Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

61669 matches found

RedhatCVE
RedhatCVEadded 2026/05/15 5:1 p.m.8 views

CVE-2026-43333

A flaw was found in the Linux kernel's Berkeley Packet Filter BPF component. This vulnerability allows a local attacker to cause a kernel null pointer dereference by directly accessing nullable PTRTOBUF pointers without proper null checks. This can lead to a system crash, resulting in a Denial of...

5.5CVSS5.8AI score0.00013EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2026/05/15 3:51 p.m.6 views

CVE-2026-6666

A flaw was found in PgBouncer. A remote attacker could exploit a null pointer reference vulnerability by sending a specially crafted error response without a SQLSTATE field. This could lead to a crash of the PgBouncer instance, resulting in a Denial of Service DoS for affected services. Mitigatio...

7.5CVSS5.8AI score0.00017EPSS
Exploits0References2
OSV
OSVadded 2026/05/15 2:2 p.m.4 views

OESA-2026-2340 php security update

PHP is an HTML-embedded scripting language. PHP attempts to make it easy for developers to write dynamically generated web pages. PHP also offers built-in database integration for several commercial and non-commercial database management systems, so writing a database-enabled webpage with PHP is...

9.8CVSS6.1AI score0.00369EPSS
Exploits0References5
OSV
OSVadded 2026/05/15 2:1 p.m.2 views

OESA-2026-2320 httpd security update

Apache HTTP Server is a powerful and flexible HTTP/1.1 compliant web server. Security Fixes: An escalation of privilege bug in various modules in Apache HTTP 2.4.66 and earlier allows local .htaccess authors to read files with the privileges of the httpd user. Users are recommended to upgrade to...

9.8CVSS5.8AI score0.00648EPSS
Exploits2References10
RedhatCVE
RedhatCVEadded 2026/05/15 12:57 p.m.7 views

CVE-2026-41684

A flaw was found in Incus, a system container and virtual machine manager. An authenticated user with permissions to import instance backups could craft a malicious backup archive. This archive, containing a valid inline configuration but a malformed legacy backup file, could cause the Incus daem...

6.5CVSS5.8AI score0.00023EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2026/05/15 11:23 a.m.7 views

CVE-2026-43335

A flaw was found in the Linux kernel's interconnect driver for Qualcomm SM8450. The issue arises from unconverted dynamic IDs for platform interconnects, leading to a NULL pointer dereference in the icclinknodes function. This vulnerability can be triggered during runtime when a pointer to a...

5.5CVSS5.8AI score0.00014EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2026/05/15 11:9 a.m.9 views

CVE-2026-43337

A flaw was found in the Linux kernel's drm/amd/display component. This flaw occurs because the dcn401inithw function does not properly validate a callback pointer updatebwboundingbox before use. This can lead to a NULL pointer dereference, potentially causing a system crash or denial of service...

5.5CVSS5.8AI score0.00013EPSS
Exploits0References4
SUSE Linux
SUSE Linuxadded 2026/05/15 9:19 a.m.7 views

Security update for mozjs115

This update for mozjs115 fixes the following issues CVE-2026-32776: libexpat: NULL pointer dereference when processing empty external parameter entities inside an entity declaration value bsc1259728. CVE-2026-32777: libexpat: denial of service due to infinite loop in DTD content parsing bsc125971...

8.7CVSS5.8AI score0.00006EPSS
Exploits1References12
OSV
OSVadded 2026/05/15 7:56 a.m.7 views

CLSA-2026-1778787063 kernel: Fix of 122 CVEs

net: skbuff: propagate shared-frag marker through pskbcopy - mptcp: always handle address removal under msk socket lock CVE-2025-21875 - uprobes: Reject the shared zeropage in uprobewriteopcode CVE-2025-21881 - net: hns3: make sure ptp clock is unregister and freed if hclgeptpgetcycle returns an...

8.1CVSS6.5AI score0.00126EPSS
Exploits0References1
Hacker One
Hacker Oneadded 2026/05/15 2:27 a.m.18 views

Node.js: NULL pointer dereference in node:sqlite DatabaseSync#applyChangeset() via malformed SQLite changeset

Summary: A 19-byte malformed SQLite changeset passed to Node.js node:sqlite DatabaseSyncapplyChangeset causes a native NULL pointer dereference and terminates the Node.js process. Description: The built-in Node.js node:sqlite API exposes DatabaseSyncapplyChangesetchangeset, options, which accepts...

