CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

126175 matches found

OSV•added 2026/04/15 1:35 p.m.•4 views

SUSE-SU-2026:1349-1 Security update for python311

This update for python311 fixes the following issues: - Updated to Python 3.11.15 - CVE-2025-6075: If the value passed to os.path.expandvars is user-controlled a performance degradation is possible when expanding environment variables bsc1252974. - CVE-2025-11468: header injection when folding a...

7.5CVSS6.8AI score0.01468EPSS

Exploits0References31

Malwarebytes•added 2026/04/15 1:21 p.m.•11 views

Fake YouTube copyright notices can steal your Google login

A convincing phishing campaign is going after YouTube creators, and if it works, attackers don't just steal your Google login. They can take over your entire Google account, including Gmail, your files, and payments, then hijack your YouTube channel and use your audience to run scams. The lure is...

5.6AI score

Exploits0

IBM Security Bulletins•added 2026/04/15 11:57 a.m.•5 views

Security Bulletin: Rhino CVE-2025-66453 security vulnerability in FileNet Content Manager

Summary Rhino CVE-2025-66453 security vulnerability in FileNet Content Manager. Affected and vulnerable Vulnerability Details CVEID:CVE-2025-66453 DESCRIPTION: Rhino is an open-source implementation of JavaScript written entirely in Java. Prior to 1.8.1, 1.7.15.1, and 1.7.14.1, when an applicatio...

7.5CVSS6.7AI score0.00231EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2026/04/15 11:46 a.m.•4 views

Security Bulletin: IBM App Connect Enterprise Certified Container DesignerAuthoring and Dashboard operands are vulnerable to loss of confidentiality (CVE-2026-26007)

Summary Python module cryptography is used by IBM App Connect Enterprise Certified Container. IBM App Connect Enterprise Certified Container DesignerAuthoring operands that use mapping assistance and Dashboard operands that enable the App Connect Enterprise Agent are vulnerable to loss of...

8.2CVSS5.8AI score0.00227EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2026/04/15 11:36 a.m.•6 views

Security Bulletin: Vulnerability in Werkzeug affects IBM Netezza Appliance

Summary The Werkzeug package is used by IBM Netezza Appliance . IBM Netezza Appliance has addressed the applicable CVE CVE-2025-66221 Vulnerability Details CVEID:CVE-2025-66221 DESCRIPTION: Werkzeug is a comprehensive WSGI web application library. Prior to version 3.1.4, Werkzeug's safejoin...

6.3CVSS6.6AI score0.00466EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2026/04/15 11:16 a.m.•7 views

Security Bulletin:Vulnerabilities in LIBPNG affects IBM Netezza Appliance

Summary The LIBPNG package is used by IBM Netezza Appliance . IBM Netezza Appliance has addressed the applicable CVEs CVE-2025-64720, CVE-2025-65018 & CVE-2025-66293 Vulnerability Details CVEID:CVE-2025-64720 DESCRIPTION: LIBPNG is a reference library for use in applications that read, create, an...

7.1CVSS6.8AI score0.00294EPSS

Exploits6Affected Software1

IBM Security Bulletins•added 2026/04/15 11:10 a.m.•8 views

Security Bulletin: Vulnerability in Lodash affects IBM Netezza Appliance

Summary The Lodash package is used by IBM Netezza Appliance . IBM Netezza Appliance has addressed the applicable CVE CVE-2025-13465 Vulnerability Details CVEID:CVE-2025-13465 DESCRIPTION: Lodash versions 4.0.0 through 4.17.22 are vulnerable to prototype pollution in the .unset and .omit functions...

7.9CVSS6.6AI score0.00317EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2026/04/15 11:7 a.m.•5 views

Security Bulletin: Vulnerability in filelock affects IBM Netezza Appliance

Summary The filelock package is used by IBM Netezza Appliance . IBM Netezza Appliance has addressed the applicable CVE CVE-2026-22701 Vulnerability Details CVEID:CVE-2026-22701 DESCRIPTION: filelock is a platform-independent file lock for Python. Prior to version 3.20.3, a TOCTOU race condition...

5.3CVSS5.7AI score0.00115EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2026/04/15 10:52 a.m.•6 views

Security Bulletin: Vulnerability in util-linux affects IBM Netezza Appliance

Summary The util-linux package is used by IBM Netezza Appliance . IBM Netezza Appliance has addressed the applicable CVE CVE-2025-14104 Vulnerability Details CVEID:CVE-2025-14104 DESCRIPTION: A flaw was found in util-linux. This vulnerability allows a heap buffer overread when processing 256-byte...

6.1CVSS7AI score0.00176EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2026/04/15 10:49 a.m.•3 views

Security Bulletin: Vulnerability in libexpat affects IBM Netezza Appliance

Summary The libexpat package is used by IBM Netezza Appliance . IBM Netezza Appliance has addressed the applicable CVE CVE-2025-66382 Vulnerability Details CVEID:CVE-2025-66382 DESCRIPTION: In libexpat through 2.7.3, a crafted file with an approximate size of 2 MiB can lead to dozens of seconds o...

