CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

26 matches found

Microsoft CVE•added 2026/05/28 8:8 a.m.•2 views

can: ucan: fix devres lifetime

...

5.5CVSS5.4AI score0.00032EPSS

Exploits0

Redos•added 2026/04/14 12:0 a.m.•3 views

ROS-20260414-73-0023

Vulnerability in kernel-lt related to lack of memory release after effective lifetime. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS5.8AI score0.00023EPSS

Exploits0

ATTACKERKB•added 2026/03/05 10:37 a.m.•3 views

CVE-2026-3236

In affected versions of Octopus Server it was possible to create a new API key from an existing access token resulting in the new API key having a lifetime exceeding the original API key used to mint the access token...

2.3CVSS5.9AI score0.00042EPSS

Exploits0References2Affected Software1

EUVD•added 2025/11/18 6:30 a.m.•3 views

EUVD-2025-197912

Missing Release of Resource after Effective Lifetime CWE-772 in the T21 Reader allows an attacker with physical access to the Reader to perform a denial-of-service attack against that specific reader, preventing cardholders from badging for entry. This issue affects Command Centre Server: 9.30...

2.4CVSS6.1AI score0.00024EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2019-15379

Malware in sbrugna...

8.8CVSS9.1AI score0.01652EPSS

Exploits0References13

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2019-15387

Malware in sbrugna...

8.8CVSS7.9AI score0.00573EPSS

Exploits0References8

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2018-17874

Malware in sbrugna...

8.8CVSS9.1AI score0.00682EPSS

Exploits0References10

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2022-52806

Malicious code in bioql PyPI...

4.4CVSS5.2AI score0.00043EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-52822

Malicious code in bioql PyPI...

6.5CVSS6.3AI score0.00786EPSS

Exploits1References8

SUSE CVE•added 2025/02/01 3:47 a.m.•1 views

SUSE CVE-2025-21677

In the Linux kernel, the following vulnerability has been resolved: pfcp: Destroy device along with udp socket's netns dismantle. pfcpnewlink links the device to a list in devnetdev instead of net, where a udp tunnel socket is created. Even when net is removed, the device stays alive on devnetdev...

5.5CVSS7.6AI score0.00029EPSS

Exploits0References3

CVE•added 2024/11/18 9:53 a.m.•91 views

CVE-2023-39180

CVE-2023-39180 affects the Linux kernel ksmbd module. The root cause is improper memory release after the memory’s lifetime in SMB2_READ handling, enabling a network-based DoS without authentication on systems with ksmbd enabled. Public details confirm impact as denial-of-service; no vendor patch...

7.5CVSS3.9AI score0.00059EPSS

Exploits0References3Affected Software1

Positive Technologies•added 2024/11/04 12:0 a.m.•4 views

PT-2024-73: Unlimited session lifetime in Password Pusher

The vulnerability was identified in Password Pusher versions prior to 1.48.0. The application does not limit the storage time of the session identifier or credentials, or this time is excessively long. An attacker can reuse old credentials or session identifiers to log in as another user and gain...

8.8CVSS7.5AI score

Exploits0

OSV•added 2024/09/13 6:15 a.m.•1 views

DEBIAN-CVE-2024-46683

In the Linux kernel, the following vulnerability has been resolved: drm/xe: prevent UAF around preempt fence The fence lock is part of the queue, therefore in the current design anything locking the fence should then also hold a ref to the queue to prevent the queue from being freed. However,...

7.8CVSS6AI score0.00019EPSS

Exploits0References1

NVD•added 2019/06/27 5:15 p.m.•22 views

CVE-2019-5786

Object lifetime issue in Blink in Google Chrome prior to 72.0.3626.121 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page...

6.5CVSS6.4AI score0.89944EPSS

Exploits10References3

OSV•added 2019/06/27 5:15 p.m.•6 views

CVE-2019-5807

Object lifetime issue in V8 in Google Chrome prior to 74.0.3729.108 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS8.8AI score

Exploits0References8

OSV•added 2019/06/27 5:15 p.m.•0 views

UBUNTU-CVE-2019-5816

Process lifetime issue in Chrome in Google Chrome on Android prior to 74.0.3729.108 allowed a remote attacker to potentially persist an exploited process via a crafted HTML page...

8.8CVSS7AI score0.00573EPSS

Exploits0References2

CVE•added 2019/06/27 4:13 p.m.•1340 views

CVE-2019-5786

CVE-2019-5786 corresponds to a heap use-after-free in Google Chrome’s Blink layer affecting the FileReader API, enabling a remote attacker to potentially cause out-of-bounds memory access via a crafted HTML page. The CVE is documented as a vulnerability in Blink prior to 72.0.3626.121, with the v...

6.5CVSS6.2AI score0.89944EPSS

In wildExploits10References3Affected Software1

AlpineLinux•added 2019/06/27 4:13 p.m.•52 views

CVE-2019-5786

Object lifetime issue in Blink in Google Chrome prior to 72.0.3626.121 allowed a remote attacker to potentially perform out of bounds memory access via a crafted HTML page...

6.5CVSS6.5AI score0.89944EPSS

Exploits10

0day.today•added 2019/03/02 12:0 a.m.•59 views

Google Chrome < M72 - Use-After-Free in RenderProcessHostImpl Binding for P2PSocketDispatcherHost

Google Chrome M72 - Use-After-Free in RenderProcessHostImpl Binding for P2PSocketDispatcherHost There's an object-lifetime issue in the browser process in the handling of P2PSocketDispatcherHost binding in parallel with OnBloatedRenderer event handling. In RenderProcessHostImpl, we have a uniquep...

0.2AI score

Exploits0

exploitpack•added 2019/03/01 12:0 a.m.•43 views

Google Chrome M72 - Use-After-Free in RenderProcessHostImpl Binding for P2PSocketDispatcherHost

0.2AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by