5.8AI score
Exploits0
Amazon
Amazonadded 2026/05/15 12:0 a.m.7 views

Low: glslang

Issue Overview: A vulnerability, which was classified as problematic, has been found in Khronos Group glslang 15.1.0. Affected by this issue is the function glslang::TIntermediate::isConversionAllowed of the file glslang/MachineIndependent/Intermediate.cpp. The manipulation leads to null pointer...

4.8CVSS4.7AI score0.00084EPSS
Exploits0
Redos
Redosadded 2026/05/15 12:0 a.m.4 views

ROS-20260515-73-0005

A vulnerability in the opcryptkeycallback function of the Firebird database management system is related to null pointer dereferencing. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

8.2CVSS5.8AI score0.00586EPSS
Exploits1
Redos
Redosadded 2026/05/15 12:0 a.m.3 views

ROS-20260515-73-0003

A vulnerability in the SDLinfo function of the Firebird database management system is related to null pointer dereferencing. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

7.5CVSS5.8AI score0.00072EPSS
Exploits1
NVD
NVDadded 2026/05/14 8:17 p.m.8 views

CVE-2026-44638

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, a wrong NULL check after an allocation call in sixeldecoderaw and sixeldecode causes a NULL pointer dereference whenever the allocation fails. The check tests the address of the output parameter alway...

2.5CVSS0.00018EPSS
Exploits1References1
OSV
OSVadded 2026/05/14 8:17 p.m.4 views

DEBIAN-CVE-2026-44638

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, a wrong NULL check after an allocation call in sixeldecoderaw and sixeldecode causes a NULL pointer dereference whenever the allocation fails. The check tests the address of the output parameter alway...

2.5CVSS5.8AI score0.00018EPSS
Exploits1References1
UbuntuCve
UbuntuCveadded 2026/05/14 8:17 p.m.8 views

CVE-2026-44638

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, a wrong NULL check after an allocation call in sixeldecoderaw and sixeldecode causes a NULL pointer dereference whenever the allocation fails. The check tests the address of the output parameter alway...

2.5CVSS5.8AI score0.00018EPSS
Exploits1References2
OSV
OSVadded 2026/05/14 8:17 p.m.5 views

UBUNTU-CVE-2026-44638

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, a wrong NULL check after an allocation call in sixeldecoderaw and sixeldecode causes a NULL pointer dereference whenever the allocation fails. The check tests the address of the output parameter alway...

2.5CVSS5.8AI score0.00018EPSS
Exploits1References3
CVE
CVEadded 2026/05/14 7:59 p.m.10 views

CVE-2026-44638

CVE-2026-44638 affects the libsixel SIXEL encoder/decoder. A wrong NULL check after allocation in sixel_decode_raw and sixel_decode causes a NULL pointer dereference when allocation fails, enabling a denial-of-service for callers under low-memory conditions. The issue stems from testing the addre...

2.5CVSS5.8AI score0.00018EPSS
Exploits1References1Affected Software1
Debian CVE
Debian CVEadded 2026/05/14 7:59 p.m.5 views

CVE-2026-44638

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, a wrong NULL check after an allocation call in sixeldecoderaw and sixeldecode causes a NULL pointer dereference whenever the allocation fails. The check tests the address of the output parameter alway...

2.5CVSS5.8AI score0.00018EPSS
Exploits1
Vulnrichment
Vulnrichmentadded 2026/05/14 7:59 p.m.3 views

CVE-2026-44638 libsixel: NULL pointer dereference

libsixel is a SIXEL encoder/decoder implementation derived from kmiya's sixel. From to 1.8.7-r1, a wrong NULL check after an allocation call in sixeldecoderaw and sixeldecode causes a NULL pointer dereference whenever the allocation fails. The check tests the address of the output parameter alway...

2.5CVSS5.8AI score0.00018EPSS
Exploits1References1
Rows per page
Query Builder