CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

SUSE CVE-2026-34182

Issue Summary: Cryptographic Message Services CMS processing fails to perform sufficient input validation on the cipher and tag length fields of AuthEnvelopedData containers, leading to various potential compromises. Impact Summary: Attackers making use of these vulnerabilities may achieve...

5.9CVSS5.3AI score0.00208EPSS

Exploits0References7

Snyk•added 2026/06/09 6:33 p.m.•7 views

Improper Validation of Integrity Check Value

Overview Affected versions of this package are vulnerable to Improper Validation of Integrity Check Value when processing cipher and tag-length fields of CMS AuthEnvelopedData containers. An attacker can bypass message integrity via replay attack. A non AEAD cipher is permitted in...

9.1CVSS5.3AI score0.00208EPSS

Exploits0References2

NVD•added 2026/06/09 5:17 p.m.•22 views

CVE-2026-34182

9.1CVSS0.00208EPSS

Exploits0References6

UbuntuCve•added 2025/12/30 1:16 p.m.•3 views

CVE-2022-50859

In the Linux kernel, the following vulnerability has been resolved: cifs: Fix the error length of VALIDATENEGOTIATEINFO message Commit d5c7076b772a "smb3: add smb3.1.1 to default dialect list" extend the dialects from 3 to 4, but forget to decrease the extended length when specific the dialect,...

5.9AI score0.00206EPSS

Exploits0References8

Debian CVE•added 2025/12/18 3:2 p.m.•3 views

CVE-2025-68325

In the Linux kernel, the following vulnerability has been resolved: net/sched: schcake: Fix incorrect qlen reduction in cakedrop In cakedrop, qdisctreereducebacklog is used to update the qlen and backlog of the qdisc hierarchy. Its caller, cakeenqueue, assumes that the parent qdisc will enqueue t...

5.3AI score0.0018EPSS

Exploits0

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2002-0423

Malware in sbrugna...

7.5CVSS6.4AI score0.0136EPSS

Exploits0References5

NVD•added 2025/01/11 3:15 p.m.•7 views

CVE-2024-57843

In the Linux kernel, the following vulnerability has been resolved: virtio-net: fix overflow inside virtnetrqalloc When the frag just got a page, then may lead to regression on VM. Specially if the sysctl net.core.highorderallocdisable value is 1, then the frag always get a page when do refill...

5.5CVSS0.002EPSS

Exploits0References3

NVD•added 2002/08/12 4:0 a.m.•12 views

CVE-2002-0426

VPN Server module in Linksys EtherFast BEFVP41 Cable/DSL VPN Router before 1.40.1 reduces the key lengths for keys that are supplied via manual key entry, which makes it easier for attackers to crack the keys...

7.5CVSS6.5AI score0.0136EPSS

Exploits0References4