CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

379 matches found

CVE-2026-9539

CVE-2026-9539 affects freedesktop.org libslirp (prior to v4.9.2) used on hypervisor host environments (e.g., QEMU). A vulnerability in the TCP urgent data handling (sosendoob) can cause an out-of-bounds heap read and integer underflow, enabling a privileged guest VM attacker (root or CAP_NET_RAW)...

6.5CVSS5.9AI score

Exploits0References3

AstraLinux•added 2026/05/20 5:53 a.m.•4 views

Astra Linux - уязвимость в libslirp

An invalid pointer initialization issue was discovered in the SLiRP networking implementation of QEMU. The flaw exists in the udpinput function and can occur when processing an UDP packet that is smaller than the size of the ‘udphdr’ structure. This issue may lead to out-of-bounds read access or...

3.8CVSS6.7AI score0.00326EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в libslirp

An invalid pointer initialization issue was discovered in the SLiRP networking implementation of QEMU. The flaw exists in the udp6input function and can occur when processing an UDP packet that is smaller than the size of the ‘udphdr’ structure. This issue may lead to out-of-bounds read access or...

3.8CVSS6.7AI score0.00326EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в libslirp

In slirp.c within libslirp up to version 4.3.1, there is an issue with buffer over-reading. This occurs because the code attempts to read a certain amount of header data, even if that amount exceeds the total packet length...

4.3CVSS6.9AI score0.0183EPSS

Exploits1References2

RedHat Linux•added 2026/05/13 3:39 p.m.•10 views

Important: Red Hat Security Advisory: gvisor-tap-vsock security update

An update for gvisor-tap-vsock is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

10CVSS7.1AI score0.00765EPSS

Exploits3References8

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux – Vulnerability in libslirp

In ncsi.c within libslirp up to 4.3.1, there is an issue of buffer over-reading. This occurs because the program attempts to read a certain amount of header data, even when that amount exceeds the total packet length...

4.3CVSS6.7AI score0.01443EPSS

Exploits0References2

RedHat Linux•added 2026/04/30 3:35 a.m.•4 views

Important: Red Hat Security Advisory: gvisor-tap-vsock security update

An update for gvisor-tap-vsock is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

10CVSS7.2AI score0.00765EPSS

Exploits3References5

Tenable Nessus•added 2026/03/06 12:0 a.m.•3 views

NewStart CGSL MAIN 6.06 (SP) : qemu Multiple Vulnerabilities (NS-SA-2026-0014)

The remote NewStart CGSL host, running version MAIN 6.06 SP, has qemu packages installed that are affected by multiple vulnerabilities: - A flaw was found in the USB redirector device emulation of QEMU in versions prior to 6.1.0-rc2. It occurs when dropping packets during a bulk transfer from a...

8.6CVSS6.5AI score0.05447EPSS

Exploits2References17

Oracle linux•added 2026/02/26 12:0 a.m.•10 views

container-tools:ol8 security update

aardvark-dns 2:1.10.1-2 - build off the RHEL maintenance branch - Resolves: RHEL-59129 buildah 2:1.33.14-2 - rebuild for CVE-2025-61729 - Resolves: RHEL-140529 cockpit-podman 84.1-1 - update to https://github.com/cockpit-project/cockpit-podman/releases/tag/84.1 - Related: Jira:RHEL-25557 conmon...

7.5CVSS5.9AI score0.00795EPSS

Exploits3

Tenable Nessus•added 2026/01/20 12:0 a.m.•4 views

MiracleLinux 8 : container-tools:rhel8 (AXSA:2020-917:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2020-917:01 advisory. QEMU: slirp: use-after-free in ipreass function in ipinput.c CVE-2020-1983 Modularity name: container-tools Stream name: rhel8 CVE-2020-1983 A use after free...

7.5CVSS7.2AI score0.02293EPSS

Exploits1References2

Oracle linux•added 2026/01/19 12:0 a.m.•11 views

container-tools:rhel8 security update

aardvark-dns 2:1.10.1-2 - build off the RHEL maintenance branch - Resolves: RHEL-59129 buildah 2:1.33.14-1 - update to the latest content of https://github.com/containers/buildah/tree/release-1.33 https://github.com/containers/buildah/commit/a7f8179 - fixes 'CVE-2025-47913...

7.5CVSS5.5AI score0.00682EPSS

Exploits1

Rockylinux•added 2025/11/28 9:4 a.m.•7 views

container-tools:rhel8 security, bug fix, and enhancement update

An update is available for module.criu, module.libslirp, libslirp, criu. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The container-tools module contains tool...

7.5CVSS6.7AI score0.05623EPSS

Exploits5

Rockylinux•added 2025/11/28 9:4 a.m.•5 views

container-tools:rhel8 security and bug fix update

An update is available for libslirp, module.libslirp. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The container-tools module contains tools for working with...

9.8CVSS6AI score0.04561EPSS

Exploits3