CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

36 matches found

OSV•added 2026/05/23 5:41 p.m.•3 views

MAL-2026-4637 Malicious code in pewter-constants (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3c9f898fe8ed95b1d549bfff91d7c0dda0f75ada1c32a58af144940cf28b23c5 On npm install, a preinstall hook in callback.js collects os.hostname, os.userInfo.username, process.cwd, the configured npm registry...

5.8AI score

Exploits0References1

RedhatCVE•added 2026/04/24 8:16 p.m.•2 views

CVE-2026-31617

A flaw was found in the Linux kernel's USB Network Control Model NCM gadget driver. A malicious USB host could exploit an integer underflow vulnerability when processing Network Transfer Block NTB headers. This allows the host to manipulate internal data pointers, causing adjacent kernel memory t...

7CVSS5.1AI score0.00014EPSS

Exploits0References4

Cvelist•added 2026/04/24 2:42 p.m.•29 views

CVE-2026-31617 usb: gadget: f_ncm: validate minimum block_len in ncm_unwrap_ntb()

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fncm: validate minimum blocklen in ncmunwrapntb The blocklen read from the host-supplied NTB header is checked against ntbmax but has no lower bound. When blocklen is smaller than opts-ndpsize, the bounds check of:...

0.00014EPSS

Exploits0References9

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2016-9470

Malware in sbrugna...

7.5CVSS7.3AI score0.01671EPSS

Exploits0References15

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-57717

Malicious code in bioql PyPI...

9.8CVSS9.1AI score0.00275EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2024-46501

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00048EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-19609

Malicious code in bioql PyPI...

6.5CVSS6.3AI score0.00088EPSS

Exploits1References4

RedhatCVE•added 2025/05/23 9:3 a.m.•2 views

CVE-2024-5264

Network Transfer with AES KHT in Thales Luna EFT 2.1 and above allows a user with administrative console access to access backups taken via offline analysis...

6.5CVSS6.8AI score0.00048EPSS

Exploits0References1

RedHat Linux•added 2025/01/27 1:42 a.m.•19 views

Important: Red Hat Security Advisory: rsync security update

An update for rsync is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

7.5CVSS7.2AI score0.1902EPSS

Exploits2References2

NVD•added 2024/05/23 9:15 a.m.•10 views

CVE-2024-5264

Network Transfer with AES KHT in Thales Luna EFT 2.1 and above allows a user with administrative console access to access backups taken via offline analysis...

6.5CVSS5.7AI score0.00048EPSS

Exploits0References1

CVE•added 2024/05/23 8:40 a.m.•97 views

CVE-2024-5264

CVE-2024-5264 concerns Thales Luna EFT 2.1 and newer, where a user with administrative console access can access backups taken via offline analysis due to a vulnerability in the network transfer using AES Key History Transport. The available documents state the affected product and the underlying...

6.5CVSS5.8AI score0.00048EPSS

Exploits0References1Affected Software1

OSV•added 2024/05/17 12:15 p.m.•1 views

DEBIAN-CVE-2024-27405

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ncm: Avoid dropping datagrams of properly parsed NTBs It is observed sometimes when tethering is used over NCM with Windows 11 as host, at some instances, the gadgetgiveback has one byte appended at the end of a prop...

7.5CVSS5.7AI score0.00227EPSS

Exploits0References1

OSV•added 2023/10/04 6:15 p.m.•0 views

CVE-2023-5402