CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

91 matches found

Opera Security Advisories•added 2026/04/17 12:0 a.m.•6 views

How Opera’s Security team helps make the web safer through responsible disclosure

Security How Opera’s Security team helps make the web safer through responsible disclosure Share April 17th, 2026 Hi everyone! At Opera, we have 30 years of experience in building safe and secure browsers. Our seasoned Security team collaborates internally as well as with external researchers to...

8.8CVSS7.2AI score0.23127EPSS

Exploits12References1

SUSE CVE•added 2026/04/10 11:25 p.m.•1 views

SUSE CVE-2026-39853

osslsigncode is a tool that implements Authenticode signing and timestamping. Prior to 2.12, A stack buffer overflow vulnerability exists in osslsigncode in several signature verification paths. During verification of a PKCS7 signature, the code copies the digest value from a parsed...

7.8CVSS6.1AI score0.00014EPSS

Exploits0References3

SUSE CVE•added 2026/04/10 11:25 p.m.•2 views

SUSE CVE-2026-39855

osslsigncode is a tool that implements Authenticode signing and timestamping. Prior to 2.13, an integer underflow vulnerability exists in osslsigncode version 2.12 and earlier in the PE page-hash computation code pepagehashcalc. When page hash processing is performed on a PE file, the function...

5.5CVSS6AI score0.00017EPSS

Exploits0References3

SUSE CVE•added 2026/04/10 11:25 p.m.•1 views

SUSE CVE-2026-39856

osslsigncode is a tool that implements Authenticode signing and timestamping. Prior to 2.13, an out-of-bounds read vulnerability exists in osslsigncode version 2.12 and earlier in the PE page-hash computation code pepagehashcalc. When processing PE sections for page hashing, the function uses...

5.5CVSS5.8AI score0.00017EPSS

Exploits0References3

Tenable Nessus•added 2026/04/10 12:0 a.m.•1 views

openSUSE 16 Security Update : osslsigncode (openSUSE-SU-2026:20473-1)

The remote openSUSE 16 host has a package installed that is affected by a vulnerability as referenced in the openSUSE- SU-2026:20473-1 advisory. Changes in osslsigncode: - Update to 2.13 bsc1260680, CVE-2025-70888: fixed integer overflows when processing APPX compressed data streams fixed...

9.8CVSS6.2AI score0.0014EPSS

Exploits0References3

NVD•added 2026/04/09 5:16 p.m.•1 views

CVE-2026-39856

5.5CVSS0.00017EPSS

Exploits0References3

NVD•added 2026/04/09 5:16 p.m.•0 views

CVE-2026-39855

5.5CVSS0.00017EPSS

Exploits0References3

OSV•added 2026/04/09 5:16 p.m.•0 views

DEBIAN-CVE-2026-39856

5.5CVSS5.5AI score0.00017EPSS

Exploits0References1

UbuntuCve•added 2026/04/09 5:16 p.m.•0 views

CVE-2026-39856

5.5CVSS5.8AI score0.00017EPSS

Exploits0References4

OSV•added 2026/04/09 5:16 p.m.•1 views

UBUNTU-CVE-2026-39855

5.5CVSS6AI score0.00017EPSS

Exploits0References5

OSV•added 2026/04/09 5:16 p.m.•2 views

UBUNTU-CVE-2026-39856

5.5CVSS5.8AI score0.00017EPSS

Exploits0References5

UbuntuCve•added 2026/04/09 5:16 p.m.•0 views

CVE-2026-39855

5.5CVSS5.9AI score0.00017EPSS

Exploits0References4

OSV•added 2026/04/09 4:16 p.m.•0 views

DEBIAN-CVE-2026-39853

7.8CVSS5.9AI score0.00014EPSS

Exploits0References1

NVD•added 2026/04/09 4:16 p.m.•0 views

CVE-2026-39853

7.8CVSS0.00014EPSS

Exploits0References3

OSV•added 2026/04/09 4:16 p.m.•2 views

UBUNTU-CVE-2026-39853

7.8CVSS6.1AI score0.00014EPSS

Exploits0References5

UbuntuCve•added 2026/04/09 4:16 p.m.•1 views

CVE-2026-39853

7.8CVSS6.1AI score0.00014EPSS

Exploits0References4

CVE•added 2026/04/09 4:3 p.m.•9 views

CVE-2026-39856

osslsigncode (before 2.13) has an out-of-bounds read in PE page-hash calculation (pe_page_hash_calc) when processing PE sections. The code uses PointerToRawData and SizeOfRawData from section headers without ensuring the referenced region lies within the mapped file, allowing an attacker to craft...

5.5CVSS6AI score0.00017EPSS

Exploits0References3Affected Software1