CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

53 matches found

CVE-2026-20251

In Splunk Enterprise versions below 10.2.4, 10.0.7, 9.4.12, and 9.3.13, Splunk Cloud Platform versions below 10.3.2512.12, 10.2.2510.14, 10.1.2507.22, and 9.3.2411.132, and Splunk Secure Gateway versions below 3.10.6, 3.9.20, and 3.8.67, a low-privileged user that does not hold the 'admin' or...

8.8CVSS0.00366EPSS

Exploits0References1

Vulnrichment•added 4 days ago•4 views

CVE-2026-20251 Remote Code Execution through Deserialization of Untrusted Data in Splunk Secure Gateway

8.8CVSS5.8AI score0.00366EPSS

Exploits0References1

EUVD•added 4 days ago•5 views

EUVD-2026-36082

8.8CVSS5.8AI score0.00366EPSS

Exploits0References1

Fedora•added 2026/05/29 1:13 a.m.•7 views

[SECURITY] Fedora 44 Update: openbao-2.5.4-1.fc44

Openbao secures, stores, and tightly controls access to tokens, passwords, certificates, API keys, and other secrets in modern computing. Openbao handles leasing, key revocation, key rolling, and auditing. Through a unified API, us ers can access an encrypted Key/Value store and network...

5.8AI score0.00083EPSS

Exploits0

RedhatCVE•added 2026/05/25 11:37 p.m.•10 views

CVE-2026-27172

A flaw was found in the camel-consul component of Apache Camel. An attacker with write access to the Consul Key-Value KV store could inject a malicious serialized Java object. When Apache Camel's ConsulRegistry deserializes this object, it can lead to arbitrary code execution within the Camel...

8.8CVSS6.2AI score0.00271EPSS

Exploits0References4

Fedora•added 2026/05/18 12:59 a.m.•19 views

[SECURITY] Fedora 43 Update: valkey-8.1.7-1.fc43

Valkey is an advanced key-value store. It is often referred to as a data structure server since keys can contain strings, hashes, lists, sets and sorted sets. You can run atomic operations on these types, like appending to a string; incrementing the value in a hash; pushing to a list; computing s...

8.8CVSS5.8AI score0.00119EPSS

Exploits4

NVD•added 2026/05/14 6:16 p.m.•6 views

CVE-2026-44283

etcd is a distributed key-value store for the data of a distributed system. Prior to 3.4.44, 3.5.30, and 3.6.11, a vulnerability in etcd allows read access via PrevKv, or lease attachment in Put requests within transaction operations, to bypass RBAC authorization checks. An authenticated user...

4.3CVSS0.00012EPSS

Exploits0References1

Github Security Blog•added 2026/05/12 6:30 p.m.•7 views

Horovod contains an insecure deserialization vulnerability in its KVStore HTTP server component

Horovod thru 0.28.1 contains an insecure deserialization vulnerability CWE-502 in its KVStore HTTP server component. The KVStore server, used for distributed task coordination, lacks authentication and authorization controls, allowing any remote attacker to write arbitrary data via HTTP PUT...

9.8CVSS6.4AI score0.01032EPSS

Exploits0References4Affected Software1

CNNVD•added 2026/05/12 12:0 a.m.•4 views

Horovod 安全漏洞

Horovod is a distributed training framework developed by Horovod OpenSource, based on TensorFlow, Keras, PyTorch, and Apache MXNet. Horovod versions 0.28.1 and earlier contain security vulnerabilities. These vulnerabilities stem from the lack of authentication and authorization controls in the...

9.8CVSS6.2AI score0.01032EPSS

Exploits0References2

Fedora•added 2026/04/03 12:52 a.m.•5 views

[SECURITY] Fedora 43 Update: openbao-2.5.2-1.fc43

9.6CVSS6.3AI score0.0004EPSS

Exploits0

Debian CVE•added 2026/03/26 1:23 p.m.•4 views

CVE-2026-33343

etcd is a distributed key-value store for the data of a distributed system. Prior to versions 3.4.42, 3.5.28, and 3.6.9, an authenticated user with RBAC restricted permissions on key ranges can use nested transactions to bypass all key-level authorization. This allows any authenticated user with...

6.5CVSS5.4AI score0.00021EPSS

Exploits0

Fedora•added 2026/03/05 1:13 a.m.•3 views

[SECURITY] Fedora 42 Update: valkey-8.0.7-1.fc42

8.5CVSS6AI score0.00023EPSS

Exploits0

AlmaLinux•added 2026/03/02 12:0 a.m.•5 views

Important: valkey security update

8.5CVSS6AI score0.00023EPSS

Exploits0References6

Tenable Nessus•added 2026/01/16 12:0 a.m.•4 views

MiracleLinux 7 : etcd-3.2.26-1.el7 (AXSA:2019-3901:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2019-3901:01 advisory. Security Fix - etcd RABC etcd gRPC-gateway REST API TLS RBAC Common Name CN CVE-2018-16886 CVEJVNhttp://jvndb.jvn.jp/ Tenable has extracted the preceding...

8.1CVSS7.1AI score0.00486EPSS

Exploits0References2

Fedora•added 2025/12/03 1:12 a.m.•4 views

[SECURITY] Fedora 42 Update: openbao-2.4.4-1.fc42

7.5CVSS7AI score0.00036EPSS

Exploits0

Fedora•added 2025/12/03 12:59 a.m.•5 views

[SECURITY] Fedora 43 Update: openbao-2.4.4-1.fc43

7.5CVSS7AI score0.00044EPSS

Exploits0

Fedora•added 2025/10/13 2:4 a.m.•4 views

[SECURITY] Fedora 41 Update: valkey-8.0.6-1.fc41

9.9CVSS7.1AI score0.11111EPSS

Exploits14

Fedora•added 2025/10/13 12:42 a.m.•5 views

[SECURITY] Fedora 42 Update: valkey-8.0.6-1.fc42

9.9CVSS7.1AI score0.11111EPSS

Exploits14

OSV•added 2025/09/09 7:19 p.m.•2 views

GHSA-93MF-426M-G6X9 CoreDNS: DNS Cache Pinning via etcd Lease ID Confusion

Summary The CoreDNS etcd plugin contains a TTL confusion vulnerability where lease IDs are incorrectly used as TTL values, enabling cache pinning for very long periods. This can effectively cause a denial of service for DNS updates/changes to affected services. Details In plugin/etcd/etcd.go, the...

7.1CVSS6.6AI score0.00106EPSS

Exploits0References4

Fedora•added 2025/07/25 1:4 a.m.•3 views

[SECURITY] Fedora 42 Update: valkey-8.0.4-1.fc42

9.8CVSS7.4AI score0.18438EPSS

Exploits4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by