CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

125445 matches found

IBM Security Bulletins•added 2026/05/07 6:1 p.m.•15 views

Security Bulletin: Vulnerabilities have been identified in IBM® SDK, Java™ Technology Edition shipped with IBM Buinses Automation Workflow due to the April 2026 Java CPU

Summary WebSphere Application Server is shipped as a component of IBM Business Automation Workflow. Information about security vulnerabilities in IBM® SDK, Java™ Technology Edition affecting IBM WebSphere Application Server Traditional have been published in a security bulletin. Vulnerability...

5.8AI score

Exploits0Affected Software2

IBM Security Bulletins•added 2026/05/07 5:35 p.m.•4 views

Security Bulletin: IBM MQ Appliance is affected by an integer overflow (CVE-2022-50865)

Summary IBM MQ Appliance has addressed an integer overflow. Vulnerability Details CVEID:CVE-2022-50865 DESCRIPTION: In the Linux kernel, the following vulnerability has been resolved: tcp: fix a signed-integer-overflow bug in tcpaddbacklog The type of skrcvbuf and sksndbuf in struct sock is int,...

5.8AI score0.00168EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2026/05/07 5:35 p.m.•9 views

Security Bulletin: IBM MQ Appliance is affected by a denial of service vulnerability (CVE-2026-21945)

Summary IBM MQ Appliance has addressed a denial of service vulnerability. Vulnerability Details CVEID:CVE-2026-21945 DESCRIPTION: Java SE is vulnerable to a denial of service, caused by an easily exploitable vulnerability issue that allows an remote attacker to cause a hang or repeatable crash of...

7.5CVSS5.8AI score0.00572EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2026/05/07 5:35 p.m.•7 views

Security Bulletin: IBM MQ Appliance is affected by a default password vulnerability (CVE-2025-14917)

Summary IBM MQ Appliance has addressed a default password vulnerability. Vulnerability Details CVEID:CVE-2025-14917 DESCRIPTION: IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.3 IBM WebSphere Application Server Liberty could provide weaker than expected security when...

9.8CVSS5.8AI score0.00355EPSS

Exploits0Affected Software1

GithubExploit•added 2026/05/07 4:31 p.m.•89 views

Exploit for Incorrect Resource Transfer Between Spheres in Linux Linux_Kernel

CVE-2026-31431 "Copy Fail" — Technical Deep Dive Severity:...

7.8CVSS6.4AI score0.94016EPSS

Exploits227

RedHat Linux•added 2026/05/07 4:23 p.m.•10 views

Important: Red Hat Security Advisory: Red Hat OpenShift distributed tracing platform (Tempo) 3.9.3 release

Red Hat OpenShift distributed tracing platform Tempo 3.9.3 has been released This release of the Red Hat OpenShift distributed tracing platform Tempo provides security improvements and bug fixes. Breaking changes: None. Deprecations: None. Technology Preview features: None. Enhancements: None. Bu...

8.2CVSS5.8AI score0.00635EPSS

Exploits0References8

GithubExploit•added 2026/05/07 3:25 p.m.•141 views

Exploit for Incorrect Resource Transfer Between Spheres in Linux Linux_Kernel

Copy Fail 2 — Electric Boogaloo Unprivileged local privilege...

7.8CVSS6AI score0.94016EPSS

Exploits227

GithubExploit•added 2026/05/07 2:59 p.m.•78 views

Exploit for CVE-2026-38360

CVE-2026-38360: Directory Traversal in dash-uploader !CVE...

6AI score0.05982EPSS

Exploits5

GithubExploit•added 2026/05/07 2:44 p.m.•67 views

Exploit for CVE-2026-40003

CVE-2026-40003 aka Joselito is arbitrary memory write vulnerabil...

5.1CVSS5.9AI score0.00296EPSS

Exploits1

IBM Security Bulletins•added 2026/05/07 2:34 p.m.•7 views

Security Bulletin: IBM Maximo Scheduler Optimizer uses lodash-4.17.23.tgz which is vulnerable to CVE-2026-2950, CVE-2026-4800

Summary IBM Maximo Scheduler Optimizer uses lodash-4.17.23.tgz which is vulnerable to CVE-2026-2950, CVE-2026-4800. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2026-2950 DESCRIPTION: Impact: Lodash versions 4.17.23 and earlier ar...

9.8CVSS6AI score0.01026EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2026/05/07 2:33 p.m.•7 views

Security Bulletin: IBM Maximo Scheduler Optimizer uses cryptography-46.0.5-cp311-abi3-manylinux_2_34_x86_64.whl which is vulnerable to CVE-2026-34073

Summary IBM Maximo Scheduler Optimizer uses cryptography-46.0.5-cp311-abi3-manylinux234x8664.whl which is vulnerable to CVE-2026-34073. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2026-34073 DESCRIPTION: cryptography is a package...

