CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

349 matches found

EUVD-2026-34040

When returning errors, functions in the net/textproto package would include its input as part of the error. This might allow an attacker to inject misleading content to errors that are printed or logged...

5.8AI score0.00018EPSS

Exploits0References5

NVD•added 2 days ago•4 views

CVE-2026-42507

5.3CVSS0.00018EPSS

Exploits0References4

OSV•added 2 days ago•1 views

DEBIAN-CVE-2026-42507

5.3CVSS5.8AI score0.00018EPSS

Exploits0References1

Debian CVE•added 2 days ago•2 views

CVE-2026-42507

5.3CVSS5.8AI score0.00018EPSS

Exploits0

ATTACKERKB•added 2 days ago•3 views

CVE-2026-42507

5.8AI score0.00018EPSS

Exploits0References5Affected Software1

Malwarebytes•added 2 days ago•5 views

23andMe exposed genetic information of millions, lawsuit says

California has sued the former shell of DNA testing company 23andMe over alleged security failures and misleading statements surrounding its 2023 data breach. On May 27, 2026, Attorney General Rob Bonta filed suit in San Francisco Superior Court against Chrome Holding Co., the company now handlin...

5.8AI score

Exploits0

EUVD•added 2 days ago•7 views

EUVD-2026-33804

In getApplicationLabel of KeyChainActivity.java, there is a possible way to trick the user into approving access to certificates due to misleading or insufficient UI. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed fo...

7.8CVSS5.9AI score0.00003EPSS

Exploits0References2

EUVD•added 2 days ago•6 views

EUVD-2026-33806

In getAppLabel of ForgetDeviceDialogFragment.java, there is a possible trick the user into forgetting a device due to misleading or insufficient UI. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS5.9AI score0.00005EPSS

Exploits0References2

EUVD•added 2 days ago•6 views

EUVD-2026-33803

In multiple locations, there is a possible misleading UI due to obfuscation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS5.9AI score0.00005EPSS

Exploits0References2

NVD•added 3 days ago•6 views

CVE-2026-0094

7.8CVSS0.00003EPSS

Exploits0References1

NVD•added 3 days ago•6 views

CVE-2026-0093

7.8CVSS0.00005EPSS

Exploits0References1

Vulnrichment•added 3 days ago•7 views

CVE-2026-0094

5.9AI score0.00003EPSS

Exploits0References1

Vulnrichment•added 3 days ago•6 views

CVE-2026-0096

5.9AI score0.00005EPSS

Exploits0References1

Cvelist•added 3 days ago•23 views

CVE-2026-0094

0.00003EPSS

Exploits0References1

ATTACKERKB•added 3 days ago•5 views

CVE-2026-0096

7.8CVSS5.9AI score0.00005EPSS

Exploits0References2Affected Software1

ATTACKERKB•added 3 days ago•3 views

CVE-2026-0093

7.8CVSS5.9AI score0.00005EPSS

Exploits0References2Affected Software1

CVE•added 3 days ago•5 views

CVE-2026-0088

The CVE-2026-0088 affects Android’s CertInstaller.getCallingAppLabel, where a misleading or insufficient UI could allow hiding a sensitive security dialogue. This enables local privilege escalation with no extra privileges and no user interaction required for exploitation, as described across NVD...

7.8CVSS5.9AI score0.00005EPSS

Exploits0References1Affected Software1

CVE•added 3 days ago•4 views

CVE-2026-0093

Technical details for CVE-2026-0093 are not publicly available in the provided documents (no affected products, fixes, or exploit info). Monitor for updates from official sources.

7.8CVSS5.9AI score0.00005EPSS

Exploits0References1Affected Software1