CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

IBM Security Bulletins•added 2026/05/27 12:48 p.m.•11 views

Security Bulletin: IBM z/TPF Development is affected by multiple vulnerabilities reported in the axios package

Summary Multiple vulnerabilities were identified in the open-source package axios version 1.15.0, which provides the HTTPS/HTTP client used by the extension. Fixes for these vulnerabilities were made available in axios version 1.15.2. Vulnerability Details CVEID:CVE-2026-42033 DESCRIPTION: Axios ...

7.5CVSS6AI score0.00421EPSS

Exploits8Affected Software1

AstraLinux•added 2026/05/20 5:53 a.m.•8 views

Astra Linux - уязвимость в linux, linux-5.10

A flaw was discovered in the s390 eBPF JIT mechanism within bpfjitinsn in the arch/s390/net/bpfjitcomp.c file of the Linux kernel. In this flaw, a local attacker with special user privileges can bypass the verifier, potentially leading to confidentiality issues...

5.5CVSS6.7AI score0.00254EPSS

Ubuntu•added 2026/05/19 10:20 p.m.•21 views

USN-8277-1: Linux kernel vulnerabilities

It was discovered that the Linux kernel algifaead module did not properly handle in-place cryptographic operations. This flaw is known as Copy Fail. A local attacker could use this to escalate privileges, or possibly escape a container. CVE-2026-31431 Several security issues were discovered in th...

9.8CVSS7AI score0.96775EPSS

Exploits227

AstraLinux•added 2026/05/03 11:59 p.m.•8 views

Astra Linux - уязвимость в linux-5.15

In the Linux kernel, the following vulnerability has been resolved: s390/qeth: fix use-after-free in hsci KASAN found that addr was dereferenced after br2deveventwork was freed. ================================================================== BUG: KASAN: use-after-free in...

7.8CVSS7.5AI score0.00238EPSS

AstraLinux•added 2026/05/03 11:59 p.m.•1 views

Astra Linux – Vulnerability in Linux 5.10, Linux, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: s390/dasd: Fixed a potential memory leak in dasdeckdinit. The dasdreservereq resource is allocated before dasdvolinforeq, and it also needs to be freed before the error is returned, just like in the other cases within this...

5.5CVSS5.5AI score0.00142EPSS

NVD•added 2026/04/29 4:16 a.m.•9 views

CVE-2026-23773

Dell Disk Library for Mainframe, versions DLm 8700/2700 contains a Server-Side Request Forgery SSRF vulnerability. A low privileged attacker with remote access could potentially exploit this vulnerability, leading to Server-side request forgery...

4.3CVSS0.00239EPSS

ATTACKERKB•added 2026/04/29 3:39 a.m.•2 views

CVE-2026-23773

CVE•added 2026/04/29 3:39 a.m.•12 views

CVE-2026-23773

Dell Disk Library for Mainframe (DLm 8700/2700) contains a Server-Side Request Forgery (SSRF) vulnerability. A low-privilege attacker with remote access could exploit this to perform SSRF. The CVSS v3.1 base score is 4.3 (Network, Low attack complexity, Privileges Required: Low, No user interacti...

Vulnrichment•added 2026/04/29 3:39 a.m.•3 views

CVE-2026-23773

EUVD•added 2026/04/29 3:39 a.m.•6 views

EUVD-2026-26190

Cvelist•added 2026/04/29 3:39 a.m.•28 views

CVE-2026-23773

4.3CVSS0.00239EPSS

Positive Technologies•added 2026/04/29 12:0 a.m.•6 views

PT-2026-35865

CNNVD•added 2026/04/29 12:0 a.m.•8 views

Dell Disk Library for Mainframe 代码问题漏洞

Dell Disk Library for Mainframe is an enterprise-level storage system developed by the American company Dell. It provides virtual tape libraries and data storage management capabilities for mainframe environments. There are code-related vulnerabilities in the Dell Disk Library for Mainframe DLm...

4.3CVSS5.8AI score0.00239EPSS

Positive Technologies•added 2026/04/24 12:0 a.m.•4 views

PT-2026-34920

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the s390 architecture memory management where secure storage access exceptions occur in a kernel context for pages lacking the PG arch 1 bit. This bit is absent on...

7.1CVSS5.4AI score0.00124EPSS

Exploits0References99

Positive Technologies•added 2026/04/22 12:0 a.m.•6 views

PT-2026-34387

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the s390 architecture where the r12 register is not properly cleared during kernel entry. Previously, entry handlers loaded r12 with the current task pointer for use b...

5.5CVSS5.2AI score0.00122EPSS

Exploits0References8

Redos•added 2026/04/07 12:0 a.m.•2 views

ROS-20260407-73-0037

A vulnerability in the s390/char/sclp.c component of the Linux operating system kernel is related to incorrect validation of a specified index, position or offset in input data. Exploitation of the vulnerability allows an attacker to cause a denial of service...

5.5CVSS6.1AI score0.00147EPSS

Exploits0

CVE•added 2026/03/10 10:49 p.m.•24 views

CVE-2025-20027

CVE-2025-20027: Improper input validation in the UEFI WheaERST module on Intel reference platforms can allow local privilege escalation by a privileged user with high complexity. Affected items are Intel UEFI firmware components; exploitation requires local access and no user interaction. The CVS...

7.1CVSS5.7AI score0.00102EPSS

Cvelist•added 2026/02/14 4:1 p.m.•25 views

CVE-2026-23147 btrfs: zlib: fix the folio leak on S390 hardware acceleration

In the Linux kernel, the following vulnerability has been resolved: btrfs: zlib: fix the folio leak on S390 hardware acceleration BUG After commit aa60fe12b4f4 "btrfs: zlib: refactor S390x HW acceleration buffer preparation", we no longer release the folio of the page cache of folio returned by...

0.00108EPSS