6.3CVSS5.7AI score0.00154EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2026/05/07 2:32 p.m.•7 views

Security Bulletin: IBM Maximo Scheduler Optimizer uses brace-expansion-1.1.11.tgz which is vulnerable to CVE-2026-33750

Summary IBM Maximo Scheduler Optimizer uses brace-expansion-1.1.11.tgz which is vulnerable to CVE-2026-33750. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2026-33750 DESCRIPTION: The brace-expansion library generates arbitrary...

7.5CVSS5.9AI score0.0043EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2026/05/07 2:30 p.m.•9 views

Security Bulletin: IBM Maximo Scheduler Optimizer uses requests-2.32.5-py3-none-any.whl which is vulnerable to CVE-2026-25645

Summary IBM Maximo Scheduler Optimizer uses requests-2.32.5-py3-none-any.whl which is vulnerable to CVE-2026-25645. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2026-25645 DESCRIPTION: Requests is a HTTP library. Prior to version...

5.5CVSS5.8AI score0.00157EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2026/05/07 2:29 p.m.•11 views

Security Bulletin: IBM Maximo Scheduler Optimizer uses werkzeug-3.1.5-py3-none-any.whl which is vulnerable to CVE-2026-27199

Summary IBM Maximo Scheduler Optimizer uses werkzeug-3.1.5-py3-none-any.whl which is vulnerable to CVE-2026-27199. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2026-27199 DESCRIPTION: Werkzeug is a comprehensive WSGI web applicati...

6.3CVSS5.7AI score0.00556EPSS

Exploits1Affected Software1

IBM Security Bulletins•added 2026/05/07 2:0 p.m.•6 views

Security Bulletin: IBM Maximo Scheduler Optimizer uses flask-3.1.2-py3-none-any.whl which is vulnerable to CVE-2026-27205

Summary IBM Maximo Scheduler Optimizer uses flask-3.1.2-py3-none-any.whl which is vulnerable to CVE-2026-27205. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2026-27205 DESCRIPTION: Flask is a web server gateway interface WSGI web...

4.3CVSS5.8AI score0.00374EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2026/05/07 1:57 p.m.•7 views

Security Bulletin: IBM Maximo Application Suite - IoT Component uses multiple third party dependencies which is vulnerable to multiple CVEs.

Summary IBM Maximo Application Suite - IoT Component uses cryptography-46.0.5-cp311-abi3-manylinux234x8664.whl, cryptography-46.0.6-cp311-abi3-manylinux234x8664.whl, pyasn1-0.6.2-py3-none-any.whl, requests-2.32.5-py3-none-any.whl, bcprov-jdk18on-1.83.jar, pygments-2.19.2-py3-none-any.whl,...

9.8CVSS5.6AI score0.00606EPSS

Exploits2Affected Software1

IBM Security Bulletins•added 2026/05/07 1:52 p.m.•5 views

Security Bulletin: IBM Maximo Scheduler Optimizer uses minimatch-3.1.2.tgz which is vulnerable to CVE-2026-26996

Summary IBM Maximo Scheduler Optimizer uses minimatch-3.1.2.tgz which is vulnerable to CVE-2026-26996. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2026-26996 DESCRIPTION: minimatch is a minimal matching utility for converting glo...

8.7CVSS5.7AI score0.005EPSS

Exploits1Affected Software1

IBM Security Bulletins•added 2026/05/07 1:49 p.m.•7 views

Security Bulletin: IBM Maximo Scheduler Optimizer uses minimatch-3.1.2.tgz which is vulnerable to CVE-2026-26996, CVE-2026-27903, CVE-2026-27904

Summary IBM Maximo Scheduler Optimizer uses minimatch-3.1.2.tgz which is vulnerable to CVE-2026-26996, CVE-2026-27903, CVE-2026-27904. This bulletin contains information regarding the vulnerability and its fixture. Vulnerability Details CVEID:CVE-2026-26996 DESCRIPTION: minimatch is a minimal...

8.7CVSS5.7AI score0.005EPSS

Exploits3Affected Software1

IBM Security Bulletins•added 2026/05/07 1:38 p.m.•12 views

Security Bulletin: IBM App Connect Enterprise Certified Container UBI updates

Summary IBM App Connect Enterprise Certified Container ACEcc is built on the Red Hat Universal Base Images. ACEcc operator versions 12.0.23 LTS and 13.1.0 contain fixes to the listed CVEs found in the base images. This bulletin provides patch information to address the reported vulnerabilities...

9.2CVSS5.7AI score0.01092EPSS

Exploits1Affected Software1

IBM Security Bulletins•added 2026/05/07 1:37 p.m.•9 views

Security Bulletin: IBM App Connect Enterprise Certified Container backup and restore is vulnerable to authorization bypass (CVE-2026-33186)

Summary gRPC-Go is used by the IBM App Connect Enterprise Certified Container Velero image. IBM App Connect Enterprise Certified Container deployments that use Velero for backup and restore are vulnerable to authorization bypass. This bulletin provides patch information to address the reported...

9.1CVSS5.8AI score0.00522EPSS

Exploits1Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by