CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

32 matches found

RedHat Linux•added 2026/05/19 2:41 p.m.•4 views

glibc: glibc: Invalid DNS hostname returned via gethostbyaddr functions

A flaw was found in the GNU C library glibc. When applications use the gethostbyaddr or gethostbyaddrr functions with a nsswitch.conf configuration that specifies glibc's DNS backend, the library may return an invalid DNS hostname. This violates the DNS specification and could lead to application...

5.4CVSS5.7AI score0.00066EPSS

Exploits1References5

SUSE CVE•added 2026/03/24 12:28 a.m.•2 views

SUSE CVE-2026-4438

Calling gethostbyaddr or gethostbyaddrr with a configured nsswitch.conf that specifies the library's DNS backend in the GNU C library version 2.34 to version 2.43 could result in an invalid DNS hostname being returned to the caller in violation of the DNS specification...

4.7CVSS5.9AI score0.00066EPSS

Exploits1References11

RedhatCVE•added 2026/03/23 7:3 a.m.•1 views

CVE-2026-4438

5.4CVSS5.6AI score0.00066EPSS

Exploits1References4

UbuntuCve•added 2026/03/20 8:16 p.m.•0 views

CVE-2026-4438

5.4CVSS5.9AI score0.00066EPSS

Exploits1References3

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2004-2470

Malware in sbrugna...

5CVSS6.1AI score0.0103EPSS

Exploits0References12

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2019-16033

Malware in sbrugna...

6.5CVSS6.3AI score0.00273EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•0 views

EUVD-2022-6317

Malicious code in bioql PyPI...

4CVSS6.1AI score0.00401EPSS

Exploits0References9

Tenable Nessus•added 2025/08/24 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2019-6473

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An invalid hostname option can trigger an assertion failure in the Kea DHCPv4 server process kea-dhcp4, causing the server process to exit. Versions affected:...

6.5CVSS7.2AI score0.00273EPSS

Exploits0References2

SUSE CVE•added 2023/02/15 4:16 a.m.•3 views

SUSE CVE-2019-6473

An invalid hostname option can trigger an assertion failure in the Kea DHCPv4 server process kea-dhcp4, causing the server process to exit. Versions affected: 1.4.0 to 1.5.0, 1.6.0-beta1, and 1.6.0-beta2...

6.5CVSS6.4AI score0.00273EPSS

Exploits0References3

OSV•added 2022/05/12 10:15 p.m.•0 views

CVE-2021-27768

Using the ability to perform a Man-in-the-Middle MITM attack, which indicates a lack of hostname verification, sensitive account information was able to be intercepted. In this specific scenario, the application's network traffic was intercepted using a proxy server set up in 'transparent' mode...

5.9CVSS6.2AI score

Exploits0References1

Cvelist•added 2022/05/12 9:25 p.m.•17 views

CVE-2021-27768 An SSL certificate host verification vulnerability affects HCL Verse for Android

6.3CVSS6.4AI score0.00094EPSS

Exploits0References1

Hacker One•added 2021/01/21 9:57 a.m.•36 views

LY Corporation: Webview address bar spoofing in LINE client for iOS

When navigation to an invalid hostname occurs, the address bar is updated even though the navigation is cancelled. Due to this incorrect timing of updating the address bar and applying URL normalization, it can be recognized as a different hostname from the actual hostname. As a result, attacker...

5CVSS5.2AI score0.00209EPSS

Exploits0

OSV•added 2019/10/16 6:15 p.m.•2 views

ALPINE-CVE-2019-6473

6.5CVSS7AI score0.00273EPSS

Exploits0References1

OSV•added 2019/10/16 6:15 p.m.•1 views

DEBIAN-CVE-2019-6473

6.5CVSS6.4AI score0.00273EPSS

Exploits0References1