CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

283 matches found

RedhatCVE•added 2026/05/13 8:22 p.m.•9 views

CVE-2026-33840

Use after free in Windows Win32K - ICOMP allows an authorized attacker to elevate privileges locally...

7.8CVSS5.4AI score0.02014EPSS

Exploits0References1

CNNVD•added 2026/05/12 12:0 a.m.•10 views

Microsoft Win32k 资源管理错误漏洞

Microsoft Win32k is a system file used by Microsoft for multi-user management in Windows operating systems. There is a resource management vulnerability in Microsoft Windows Win32K-ICOMP. Attackers can exploit this vulnerability to gain higher privileges. The following products and versions are...

7.8CVSS5.8AI score0.02014EPSS

Exploits0References2

CVE•added 2026/03/26 6:21 a.m.•127 views

CVE-2026-4747

CVE-2026-4747 is a FreeBSD vulnerability in the RPCSEC_GSS implementation (kgssapi.ko) where svc_rpc_gss_validate() copies attacker-controlled data into a 128-byte stack buffer without enforcing size, enabling a 304-byte overflow when credential bodies up to 400 bytes are supplied. This can lead ...

8.8CVSS6.8AI score0.01915EPSS

Exploits3References3Affected Software1

CNVD•added 2026/03/02 12:0 a.m.•1 views

Security Bypass Vulnerability in Multiple Apple Products (CNVD-2026-14492)

Apple iOS is an operating system developed for mobile devices.Apple macOS is a specialized operating system developed for Mac computers.Apple iPadOS is an operating system for iPad tablets. A security bypass vulnerability exists in multiple Apple products and is caused by a logic issue in a kerne...

3.1CVSS5.9AI score0.00319EPSS

Exploits0References1

RedhatCVE•added 2026/01/21 10:24 p.m.•3 views

CVE-2026-21928

Vulnerability in the Oracle Solaris product of Oracle Systems component: Kernel. The supported version that is affected is 11. Easily exploitable vulnerability allows unauthenticated attacker with network access via TCP to compromise Oracle Solaris. Successful attacks of this vulnerability can...

5.3CVSS5.4AI score0.0028EPSS

Exploits0References1

Positive Technologies•added 2026/01/13 12:0 a.m.•2 views

PT-2026-2662

Name of the Vulnerable Software and Affected Versions Windows versions prior to the patchday containing the fix. Description A type confusion issue exists within the Windows Win32K ICOMP component. This allows a locally authorized attacker to gain elevated privileges. The issue involves accessing...

7.8CVSS6.5AI score0.00485EPSS

Exploits0References8

vulnersOsv•added 2025/10/22 10:43 p.m.•6 views

org.sakaiproject.kernel:sakai-kernel-component (>=1.3.0 <=10.7) potentially affected by CVE-2025-62710 via org.sakaiproject.kernel:sakai-kernel-impl (>=10.3 <=1.3.3)

org.sakaiproject.kernel:sakai-kernel-impl MAVEN version =10.3, =1.3.0, =10.7 Source cves: CVE-2025-62710 Source advisory: SNYK:JAVA-ORGSAKAIPROJECTKERNEL-13669871...

5.9CVSS5.8AI score0.00182EPSS

Exploits0

vulnersOsv•added 2025/10/22 7:41 p.m.•2 views

org.sakaiproject.kernel:sakai-kernel-component (>=1.3.0 <=1.3.3) potentially affected by CVE-2025-62710 via org.sakaiproject.kernel:sakai-kernel-impl (>=1.3.0-b03 <=1.3.3)

org.sakaiproject.kernel:sakai-kernel-impl MAVEN version =1.3.0-b03, =1.3.0, =1.3.3 Source cves: CVE-2025-62710 Source advisory: OSV:GHSA-GR7H-XW4F-WH86...

5.9CVSS5.4AI score0.00182EPSS

Exploits0