CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

AstraLinux•added 2026/05/03 11:59 p.m.•3 views

Astra Linux - уязвимость в grub2

A flaw was discovered in grub2. When reading data from a jfs filesystem, grub’s jfs filesystem module uses user-controlled parameters from the filesystem geometry to determine the internal buffer size. However, it improperly checks for integer overflows. A maliciously crafted filesystem may cause...

6.4CVSS7.2AI score0.00091EPSS

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux - уязвимость в binutils

A issue was discovered in the Binary File Descriptor BFD library also known as libbfd, as distributed in GNU Binutils 2.32. It is an integer overflow that leads to a segmentation fault in bfddwarf2findnearestline in dwarf2.c, as demonstrated by the nm tool...

6.5CVSS6.8AI score0.00741EPSS

AstraLinux•added 2026/05/03 11:59 p.m.•3 views

Astra Linux - уязвимость в chromium

Integer overflow in ANGLE in Google Chrome prior to version 146.0.7680.153 allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: Medium...

8.8CVSS5.9AI score0.00042EPSS

OSV•added 2026/05/03 9:57 a.m.•3 views

OESA-2026-2181 OpenEXR security update

OpenEXR is a high dynamic-range HDR image file format originally developed by Industrial Light Magic for use in computer imaging applications. Security Fixes: OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture...

8.4CVSS5.9AI score0.00033EPSS

OSV•added 2026/05/03 9:56 a.m.•1 views

OESA-2026-2165 opencryptoki security update

openCryptoki is an implementation of the PKCS 11 API that allows interfacing to devices that hold cryptographic information and perform cryptographic functions. openCryptoki provides application portability by isolating the application from the details of the cryptographic device. Isolating the...

6.8CVSS6AI score0.00019EPSS

OSV•added 2026/05/03 9:56 a.m.•4 views

OESA-2026-2164 opencryptoki security update

6.8CVSS6AI score0.00019EPSS

OSV•added 2026/05/03 9:56 a.m.•4 views

OESA-2026-2163 opencryptoki security update

6.8CVSS6AI score0.00019EPSS

OSV•added 2026/05/03 9:55 a.m.•5 views

OESA-2026-2143 xorg-x11-server-xwayland security update

Xwayland is an X server for running X clients under Wayland. %package devel Summary: Development package Requires: pkgconfig %description devel The development package provides the developmental files which are necessary for developing Wayland compositors using Xwayland. %prep %autosetup -n...

7.3CVSS7.1AI score0.00267EPSS

OSV•added 2026/05/03 9:55 a.m.•3 views

OESA-2026-2142 xorg-x11-server-xwayland security update

7.3CVSS7.1AI score0.00267EPSS

OSV•added 2026/05/03 9:55 a.m.•3 views

OESA-2026-2128 lcms2 security update

LittleCMS intends to be an OPEN SOURSE small-footprint color management engine,with special focus on accuracy and performence.It uses the International Color Consortium standard ICC, which is the modern standard when regarding to color management. The ICC specification is widely used and is...

7.5CVSS5.8AI score0.00045EPSS

Microsoft CVE•added 2026/05/03 8:1 a.m.•3 views

libssh2 userauth.c userauth_password integer overflow

...

7.5CVSS5.8AI score0.00075EPSS

Exploits0

OSV•added 2026/05/02 12:0 p.m.•1 views

RUSTSEC-2026-0127 Integer overflow in `array::ReadWrite::new()` leading to potential memory corruption

In array::ReadWrite::new line 83 of accessor/src/array.rs, let bytes = mem::sizeof:: len can overflow usize when len is very large. In release mode, this silently wraps, potentially making bytes = 0. The mapper then maps with 0 bytes, and subsequent accesses e.g. readvolatileat lead to undefined...

5.9AI score

RustSec•added 2026/05/02 12:0 p.m.•7 views

Integer overflow in `array::ReadWrite::new()` leading to potential memory corruption

5.9AI score

Exploits0

Microsoft CVE•added 2026/05/02 8:1 a.m.•4 views

FRRouting < 10.5.3 Integer Overflow in OSPF TLV Parser Functions

...

6.5CVSS5.8AI score0.0002EPSS

Exploits0

SUSE CVE•added 2026/05/02 1:25 a.m.•2 views

SUSE CVE-2026-31707

In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate response sizes in ipcvalidatemsg ipcvalidatemsg computes the expected message size for each response type by adding or multiplying attacker-controlled fields from the daemon response to a fixed struct size in...

7.1CVSS5.8AI score0.00015EPSS

Tenable Nessus•added 2026/05/02 12:0 a.m.•1 views

AlmaLinux 10 : libtiff (ALSA-2026:12265)

The remote AlmaLinux 10 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2026:12265 advisory. libtiff: libtiff: Arbitrary code execution or denial of service via signed integer overflow in TIFF file processing CVE-2026-4775 Tenable has extracted the...

7.8CVSS7.6AI score0.00033EPSS

Tenable Nessus•added 2026/05/02 12:0 a.m.•5 views

RockyLinux 10 : libtiff (RLSA-2026:12265)

The remote RockyLinux 10 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2026:12265 advisory. libtiff: libtiff: Arbitrary code execution or denial of service via signed integer overflow in TIFF file processing CVE-2026-4775 Tenable has extracted the...

7.8CVSS6.3AI score0.00033EPSS