CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

77 matches found

Tenable Nessus•added 18 hours ago•2 views

EulerOS Virtualization 2.13.0 : libtasn1 (EulerOS-SA-2026-2177)

According to the versions of the libtasn1 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Stack-based buffer overflow in libtasn1 version: v4.20.0. The function fails to validate the size of input data resulting in a...

7.5CVSS8.1AI score0.00052EPSS

Exploits0References2

RedhatCVE•added yesterday•5 views

CVE-2026-8507

Crypt::OpenSSL::PKCS12 versions through 1.94 for Perl have out-of-bounds OOB write flaws. When parsing a PKCS12 file, with a = 1 GiB OCTET STRING or BIT STRING attribute on a SAFEBAG, via info or infoashash, a heap out-of-bounds write would be triggered with remote-code-execution potential RCE du...

9.8CVSS5.5AI score0.00051EPSS

Exploits0References1

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в opensc

Before version 0.20.0-rc1, OpenSC had a buffer overflow vulnerability related to the ASN.1 Octet string in the asn1decodeentry function in libopensc/asn1.c...

6.4CVSS7AI score0.00092EPSS

Exploits0References1

Vulnrichment•added 2026/05/17 6:43 p.m.•5 views

CVE-2026-8507 Crypt::OpenSSL::PKCS12 versions through 1.94 for Perl have out-of-bounds (OOB) write flaws

5.9AI score0.00051EPSS

Exploits0References4

OSV•added 2026/05/03 9:56 a.m.•4 views

OESA-2026-2164 opencryptoki security update

openCryptoki is an implementation of the PKCS 11 API that allows interfacing to devices that hold cryptographic information and perform cryptographic functions. openCryptoki provides application portability by isolating the application from the details of the cryptographic device. Isolating the...

6.8CVSS6AI score0.00019EPSS

Exploits1References2

OSV•added 2026/05/03 9:56 a.m.•4 views

OESA-2026-2163 opencryptoki security update

6.8CVSS6AI score0.00019EPSS

Exploits1References2

OSV•added 2026/04/27 6:33 p.m.•1 views

JLSEC-2026-276 Issue summary: Converting an excessively large OCTET STRING value to a hexadecimal string leads...

Issue summary: Converting an excessively large OCTET STRING value to a hexadecimal string leads to a heap buffer overflow on 32 bit platforms. Impact summary: A heap buffer overflow may lead to a crash or possibly an attacker controlled code execution or other undefined behavior. If an attacker c...

9.8CVSS6.5AI score0.00007EPSS

Exploits0References8

OSV•added 2026/04/11 2:3 p.m.•0 views

OESA-2026-1838 python-ecdsa security update

This is an easy-to-use implementation of ECDSA cryptography Elliptic Curve Digital Signature Algorithm, implemented purely in Python, released under the MIT license. With this library, you can quickly create keypairs signing key and verifying key, sign messages, and verify the signatures. The key...

5.3CVSS5.7AI score0.00046EPSS

Exploits1References2

SUSE CVE•added 2026/04/08 11:26 p.m.•3 views

SUSE CVE-2026-31789

7.3CVSS6.5AI score0.00007EPSS

Exploits0References20

EUVD•added 2026/04/08 12:30 a.m.•2 views

EUVD-2026-19968

6.5AI score0.00007EPSS

Exploits0References7

Snyk•added 2026/04/07 11:9 p.m.•1 views

Out-of-bounds Write

Overview Affected versions of this package are vulnerable to Out-of-bounds Write via the hexadecimal conversion process of excessively large OCTET STRING values in X.509 certificate extensions such as Subject Key Identifier or Authority Key Identifier. An attacker can cause a crash, execute...

9.8CVSS6.1AI score0.00007EPSS

Exploits0References2

NVD•added 2026/04/07 10:16 p.m.•0 views

CVE-2026-31789

9.8CVSS0.00007EPSS

Exploits0References7

OSV•added 2026/04/07 10:16 p.m.•1 views

ALPINE-CVE-2026-31789

9.8CVSS6.4AI score0.00007EPSS

Exploits0References1

OSV•added 2026/04/07 10:16 p.m.•0 views

DEBIAN-CVE-2026-31789

9.8CVSS6.5AI score0.00007EPSS

Exploits0References1

Cvelist•added 2026/04/07 10:0 p.m.•17 views

CVE-2026-31789 Heap Buffer Overflow in Hexadecimal Conversion

0.00007EPSS

Exploits0References6

CVE•added 2026/04/07 10:0 p.m.•45 views

CVE-2026-31789

OpenSSL vulnerability CVE-2026-31789: on 32-bit platforms, converting a large OCTET STRING (e.g., SKID/AKID in X.509 certificates) to hex can overflow the buffer, causing a heap overflow that may crash or enable attacker-controlled behavior. Affected are OpenSSL versions with the vulnerable conve...

9.8CVSS6.5AI score0.00007EPSS

Exploits0References7Affected Software1

AlpineLinux•added 2026/04/07 10:0 p.m.•2 views

CVE-2026-31789

9.8CVSS6.5AI score0.00007EPSS

Exploits0

Vulnrichment•added 2026/04/07 10:0 p.m.•0 views

CVE-2026-31789 Heap Buffer Overflow in Hexadecimal Conversion

6.4AI score0.00007EPSS

Exploits0References6

OSV•added 2026/04/07 12:0 a.m.•2 views

UBUNTU-CVE-2026-31789

9.8CVSS6.5AI score0.00007EPSS

Exploits0References4

Positive Technologies•added 2026/04/07 12:0 a.m.•3 views

PT-2026-31040

Name of the Vulnerable Software and Affected Versions OpenSSL affected versions not specified Description Converting an excessively large OCTET STRING value to a hexadecimal string leads to a heap buffer overflow on 32-bit platforms. This occurs when a crafted X.509 certificate contains an...

9.8CVSS7.5AI score0.0014EPSS

Exploits0References101

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by