CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

AstraLinux•added last week•7 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: virtio-vdpa: Fixed a cpumask memory leak in virtiovdpafindvqs Free the cpumask allocated by createaffinitymasks before returning from the function...

5.3AI score0.00155EPSS

CVE•added 2026/06/10 9:52 p.m.•24 views

CVE-2026-48724

ImageMagick (CVE-2026-48724) fixes a heap buffer underwrite in Floyd‑Steinberg depth dithering when processing images with a mask. Affected versions prior to 7.1.2-24 are vulnerable; the issue is patched in 7.1.2-24. CVSSv3.1 base score 5.5 (Medium) with Local attack vector, Low attack complexity...

5.5CVSS5.6AI score0.00103EPSS

Exploits0References1Affected Software1

OSSF Malicious Packages•added 2026/06/09 6:3 p.m.•14 views

Malicious code in fhirproxy-utils (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 405cf847121f4bfed32bc5679a40b64c1338b142af75823ef9583944a7ae7b5a On npm install via the prepare lifecycle hook and many other lifecycle aliases and on require, index.js performs broad reconnaissance and exfiltratio...

5.5AI score

SUSE CVE•added 2026/06/06 2:45 a.m.•7 views

SUSE CVE-2026-49940

Net::CIDR::Set versions through 0.20 for Perl accept non-ASCII IP addresses and netmasks. Unicode digits such as the Arabic-Indic One U+0661 were accepted but not properly parsed as numbers. This could allow network masks to accept larger networks...

6.5CVSS5.5AI score0.00196EPSS

SUSE CVE•added 2026/06/06 2:45 a.m.•6 views

SUSE CVE-2026-49942

Net::CIDR::Set versions through 0.20 for Perl did not validate network masks. The mask portion of a network mask could contain Unicode digits such as the Arabic-Indic One U+0661, or non-digits, which were ignored. This could allow network masks to accept larger networks. Leading zeros were also...

7.3CVSS5.5AI score0.00312EPSS

Exploits0References4

NVD•added 2026/06/04 5:16 p.m.•8 views

CVE-2026-49940

6.5CVSS0.00196EPSS

Cvelist•added 2026/06/04 4:7 p.m.•34 views

CVE-2026-49942 Net::CIDR::Set versions through 0.20 for Perl did not validate network masks

0.00312EPSS

ATTACKERKB•added 2026/06/04 4:7 p.m.•7 views

CVE-2026-49942

7.3CVSS5.8AI score0.00312EPSS

Exploits0References4

EUVD•added 2026/06/04 4:7 p.m.•8 views

EUVD-2026-34299

7.3CVSS5.8AI score0.00312EPSS

Vulnrichment•added 2026/06/04 4:7 p.m.•8 views

CVE-2026-49942 Net::CIDR::Set versions through 0.20 for Perl did not validate network masks

5.8AI score0.00312EPSS

CVE•added 2026/06/04 4:7 p.m.•21 views

CVE-2026-49942

CVE-2026-49942 affects Net::CIDR::Set for Perl up to version 0.20. The vulnerability stems from improper validation of network masks: the mask portion could contain Unicode digits (e.g., Arabic-Indic One U+0661) or non-digits, which were ignored, potentially allowing larger networks. Leading zero...

7.3CVSS5.8AI score0.00312EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2026/06/04 4:7 p.m.•8 views

CVE-2026-49940 Net::CIDR::Set versions through 0.20 for Perl accept non-ASCII IP addresses and netmasks

5.8AI score0.00196EPSS

Positive Technologies•added 2026/06/04 12:0 a.m.•12 views

PT-2026-46268

Name of the Vulnerable Software and Affected Versions Net::CIDR::Set versions prior to 0.21 Description Net::CIDR::Set for Perl fails to properly validate network masks. The mask portion may contain non-digits or Unicode digits, such as the Arabic-Indic One U+0661, which are ignored, potentially...

7.3CVSS5.4AI score0.00312EPSS

Exploits0References6

CNNVD•added 2026/06/04 12:0 a.m.•7 views

Net::CIDR::Set 安全漏洞

Net::CIDR::Set is a Perl network address management library developed by RRWO’s individual developers. Versions of Net::CIDR::Set prior to 0.20 contained security vulnerabilities. These vulnerabilities stemmed from the acceptance of non-ASCII IP addresses and network masks. Unicode digits like...

6.5CVSS5.3AI score0.00196EPSS

ATTACKERKB•added 2026/06/02 4:16 p.m.•7 views

CVE-2026-49943

CZ.NIC BIRD Internet Routing Daemon through 2.19.0 contains a stack-based buffer overflow in the BGP ASPATH mask matching implementation in nest/a-path.c. The aspathmatch function uses a fixed-size stack array of 2048 + 1 pmpos entries, while parsepath expands ASPATH segments from a received BGP...

6.3CVSS6.1AI score0.003EPSS

Exploits2References3

SUSE CVE•added 2026/05/28 3:55 a.m.•8 views

SUSE CVE-2026-45981

In the Linux kernel, the following vulnerability has been resolved: s390/cio: Fix device lifecycle handling in cssallocsubchannel cssallocsubchannel calls deviceinitialize before setting up the DMA masks. If dmasetcoherentmask or dmasetmask fails, the error path frees the subchannel structure...

5.5CVSS5.7AI score0.00126EPSS

CNNVD•added 2026/05/26 12:0 a.m.•9 views

Hitachi多款产品安全漏洞

Hitachi Ops Center Analyzer, among others, are products of Hitachi, Ltd., a Japanese company. Hitachi Ops Center Analyzer is a data center management software. Hitachi Infrastructure Analytics Advisor is an IT operations intelligence platform, including Hitachi data center analysis capabilities...

4.6CVSS5.8AI score0.00175EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: net: ipa: fixed the field masks for the GENERICCMD register for IPA v5.0+. The field masks have been adjusted to match the hardware layout documented in downstream GSI GSIV30EEnGSIEEGENERICCMD. Notably, this fixes a warning that ...

5.5CVSS5.3AI score0.00122EPSS

Tenable Nessus•added 2026/05/19 12:0 a.m.•7 views

Fedora 43 : perl-Net-CIDR-Lite (2026-9e783d6aa1)

The remote Fedora 43 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-9e783d6aa1 advisory. This update addresses some input validation issues: Reject Unicode digits and trailing newlines in parser inputs CVE-2026-45190 Reject zero-padded...

6.5CVSS5.9AI score0.00311EPSS