CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1232 matches found

EUVD-2026-34033

Fixed a VM panic caused by unbounded recursion in the grpcfuse kernel module when a container created deeply nested directories on a bind-mounted host folder and triggered a dentry invalidation event. This issue has been fixed in Docker Desktop 4.76.0...

8.2CVSS5.7AI score0.00014EPSS

Exploits0References2

NVD•added 2 days ago•6 views

CVE-2026-8936

8.2CVSS0.00014EPSS

Exploits0References1

ATTACKERKB•added 2 days ago•3 views

CVE-2026-8936

8.2CVSS5.7AI score0.00014EPSS

Exploits0References2Affected Software1

Cvelist•added 2 days ago•20 views

CVE-2026-8936 Unbounded recursion in grpcfuse kernel module allows container to crash Docker Desktop VM

8.2CVSS0.00014EPSS

Exploits0References1

CVE•added 2 days ago•16 views

CVE-2026-8936

CVE-2026-8936 describes an unbounded recursion in the grpcfuse kernel module that can cause a VM panic in the Docker Desktop VM when a container creates deeply nested directories on a bind-mounted host folder, triggering a dentry invalidation event. The issue has been fixed in Docker Desktop 4.76...

8.2CVSS5.7AI score0.00014EPSS

Exploits0References1

Positive Technologies•added 2 days ago•4 views

PT-2026-45868

Name of the Vulnerable Software and Affected Versions Docker Desktop versions prior to 4.76.0 Description A VM panic occurs due to unbounded recursion within the grpcfuse kernel module. This happens when a container creates deeply nested directories on a bind-mounted host folder and triggers a...

8.2CVSS5.8AI score0.00014EPSS

Exploits0References3

Vulnrichment•added 6 days ago•6 views

CVE-2026-44648 SillyTavern: Existing sessions are not invalidated after password change, allowing session reuse and account takeover

SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image generation engines, and text-to-speech voice models. Prior to 1.18.0, SillyTavern relies on cookie-session for authentication, storing all session data user handle,...

7.5CVSS5.8AI score0.00016EPSS

Exploits1References1

SUSE CVE•added 2026/05/28 3:56 a.m.•3 views

SUSE CVE-2026-45894

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Clear Present bit before tearing down PASID entry The Intel VT-d Scalable Mode PASID table entry consists of 512 bits 64 bytes. When tearing down an entry, the current implementation zeros the entire 64-byte structure...

5.7AI score0.00013EPSS

Exploits0References3

SUSE CVE•added 2026/05/28 3:55 a.m.•5 views

SUSE CVE-2026-45944

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Clear Present bit before tearing down context entry When tearing down a context entry, the current implementation zeros the entire 128-bit entry using multiple 64-bit writes. This creates a window where the hardware c...

7.5CVSS5.7AI score0.00014EPSS

Exploits0References3

Vulnrichment•added 2026/05/27 5:5 p.m.•3 views

CVE-2026-46424 Budibase: Missing Cache Invalidation on Public API Role Unassignment Allows Revoked Users to Retain Privileges for Up to 1 Hour

Budibase is an open-source low-code platform. Prior to 3.38.2, the public API role unassignment endpoint POST /api/public/v1/roles/unassign updates user documents in CouchDB but does not invalidate the corresponding Redis user cache entries. Because the authentication middleware resolves user...

4.2CVSS5.7AI score0.00037EPSS

Exploits0References2

CVE•added 2026/05/27 5:5 p.m.•4 views

CVE-2026-46424

Budibase vulnerability CVE-2026-46424 affects versions before 3.38.2. The public API endpoint POST /api/public/v1/roles/unassign updates CouchDB user documents but does not invalidate the Redis cache entries used by authentication middleware, so revoked admin/builder/app roles may persist up to 1...

4.2CVSS5.7AI score0.00037EPSS

Exploits0References2

EUVD•added 2026/05/27 5:5 p.m.•6 views

EUVD-2026-32597

4.2CVSS5.7AI score0.00037EPSS

Exploits0References2

EUVD•added 2026/05/27 3:33 p.m.•6 views

EUVD-2026-32228

5.7AI score0.00014EPSS

Exploits0References4

EUVD•added 2026/05/27 3:33 p.m.•3 views

EUVD-2026-32360

5.7AI score0.00013EPSS

Exploits0References5

NVD•added 2026/05/27 2:17 p.m.•6 views

CVE-2026-45944

7.5CVSS0.00014EPSS

Exploits0References3

NVD•added 2026/05/27 2:17 p.m.•4 views

CVE-2026-45945

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Fix race condition during PASID entry replacement The Intel VT-d PASID table entry is 512 bits 64 bytes. When replacing an active PASID entry e.g., during domain replacement, the current implementation calculates a ne...

8.8CVSS0.00015EPSS

Exploits0References2

OSV•added 2026/05/27 2:17 p.m.•1 views

UBUNTU-CVE-2026-45894

7.8CVSS5.7AI score0.00013EPSS

Exploits0References3

OSV•added 2026/05/27 2:17 p.m.•2 views

UBUNTU-CVE-2026-45944

7.5CVSS5.7AI score0.00014EPSS

Exploits0References3

ATTACKERKB•added 2026/05/27 12:58 p.m.•3 views

CVE-2026-46082

In the Linux kernel, the following vulnerability has been resolved: KVM: SVM: Inject UD for INVLPGA if EFER.SVME=0 INVLPGA should cause a UD when EFER.SVME is not set. Add a check to properly inject UD when EFER.SVME=0. sean: tag for stable@...

5.8AI score0.00032EPSS

Exploits0References8Affected Software1

CVE•added 2026/05/27 12:18 p.m.•8 views

CVE-2026-45945

The CVE-2026-45945 vulnerability affects the Linux kernel iommu/vt-d PASID entry handling. A race condition arises when replacing an active 512-bit PASID table entry; the existing approach writes a new entry in place, risking torn reads if the hardware fetches the entry in multiple 128-bit chunks...

8.8CVSS5.8AI score0.00015EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by