CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

409 matches found

Debian CVE•added 2026/05/28 10:25 p.m.•10 views

CVE-2026-9955

Inappropriate implementation in iOS in Google Chrome on iOS prior to 148.0.7778.216 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: High...

4.3CVSS5.8AI score0.00031EPSS

Exploits0

OSV•added 2026/05/04 1:12 p.m.•2 views

JLSEC-2026-407

A use after free vulnerability exists in curl v8.1.0 in the way libcurl offers a feature to verify an SSH server's public key using a SHA 256 hash. When this check fails, libcurl would free the memory for the fingerprint before it returns an error message containing the now freed hash. This flaw...

7.5CVSS6.8AI score0.0032EPSS

Exploits1References18

Tenable Nessus•added 2026/04/28 12:0 a.m.•8 views

Nutanix AHV : Multiple Vulnerabilities (NXSA-AHV-10.3.1.7)

The version of AHV installed on the remote host is prior to AHV-10.3.1.7. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AHV-10.3.1.7 advisory. - Calling getnetbyaddr or getnetbyaddrr with a configured nsswitch.conf that specifies the library's DNS backend for...

7.5CVSS6.8AI score0.01639EPSS

Exploits3References9

Snyk•added 2026/03/26 10:9 p.m.•1 views

Missing Release of Memory after Effective Lifetime

Overview Magick.NET-Q16-HDRI-x86 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

4.6CVSS5.9AI score

Exploits0References2

OSV•added 2026/03/25 2:16 p.m.•2 views

DEBIAN-CVE-2026-3104

A specially crafted domain can be used to cause a memory leak in a BIND resolver simply by querying this domain. This issue affects BIND 9 versions 9.20.0 through 9.20.20, 9.21.0 through 9.21.19, and 9.20.9-S1 through 9.20.20-S1. BIND 9 versions 9.18.0 through 9.18.46 and 9.18.11-S1 through...

7.5CVSS8.6AI score0.00052EPSS

Exploits0References1

Snyk•added 2026/02/25 7:13 p.m.•2 views

Missing Release of Memory after Effective Lifetime

6.3CVSS6AI score

Exploits0References2

Snyk•added 2026/02/24 12:48 a.m.•4 views

Missing Release of Memory after Effective Lifetime

Overview Magick.NET-Q16-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package are...

6.9CVSS5.7AI score0.00019EPSS

Exploits0References2

OSV•added 2026/01/22 2:36 p.m.•1 views

SUSE-SU-2026:20156-1 Security update for gdk-pixbuf

This update for gdk-pixbuf fixes the following issues: - CVE-2025-7345: heap buffer overflow in gdk-pixbuf within the gdkpixbufjpegimageloadincrement function io-jpeg.c and in glib gbase64encodestep bsc1246114. - CVE-2025-6199: uninitialized memory could lead to leak arbitrary memory contents...

7.5CVSS6.6AI score0.00938EPSS

Exploits0References5

Tenable Nessus•added 2026/01/14 12:0 a.m.•4 views

MiracleLinux 3 : perl-DBD-Pg-1.49-2AXS3.1 (AXSA:2009-57:01)

The remote MiracleLinux 3 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2009-57:01 advisory. An implementation of DBI for PostgreSQL for Perl. Fixed bugs: CVE-2009-0663 Heap-based buffer overflow in the DBD::Pg aka DBD-Pg or libdbd-pg-perl...

7.5CVSS6.5AI score0.06903EPSS

Exploits2References3

Tenable Nessus•added 2026/01/14 12:0 a.m.•3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001292)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001292 advisory. A memory leak in the i2400moprfkillswtoggle function in drivers/net/wimax/i2400m/op-rfkill.c in the Linux kernel before 5.3.11 allows attackers to cause a denial of...

5.5CVSS6.6AI score0.00042EPSS

Exploits0References4

RedhatCVE•added 2026/01/09 11:19 a.m.•6 views

CVE-2021-22342

There is an information leak vulnerability in Huawei products. A module does not deal with specific input sufficiently. High privilege attackers can exploit this vulnerability by performing some operations. This can lead to information leak. Affected product versions include: IPS Module versions...

4.9CVSS6.5AI score0.00138EPSS

Exploits0References1

Tenable Nessus•added 2025/11/20 12:0 a.m.•3 views

TencentOS Server 4: nodejs (TSSA-2025:0324)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2025:0324 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

8.2CVSS7.3AI score0.00164EPSS

Exploits0References3