CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

192 matches found

RedHat Linux•added 2026/05/05 9:29 a.m.•2 views

libpng: libpng: Arbitrary code execution due to use-after-free vulnerability

A flaw was found in libpng, a library used for processing PNG Portable Network Graphics image files. This vulnerability arises from improper memory management where a heap-allocated buffer is aliased between internal data structures. When specific functions are called, a freed memory region can...

7.5CVSS6.8AI score0.00026EPSS

Exploits1References10

OpenVAS•added 2026/04/14 12:0 a.m.•2 views

Ubuntu: Security Advisory (USN-8172-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.9AI score0.00101EPSS

Exploits1References2

CNNVD•added 2026/04/13 12:0 a.m.•3 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the mtypedel function not properly deleting logical empty buckets, potentially leading to memory...

5.5CVSS5.8AI score0.00015EPSS

Exploits0References6

RedhatCVE•added 2026/03/26 3:16 p.m.•1 views

CVE-2026-20687

A use after free issue was addressed with improved memory management. This issue is fixed in iOS 18.7.7 and iPadOS 18.7.7, iOS 26.4 and iPadOS 26.4, macOS Sequoia 15.7.5, macOS Tahoe 26.4, tvOS 26.4, watchOS 26.4. An app may be able to cause unexpected system termination or write kernel memory...

7.1CVSS5.8AI score0.00005EPSS

Exploits0References1

Ubuntu•added 2026/03/24 8:34 p.m.•7 views

USN-8122-1: PJSIP vulnerabilities

Youngsung Kim discovered that PJSIP did not properly parse numeric header fields in SIP messages. A remote attacker could use this issue to cause PJSIP to crash, resulting in a denial of service, or possibly execute arbitrary code. This issue only affected Ubuntu 16.04 LTS. CVE-2017-16872 Peter...

9.8CVSS7.4AI score0.01675EPSS

Exploits4

Positive Technologies•added 2026/03/04 12:0 a.m.•3 views

PT-2026-23016

A vulnerability in the Do Not Decrypt exclusion feature of the SSL decryption feature of Cisco Secure Firewall Threat Defense FTD Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to improper memory...

6.8CVSS6AI score0.00048EPSS

Exploits0References2

Tenable Nessus•added 2026/01/22 12:0 a.m.•2 views

Azure Linux 3.0 Security Update: kernel (CVE-2024-50064)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-50064 advisory. - In the Linux kernel, the following vulnerability has been resolved: zram: free secondary algorithms names We...

5.5CVSS6.7AI score0.00035EPSS

Exploits0References2

RedHat Linux•added 2025/11/11 1:58 p.m.•2 views

webkitgtk: Processing maliciously crafted web content may lead to an unexpected Safari crash

A flaw was found in WebKitGTK. Processing malicious web content can cause a use-after-free issue due to improper memory management and result in an unexpected process crash...

4.3CVSS5.7AI score0.00099EPSS

Exploits0References6