CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

48 matches found

NVD•added 2026/06/16 2:16 a.m.•10 views

CVE-2026-1767

A flaw was found in the GNOME localsearch previously known as tracker-miners MP3 Extractor tracker-extract-mp3 component. A remote attacker could exploit this heap buffer overflow vulnerability by providing a specially crafted MP3 file containing malformed ID3 tags. This incorrect length...

8.1CVSS0.00246EPSS

Exploits1References2

NVD•added 2026/06/16 2:16 a.m.•8 views

CVE-2026-1765

A flaw was found in the tracker-extract-mp3 component of GNOME localsearch previously known as tracker-miners. This vulnerability, a heap buffer overflow, occurs when processing specially crafted MP3 files. A remote attacker could exploit this by providing a malicious MP3 file, leading to a Denia...

5.6CVSS0.00139EPSS

Exploits0References2

NVD•added 2026/06/16 2:16 a.m.•12 views

CVE-2026-1764

A flaw was found in GNOME localsearch previously known as tracker-miners MP3 Extractor. When processing specially crafted MP3 files containing ID3v2.4 tags, a missing bounds check in the extractperformerstags function can lead to a heap buffer overflow. This vulnerability allows a remote attacker...

5.6CVSS0.00209EPSS

Exploits2References2

Cvelist•added 2026/06/16 12:34 a.m.•27 views

CVE-2026-1767 Localsearch: tracker-miners: gnome localsearch mp3 extractor: heap buffer overflow leading to denial of service or information disclosure via malformed mp3 id3 tags

5.6CVSS0.00246EPSS

Exploits1References2

EUVD•added 2026/06/16 12:34 a.m.•7 views

EUVD-2026-37028

5.6CVSS5.6AI score0.00246EPSS

Exploits1References2

CVE•added 2026/06/16 12:34 a.m.•16 views

CVE-2026-1767

CVE-2026-1767 affects GNOME localsearch’s MP3 Extractor (tracker-extract-mp3). The issue is a heap buffer overflow when parsing MP3 ID3 tags, caused by incorrect length calculations for performer tags, leading to potential DoS from a crash or information disclosure. Connected advisories reference...

8.1CVSS5.6AI score0.00246EPSS

Exploits1References2Affected Software2

Debian CVE•added 2026/06/16 12:34 a.m.•4 views

CVE-2026-1767

8.1CVSS5.7AI score0.00246EPSS

Exploits1

Cvelist•added 2026/06/16 12:34 a.m.•28 views

CVE-2026-1766 Localsearch: tracker-miners: gnome localsearch mp3 extractor: denial of service and information disclosure via malformed mp3 files.

A flaw was found in GNOME localsearch previously known as tracker-miners MP3 Extractor, specifically within the tracker-extract-mp3 component. This heap buffer overflow vulnerability occurs when processing specially crafted MP3 files containing malformed ID3v2.3 COMM Comment tags. An attacker cou...

5.6CVSS0.00158EPSS

Exploits1References2

CVE•added 2026/06/16 12:34 a.m.•37 views

CVE-2026-1766

CVE-2026-1766 concerns GNOME localsearch (tracker-extract-mp3) and its MP3 Extractor, where a heap buffer overflow occurs while parsing MP3 files with malformed ID3v2.3 COMM tags. Exploitation can cause DoS (crash) and may disclose heap data. Public advisories and patches exist across multiple ve...

6.1CVSS5.5AI score0.00158EPSS

Exploits1References2Affected Software2

EUVD•added 2026/06/16 12:34 a.m.•8 views

EUVD-2026-37027

5.6CVSS5.5AI score0.00158EPSS

Exploits1References2

Debian CVE•added 2026/06/16 12:34 a.m.•5 views

CVE-2026-1766

6.1CVSS5.5AI score0.00158EPSS

Exploits1

CVE•added 2026/06/16 12:34 a.m.•15 views

CVE-2026-1765

CVE-2026-1765 concerns GNOME localsearch’s tracker-miners: the tracker-extract-mp3 component is vulnerable to a heap buffer overflow when processing crafted MP3 files, potentially causing Denial of Service (crash) and, in some cases, information disclosure from memory. The issue is confirmed acro...

5.6CVSS5.5AI score0.00139EPSS

Exploits0References2

Cvelist•added 2026/06/16 12:34 a.m.•26 views

CVE-2026-1765 Localsearch: tracker-miners: gnome localsearch mp3 extractor: denial of service and potential information disclosure via crafted mp3 files

5.6CVSS0.00139EPSS

Exploits0References2

EUVD•added 2026/06/16 12:34 a.m.•6 views

EUVD-2026-37026

5.6CVSS5.5AI score0.00139EPSS

Exploits0References2

CVE•added 2026/06/16 12:32 a.m.•33 views

CVE-2026-1764

The CVE-2026-1764 to CVE-2026-1767 family affects GNOME localsearch (tracker-miners) MP3 extraction. Root cause: a missing bounds check in extract_performers_tags when parsing MP3 files (ID3v2.x), enabling a heap buffer overflow. Impact: Denial of Service (remote or local depending on context) vi...

5.6CVSS5.6AI score0.00209EPSS

Exploits2References2Affected Software2

Cvelist•added 2026/06/16 12:32 a.m.•27 views

CVE-2026-1764 Localsearch: tracker-miners: gnome localsearch mp3 extractor: heap buffer overflow leads to denial of service or information disclosure when parsing mp3 files

5.6CVSS0.00209EPSS

Exploits2References2

EUVD•added 2026/06/16 12:32 a.m.•8 views

EUVD-2026-37025

5.6CVSS5.6AI score0.00209EPSS

Exploits2References2

Debian CVE•added 2026/06/16 12:32 a.m.•5 views

CVE-2026-1764

5.6CVSS5.7AI score0.00209EPSS

Exploits2

Tenable Nessus•added 2026/06/02 12:0 a.m.•12 views

SUSE SLES16 Security Update : localsearch (SUSE-SU-2026:21854-1)

The remote SUSE Linux SLES16 / SLESSAP16 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:21854-1 advisory. - CVE-2026-1764: Fixed a heap buffer overflow leads to denial of service or information disclosure when parsing MP3 files...

8.1CVSS5.7AI score0.00246EPSS

Exploits4References13

OPENSUSE Linux•added 2026/05/29 12:0 a.m.•8 views

Security update for localsearch (moderate)

openSUSE security update: security update for localsearch ------------------------------------------------------------- Announcement ID: openSUSE-SU-2026:20821-1 Rating: moderate References: bsc1257606 bsc1257607 bsc1257608 bsc1257609 Cross-References: CVE-2026-1764 CVE-2026-1765 CVE-2026-1766...

5.6CVSS5.9AI score0.00246EPSS

Exploits4References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by