5.5CVSS6AI score0.00183EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2026/04/15 10:45 a.m.•4 views

Security Bulletin: Vulnerability in libarchive affects IBM Netezza Appliance

Summary The libarchive package is used by IBM Netezza Appliance . IBM Netezza Appliance has addressed the applicable CVE CVE-2025-60753 Vulnerability Details CVEID:CVE-2025-60753 DESCRIPTION: An issue was discovered in libarchive bsdtar before version 3.8.1 in function applysubstitution in file...

5.5CVSS6.1AI score0.00139EPSS

Exploits1Affected Software1

IBM Security Bulletins•added 2026/04/15 10:37 a.m.•2 views

Security Bulletin:Vulnerabilities in Netty affects IBM Netezza Appliance

Summary The Netty package is used by IBM Netezza Appliance . IBM Netezza Appliance has addressed the applicable CVEs CVE-2025-58056, CVE-2025-67735 Vulnerability Details CVEID:CVE-2025-58056 DESCRIPTION: Netty is an asynchronous event-driven network application framework for development of...

7.5CVSS6.7AI score0.00631EPSS

Exploits2Affected Software1

IBM Security Bulletins•added 2026/04/15 10:29 a.m.•8 views

Security Bulletin: Vulnerabilities in OpenSSH affects IBM Netezza Appliance

Summary The OpenSSH package is used by IBM Netezza Appliance . IBM Netezza Appliance has addressed the applicable CVEs CVE-2025-61984, CVE-2025-61985 Vulnerability Details CVEID:CVE-2025-61984 DESCRIPTION: ssh in OpenSSH before 10.1 allows control characters in usernames that originate from certa...

3.6CVSS6.7AI score0.00221EPSS

Exploits2Affected Software1

IBM Security Bulletins•added 2026/04/15 10:25 a.m.•6 views

Security Bulletin: Vulnerability in libssh affects IBM Netezza Appliance

Summary The libssh package is used by IBM Netezza Appliance . IBM Netezza Appliance has addressed the applicable CVE CVE-2025-8277 Vulnerability Details CVEID:CVE-2025-8277 DESCRIPTION: A flaw was found in libssh's handling of key exchange KEX processes when a client repeatedly sends incorrect KE...

3.1CVSS6.3AI score0.00375EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2026/04/15 10:18 a.m.•2 views

Security Bulletin: Vulnerability in Ply affects IBM Netezza Appliance

Summary The Ply package is used by IBM Netezza Appliance . IBM Netezza Appliance has addressed the applicable CVE CVE-2025-56005 Vulnerability Details CVEID:CVE-2025-56005 DESCRIPTION: An undocumented and unsafe feature in the PLY Python Lex-Yacc library 3.11 allows Remote Code Execution RCE via...

9.8CVSS8AI score0.1865EPSS

Exploits3Affected Software1

NVD•added 2026/04/15 10:16 a.m.•4 views

CVE-2026-5588

Use of a Broken or Risky Cryptographic Algorithm vulnerability in Legion of the Bouncy Castle Inc. BC-JAVA bcpkix on all pkix modules, Legion of the Bouncy Castle Inc. BCPKIX-FIPS bcpkix on All pkix modules, Legion of the Bouncy Castle Inc. BCPIX-LTS bcpkix on All pkix modules. This vulnerability...

6.3CVSS0.00259EPSS

Exploits0References2

OSV•added 2026/04/15 10:16 a.m.•5 views

DEBIAN-CVE-2026-5588

6.3CVSS5.8AI score0.00259EPSS

Exploits0References1

NVD•added 2026/04/15 10:16 a.m.•3 views

CVE-2025-14813

: Use of a Broken or Risky Cryptographic Algorithm vulnerability in Legion of the Bouncy Castle Inc. BC-JAVA bcprov on all core modules. This vulnerability is associated with program files G3413CTRBlockCipher. This issue affects BC-JAVA: from 1.59 before 1.80.2, from 1.81 before 1.81.1, from 1.82...

9.3CVSS0.00115EPSS

Exploits0References3

Snyk•added 2026/04/15 10:16 a.m.•12 views

Use of a Broken or Risky Cryptographic Algorithm

Overview org.bouncycastle:bcprov-jdk14 is a Java implementation of cryptographic algorithms. Affected versions of this package are vulnerable to Use of a Broken or Risky Cryptographic Algorithm due to the generateCTR process in G3413CTRBlockCipher. An attacker can recover relationships between...

9.3CVSS5.7AI score0.00115EPSS

Exploits0References2

Snyk•added 2026/04/15 10:16 a.m.•11 views

Use of a Broken or Risky Cryptographic Algorithm

Overview Affected versions of this package are vulnerable to Use of a Broken or Risky Cryptographic Algorithm due to the generateCTR process in G3413CTRBlockCipher. An attacker can recover relationships between encrypted plaintext blocks by driving the cipher past its counter range and causing th...

9.3CVSS5.7AI score0.00115EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by