212EPSS

Exploits2

Positive Technologies•added 2026/01/01 12:0 a.m.•3 views

PT-2026-23770

Name of the Vulnerable Software and Affected Versions GStreamer affected versions not specified Description This issue allows remote attackers to execute arbitrary code on affected installations of GStreamer. Interaction with the library is required for exploitation, and attack vectors may vary...

7.8CVSS7.5AI score0.00086EPSS

Exploits0References13

Positive Technologies•added 2026/01/01 12:0 a.m.•1 views

PT-2026-25617

Name of the Vulnerable Software and Affected Versions libexif versions through 0.6.25 Description The software contains a flaw in decoding MakerNotes. Specifically, an integer underflow occurs within the exif mnote data get value function when it receives a size of 0, leading to a buffer overwrit...

7.8CVSS6AI score0.00008EPSS

Exploits1References21

Positive Technologies•added 2026/01/01 12:0 a.m.•3 views

PT-2026-25334

Name of the Vulnerable Software and Affected Versions FreeRDP versions prior to 3.24.0 Description FreeRDP is a free implementation of the Remote Desktop Protocol. An integer underflow exists in the update read cache bitmap order function within FreeRDP's Core Library. Recommendations Update to...

9.8CVSS5.8AI score0.00164EPSS

Exploits17References31

Positive Technologies•added 2026/01/01 12:0 a.m.•2 views

PT-2026-21477

A flaw was found in libsoup. An integer underflow vulnerability occurs when processing content with a zero-length resource, leading to a buffer overread. This can allow an attacker to potentially access sensitive information or cause an application level denial of service...

8.6CVSS6.8AI score0.01262EPSS

Exploits4References62

Tenable Nessus•added 2025/12/31 12:0 a.m.•1 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-992850)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992850 advisory. In the Linux kernel, the following vulnerability has been resolved: netfilter: ipset: add the missing IPSETHASHWITHNET0 macro for ipsethashnetportnet.c The missing...

7.8CVSS5.8AI score0.00023EPSS

Tenable Nessus•added 2025/12/31 12:0 a.m.•2 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-992801)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992801 advisory. In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: Fix OOB and integer underflow when rx packets Make sure mwifiexprocessmgmtpacket,...

5.5CVSS6.5AI score0.00022EPSS

Tenable Nessus•added 2025/12/30 12:0 a.m.•2 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-992168)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992168 advisory. In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: Fix OOB and integer underflow when rx packets Make sure mwifiexprocessmgmtpacket,...

5.5CVSS6.5AI score0.00022EPSS

RedHat Linux•added 2025/12/22 1:58 a.m.•5 views

webkit: WebKitGTK / WPE WebKit: Out-of-bounds read and integer underflow vulnerability leading to DoS

A flaw was found in WebKitGTK and WPE WebKit. This vulnerability allows an out-of-bounds read and integer underflow, leading to a UIProcess crash DoS via a crafted payload to the GLib remote inspector server...

RedHat Linux•added 2025/12/22 1:45 a.m.•2 views

webkit: WebKitGTK / WPE WebKit: Out-of-bounds read and integer underflow vulnerability leading to DoS

RedhatCVE•added 2025/12/19 12:41 a.m.•5 views

CVE-2025-65562

The free5GC UPF suffers from a lack of bounds checking on the SEID when processing PFCP Session Deletion Requests. An unauthenticated remote attacker can send a request with a very large SEID e.g., 0xFFFFFFFFFFFFFFFF that causes an integer conversion/underflow in LocalNode.DeleteSess /...

7.5CVSS7.1AI score0.00434EPSS

Exploits1References1

RedHat Linux•added 2025/12/18 9:30 a.m.•2 views

webkit: WebKitGTK / WPE WebKit: Out-of-bounds read and integer underflow vulnerability leading to DoS

RedHat Linux•added 2025/12/18 9:21 a.m.•1 views

webkit: WebKitGTK / WPE WebKit: Out-of-bounds read and integer underflow vulnerability leading to DoS