CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

199 matches found

CVE•added 2026/05/28 9:35 a.m.•11 views

CVE-2026-46119

CVE-2026-46119 affects the Linux kernel libceph component. The flaw is a slab-out-of-bounds access in auth message processing: if CEPH_MSG_AUTH_REPLY carries a positive result, it is misinterpreted as an error code and later as the size of the front segment, causing out-of-bounds reads. The fix t...

9.1CVSS6AI score0.00072EPSS

Exploits0References7

CNNVD•added 2026/05/28 12:0 a.m.•5 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from out-of-bounds access in the libceph authentication message processing mechanism. This vulnerabili...

9.1CVSS5.9AI score0.00072EPSS

Exploits0References5

CNNVD•added 2026/04/30 12:0 a.m.•4 views

Absolute Secure Access 安全漏洞

Absolute Secure Access is an application developed by Absolute Corporation. It provides secure service edge SSE services optimized for mixed and mobile work environments. Versions of Absolute Secure Access prior to 14.50 contained a security vulnerability caused by a buffer overflow in the messag...

7.5CVSS6.1AI score0.00061EPSS

Exploits0References1

Fedora•added 2026/04/28 1:36 a.m.•4 views

[SECURITY] Fedora 44 Update: botan3-3.9.0-7.fc44

Botan is a BSD-licensed crypto library written in C++. It provides a wide variety of basic cryptographic algorithms, X.509 certificates and CRLs, PKCS \11 certificate requests, a filter/pipe message processing system, and a wide variety of other features, all written in portable C++. The API...

9.3CVSS5.2AI score0.00065EPSS

Exploits0

ICS•added 2026/04/13 12:30 a.m.•2 views

ABB System 800xA, Symphony Plus IEC 61850

SUMMARY This vulnerability was privately reported relating to ABB’s implementation of the IEC 61850 communication stack for MMS client applications used in some Automation control system products. Note: IEC 61850 communication typically supports MMS and GOOSE protocols. Some ABB products support...

7.1CVSS5.7AI score0.00027EPSS

Exploits0References19

Positive Technologies•added 2026/04/09 12:0 a.m.•1 views

PT-2026-31811

Name of the Vulnerable Software and Affected Versions DTLS 1.3 affected versions not specified Description A heap buffer overflow exists in the processing of DTLS 1.3 ACK messages. A remote attacker can potentially trigger this overflow by sending a crafted DTLS 1.3 ACK message. Recommendations A...

8.3CVSS6.1AI score0.00138EPSS

Exploits0References4

NVD•added 2026/02/03 8:15 p.m.•3 views

CVE-2025-64438

Fast DDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group . Prior to versions 3.4.1, 3.3.1, and 2.6.11, a remotely triggerable Out-of-Memory OOM denial-of-service exists in Fast -DDS when processing RTPS GAP submessages under RELIABLE QoS. B...

7.5CVSS0.00044EPSS

Exploits0References4

CVE•added 2026/02/03 7:32 p.m.•7 views

CVE-2025-64438

CVE-2025-64438 affects Fast DDS, a C++ implementation of the DDS standard. The issue is an Out-of-Memory (OOM) denial-of-service triggered remotely when processing RTPS GAP submessages under RELIABLE QoS: sending a GAP packet with a huge gap range causes StatefulReader::processGapMsg() to loop un...

7.5CVSS5.5AI score0.00044EPSS

Exploits0References4Affected Software1

CNNVD•added 2026/02/03 12:0 a.m.•3 views

eProsima Fast DDS 安全漏洞

eProsima Fast DDS is a C++ implementation of the OMG Object Management Group DDS Data Distribution Service standard from eProsima Corporation. Versions prior to 3.4.1, 3.3.1, and 2.6.11 of eProsima Fast DDS contained security vulnerabilities. These vulnerabilities stemmed from infinite loops duri...

7.5CVSS5.8AI score0.00044EPSS

Exploits0References5

NVD•added 2026/01/07 5:16 p.m.•4 views

CVE-2025-65805

OpenAirInterface CN5G AMF=v2.1.9 has a buffer overflow vulnerability in processing NAS messages. Unauthorized remote attackers can launch a denial-of-service attack and potentially execute malicious code by accessing port N1 and sending an imsi string longer than 1000 to AMF...

7.5CVSS0.00131EPSS

Exploits0References1

SUSE CVE•added 2025/12/20 12:45 a.m.•4 views

SUSE CVE-2025-34449

Genymobile/scrcpy versions up to and including 3.3.3, prior to commit 3e40b24, contain a buffer overflow vulnerability in the scdevicemsgdeserialize function. A compromised device can send crafted messages that cause out-of-bounds reads, which may result in memory corruption or a denial-of-servic...

9.1CVSS7AI score0.00088EPSS

Exploits1References3

Vulnrichment•added 2025/12/18 9:15 p.m.•1 views

CVE-2025-34449 Genymobile/scrcpy <= 3.3.3 Global Buffer Overflow

6.9CVSS6.5AI score0.00088EPSS

Exploits1References4

CVE•added 2025/12/18 9:15 p.m.•14 views

CVE-2025-34449

Genymobile/scrcpy

9.1CVSS6.5AI score0.00088EPSS

Exploits1References4Affected Software1

Veracode•added 2025/11/06 4:28 p.m.•4 views

Prototype Pollution

@messageformat/runtime is vulnerable to Prototype Pollution. The vulnerability is due to insufficient validation of nested message keys during message data processing, which allows an attacker to inject arbitrary properties into the Object prototype and cause denial of service or unexpected...

5.3CVSS6.8AI score0.00131EPSS

Exploits0References7Affected Software1

NVD•added 2025/11/04 4:15 a.m.•3 views

CVE-2025-47360

Memory corruption while processing client message during device management...

7.8CVSS0.00018EPSS

Exploits0References1