CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

262 matches found

Tenable Nessus•added 2026/05/11 12:0 a.m.•5 views

Unity Linux 20.1060e / 20.1070e Security Update: openldap (UTSA-2026-017655)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017655 advisory. A flaw was found in OpenLDAP. This flaw allows an attacker who can send a malicious packet to be processed by OpenLDAPs slapd server, to trigger an assertion failure...

7.5CVSS5.7AI score0.35675EPSS

Exploits0References4

AstraLinux•added 2026/05/03 11:59 p.m.•4 views

Astra Linux - уязвимость в openldap

A flaw was discovered in OpenLDAP in versions prior to 2.4.56. This flaw allows an attacker who sends a malicious packet processed by OpenLDAP to force a failed assertion in csnNormalize23. The greatest threat of this vulnerability is to system availability...

7.5CVSS7.1AI score0.1746EPSS

Exploits0References1

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux - уязвимость в openldap

A flaw was found in OpenLDAP. This flaw allows an attacker who can send a malicious packet to be processed by OpenLDAP’s slapd server, to trigger an assertion failure. The highest threat from this vulnerability is to system availability...

7.5CVSS6.6AI score0.35675EPSS

Exploits0References1

AstraLinux•added 2026/05/03 11:59 p.m.•4 views

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

A null pointer dereference flaw was discovered in the Linux kernel API for the cryptographic algorithm scatterwalk functionality. This issue occurs when a user constructs a malicious packet with specific socket configurations, which could allow a local user to crash the system or escalate their...

4.7CVSS6.6AI score0.0001EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux - уязвимость в linux, linux-5.10

A stack overflow flaw was discovered in the Linux kernel’s TIPC protocol functionality. This flaw occurs when a user sends a packet containing malicious content, where the number of domain member nodes exceeds the allowed limit of 64. This flaw allows a remote user to crash the system or...

9CVSS6.9AI score0.54322EPSS

Exploits2References2

OSV•added 2026/04/24 3:39 p.m.•0 views

GHSA-F5V4-2WR6-HQMG russh has pre-auth DoS via unbounded allocation in its keyboard-interactive auth handler

Summary A pre-authentication denial-of-service vulnerability exists in the server's keyboard-interactive authentication handler. A malicious client can crash any russh-based server that implements keyboard-interactive auth e.g., for 2FA/TOTP with a single malformed packet, requiring no credential...

7.5CVSS5.5AI score0.00185EPSS

Exploits1References5

OSV•added 2026/04/21 12:4 a.m.•0 views

JLSEC-2026-162

A flaw was found in OpenLDAP in versions before 2.4.56. This flaw allows an attacker who sends a malicious packet processed by OpenLDAP to force a failed assertion in csnNormalize23. The highest threat from this vulnerability is to system availability...

7.5CVSS5.7AI score0.1746EPSS

Exploits0References14

OSV•added 2026/04/21 12:4 a.m.•0 views

JLSEC-2026-161

7.5CVSS5.7AI score0.35675EPSS

Exploits0References16

OSV•added 2026/01/27 4:16 p.m.•1 views

CVE-2025-55102

A denial-of-service vulnerability exists in the NetX IPv6 component functionality of Eclipse ThreadX NetX Duo. A specially crafted network packet of "Packet Too Big" with more than 15 different source address can lead to denial of service. An attacker can send a malicious packet to trigger this...

8.7CVSS5.8AI score

Exploits0References1

NVD•added 2026/01/27 4:16 p.m.•2 views

CVE-2025-55102

8.7CVSS0.00038EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:58 a.m.•7 views

CVE-2023-45318

A heap-based buffer overflow vulnerability exists in the HTTP Server functionality of Weston Embedded uC-HTTP git commit 80d4004. A specially crafted network packet can lead to arbitrary code execution. An attacker can send a malicious packet to trigger this vulnerability...

10CVSS7.8AI score0.00589EPSS

Exploits1References1

RedhatCVE•added 2026/01/07 9:41 a.m.•4 views

CVE-1999-0274

Denial of service in Windows NT DNS servers through malicious packet which contains a response to a query that wasn't made...

5CVSS6.8AI score0.04875EPSS

Exploits0References1

GithubExploit•added 2025/11/08 3:55 p.m.•509 views

Exploit for CVE-2025-48593

CVE-2025-48593 "A single malicious packet can own your device...

8.4CVSS7.5AI score0.00027EPSS

Exploits4

EUVD•added 2025/10/21 3:30 p.m.•2 views

EUVD-2025-35172

Potential stack buffer overwrite on the SFTP server side when receiving a malicious packet that has a handle size larger than the system handle or file descriptor size, but smaller than max handle size allowed...

1.8CVSS6.7AI score0.0006EPSS

Exploits0References2

OSV•added 2025/10/21 2:15 p.m.•2 views

CVE-2025-11624

9.8CVSS7.1AI score

Exploits0References1

NVD•added 2025/10/21 2:15 p.m.•3 views

CVE-2025-11624

9.8CVSS0.0006EPSS

Exploits0References1

Vulnrichment•added 2025/10/21 1:14 p.m.•7 views

CVE-2025-11624 Buffer overwrite when processing file handles with the SFTP server

1.8CVSS6.8AI score0.0006EPSS

Exploits0References1

CVE•added 2025/10/21 1:14 p.m.•3 views

CVE-2025-11624

CVE-2025-11624 affects wolfSSH (SFTP server side) in wolfSSL. A stack buffer overwrite can occur when processing a malicious SFTP packet whose handle size is larger than the system handle or FD size but smaller than the maximum allowed handle size. The vulnerability is described across multiple s...

9.8CVSS6.8AI score0.0006EPSS

Exploits0References1Affected Software1

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2020-5762

Malware in sbrugna...

8.8CVSS8.8AI score0.0004EPSS

Exploits1References2

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-1999-0274

Malware in sbrugna...

5CVSS6.4AI score0.04875EPSS

Exploits0References2