CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

7.8CVSS5.7AI score0.00186EPSS

CVE-2026-52991

A flaw was found in the Linux kernel's Pressure Stall Information PSI subsystem. A race condition exists between the file release and pressure write operations, specifically concerning the priv member of struct kernfsopenfile. This can lead to a use-after-free vulnerability or a NULL dereference,...

GithubExploit•added 2 days ago•49 views

Exploit for CVE-2026-34207

CVE-2026-34207 The SSRF filter checked hostname text, but the...

7.6CVSS5.8AI score0.00239EPSS

Exploits2

SUSE Linux•added 2 days ago•4 views

Security update for clamav

This update for clamav fixes the following issues: Update to clamav 1.5.2: Security issue: CVE-2026-20031: improper error handling in the HTML CSS module when splitting UTF-8 strings can lead to denial of service conditions via a crafted HTML file bsc1259207. Non security issue: Support...

6.9CVSS5.8AI score0.00414EPSS

Exploits0References10

5.3CVSS5.8AI score0.00414EPSS

SUSE-SU-2026:0906-2 Security update for clamav

This update for clamav fixes the following issues: Update to clamav 1.5.2: Security issue: - CVE-2026-20031: improper error handling in the HTML CSS module when splitting UTF-8 strings can lead to denial of service conditions via a crafted HTML file bsc1259207. Non security issue: - Support...

Exploits0References5

SUSE Linux•added 2 days ago•3 views

Security update for haproxy

This update for haproxy fixes the following issues CVE-2026-55203: integer overflow vulnerability in the fcgiconn structure's drl field that allows buffer misparse as new FCGI record headers bsc1268557. CVE-2026-55204: null pointer dereference vulnerability in hpackdhtinsert within src/hpack-tbl....

7.5CVSS6AI score0.00431EPSS

Exploits0References8

9.1CVSS6AI score0.00431EPSS

SUSE-SU-2026:2652-1 Security update for haproxy

This update for haproxy fixes the following issues - CVE-2026-55203: integer overflow vulnerability in the fcgiconn structure's drl field that allows buffer misparse as new FCGI record headers bsc1268557. - CVE-2026-55204: null pointer dereference vulnerability in hpackdhtinsert within...

Exploits0References5

SUSE Linux•added 2 days ago•4 views

Security update for haproxy

7.5CVSS6AI score0.00431EPSS

Exploits0References8

9.1CVSS6AI score0.00431EPSS

SUSE-SU-2026:2651-1 Security update for haproxy

Exploits0References5

5.5CVSS5.8AI score0.00166EPSS

CVE-2026-53042

A flaw was found in the Linux kernel's fwctl module. An issue with the class initialization ordering can lead to a null pointer dereference when a device is removed. This can cause a system crash, resulting in a Denial of Service DoS...

RedhatCVE•added 2 days ago•8 views

CVE-2026-53163

A flaw was found in the Linux kernel's rtmutex locking mechanism. A local attacker could trigger a null-pointer dereference by using the FUTEXCMPREQUEUEPI operation. This vulnerability occurs because the removewaiter function is called when the waiter is not properly enqueued, leading to a system...

5.5CVSS5.8AI score0.00173EPSS

SUSE Linux•added 2 days ago•5 views

Security update for openssl-3

This update for openssl-3 fixes the following issues CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion bsc1266340. CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption bsc1266341. CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing...

8.2CVSS5.8AI score0.02268EPSS

Exploits0References52

8.8CVSS6.3AI score0.02268EPSS

SUSE-SU-2026:2648-1 Security update for openssl-3

This update for openssl-3 fixes the following issues - CVE-2026-7383: Possible Heap Buffer Overflow in ASN.1 Multibyte String Conversion bsc1266340. - CVE-2026-9076: Out-of-Bounds Read in CMS Password-Based Decryption bsc1266341. - CVE-2026-34180: Heap Buffer Over-read in ASN.1 Content Parsing...

Exploits0References27

IBM Security Bulletins•added 2 days ago•6 views

Security Bulletin: Multiple Security Vulnerabilities in IBM Sterling Partner Engagement Manager.

Summary Multiple vulnerabilities were addressed in IBM Sterling Partner Engagement Manager versions 6.3.0.0, 6.2.4.4, and 6.2.3.6. Vulnerability Details CVEID:CVE-2023-47038 DESCRIPTION: A vulnerability was found in perl 5.30.0 through 5.38.0. This issue occurs when a crafted regular expression i...

8.7CVSS6.2AI score0.02448EPSS

Exploits1Affected Software1

RedhatCVE•added 2 days ago•6 views

CVE-2026-53271

A flaw was found in the ksmbd component of the Linux kernel. A remote attacker could exploit a NULL-dereference vulnerability in the oplock/lease break notifiers. This occurs because opinfo-conn is read without proper checks, allowing a concurrent Server Message Block SMB2 LOGOFF to set op-conn t...

5.8AI score0.00164EPSS

CVE-2026-53158

A flaw was found in the Linux kernel's fastrpc component. This vulnerability occurs due to a NULL pointer dereference when the Digital Signal Processor DSP sends a glink message before the fastrpc driver is fully initialized. This can lead to system instability or a denial of service DoS conditio...

5.8AI score0.00168EPSS

5.5CVSS5.7AI score0.00198EPSS

CVE-2026-53227

A flaw was found in the Linux kernel's Open vSwitch OVS component. This issue occurs due to incorrect error handling during the allocation of a 'reply' skb socket buffer after locking the ovsmutex. If the allocation fails, an invalid pointer may be passed to kfreeskb, leading to a system crash an...