CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

66 matches found

Fedora•added 2026/05/03 1:18 a.m.•4 views

[SECURITY] Fedora 43 Update: glibc-2.42-12.fc43

The glibc package contains standard libraries which are used by multiple programs on the system. In order to save disk space and memory, as well as to make upgrading easier, common system code is kept in one place and shared between programs. This particular package contains the most important se...

9.8CVSS5.9AI score0.0008EPSS

Exploits3

Fedora•added 2026/01/27 6:43 a.m.•5 views

[SECURITY] Fedora 42 Update: glibc-2.41-16.fc42

8.4CVSS6AI score0.0009EPSS

Exploits1

Fedora•added 2026/01/27 4:53 a.m.•3 views

[SECURITY] Fedora 43 Update: glibc-2.42-9.fc43

8.4CVSS6AI score0.0009EPSS

Exploits1

Tenable Nessus•added 2026/01/16 12:0 a.m.•3 views

MiracleLinux 3 : glibc-2.5-107.4.0.1.AXS3 (AXSA:2013-422:02)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2013-422:02 advisory. The glibc package contains standard libraries which are used by multiple programs on the system. In order to save disk space and memory, as well as t...

5CVSS7.7AI score0.03104EPSS

Exploits2References3

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2021-1608

Malware in sbrugna...

5.9CVSS6.3AI score0.00414EPSS

Exploits0References13

Fedora•added 2025/07/29 4:12 a.m.•3 views

[SECURITY] Fedora 41 Update: glibc-2.40-27.fc41

5.9CVSS7.3AI score0.00027EPSS

Exploits0

OSV•added 2025/06/30 6:31 p.m.•1 views

GHSA-994J-5C83-R424 string-math's string-math.js vulnerability can cause Regex Denial of Service (ReDoS)

string-math v1.2.2 was discovered to contain a Regex Denial of Service ReDoS which is exploited via a crafted input...

3.7CVSS5.9AI score0.00329EPSS

Exploits1References5

Fedora•added 2025/06/25 1:44 a.m.•4 views

[SECURITY] Fedora 41 Update: glibc-2.40-26.fc41

5.6CVSS7.3AI score0.00291EPSS

Exploits0

RedHat Linux•added 2025/06/23 2:48 a.m.•4 views

mpfr: buffer overflow in mpfr_strtofr

Buffer overflow in the mpfrstrtofr function in GNU MPFR before 3.1.2-p11 allows context-dependent attackers to have unspecified impact via vectors related to incorrect documentation for mpnsetstr...

9.8CVSS5.9AI score0.04159EPSS

Exploits0References4

OSV•added 2025/05/29 5:27 p.m.•2 views

GHSA-42HM-PQ2F-3R7M PHPOffice Math allows XXE when processing an XML file in the MathML format

Product: Math Version: 0.2.0 CWE-ID: CWE-611: Improper Restriction of XML External Entity Reference CVSS vector v.4.0: 8.7 AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N CVSS vector v.3.1: 7.5 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Description: An attacker can create a special XML file, duri...

8.7CVSS7AI score0.00369EPSS

Exploits0References4

IBM Security Bulletins•added 2024/10/07 10:28 p.m.•25 views

Security Bulletin: A vulnerability in Bouncy Castle affects IBM Robotic Process Automation which could allow an attacker to obtain sensitive information (CVE-2020-15522).

Summary A vulnerability in Bouncy Castle affects IBM Robotic Process Automation which could allow an attacker to obtain sensitive information. IBM Robotic Process Automation uses Bouncy Castle for encrytion. This bulletin identifies the security fixes to apply to address the vulnerability...

5.9CVSS6.2AI score0.00414EPSS

Exploits0Affected Software1

OpenVAS•added 2024/05/27 12:0 a.m.•30 views

Fedora: Security Advisory (FEDORA-2024-eafbf519ec)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.3CVSS8.4AI score0.91924EPSS

Exploits16References3

Fedora•added 2024/04/20 2:14 a.m.•45 views

[SECURITY] Fedora 38 Update: glibc-2.37-19.fc38

7.3CVSS6.6AI score0.91924EPSS

Exploits16

Fedora•added 2023/10/04 5:16 p.m.•71 views

[SECURITY] Fedora 39 Update: glibc-2.38-6.fc39

7.8CVSS7.7AI score0.69916EPSS

Exploits26

RedHat Linux•added 2023/07/06 2:47 a.m.•0 views

golang: math/big: uncontrolled memory consumption due to an unhandled overflow via Rat.SetString

A flaw was found in the big package of the math library in golang. The Rat.SetString could cause an overflow, and if left unhandled, it could lead to excessive memory use. This issue could allow a remote attacker to impact the availability of the system...

7.8CVSS7.2AI score0.00038EPSS

Exploits0References5

Code423n4•added 2022/08/17 12:0 a.m.•10 views

Possible frontrunning attack in Vault.

Lines of code Vulnerability details Impact First depositor will have the control of the vault and drain user funds. Proof of Concept The project uses VaultAccount.sol library for math implementations. To determine the number of shares to mint to a depositor, shares = amount total.shares /...

6.7AI score

Exploits0

Prion•added 2022/08/10 8:15 p.m.•19 views

Denial of service

A too-short encoded message can cause a panic in Float.GobDecode and Rat GobDecode in math/big in Go before 1.17.13 and 1.18.5, potentially allowing a denial of service...

5CVSS7.5AI score0.00113EPSS

Exploits1References5Affected Software1

OSV•added 2022/03/04 9:32 a.m.•4 views

OPENSUSE-SU-2022:0723-1 Security update for go1.17

This update for go1.17 fixes the following issues: - CVE-2022-23806: Fixed incorrect returned value in crypto/elliptic IsOnCurve bsc1195838. - CVE-2022-23772: Fixed overflow in Rat.SetString in math/big can lead to uncontrolled memory consumption bsc1195835. - CVE-2022-23773: Fixed incorrect acce...

9.1CVSS8.7AI score0.00118EPSS

Exploits0References8