CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added yesterday•9 views

CVE-2026-12530 Improper neutralization of argument delimiters in AWS Bedrock AgentCore Python SDK install_packages()

Improper neutralization of argument delimiters in the installpackages method in AWS Bedrock AgentCore Python SDK versions = 1.1.3 and 1.6.1 might allow a remote authenticated user to execute arbitrary commands within the Code Interpreter sandbox via crafted package name arguments. To mitigate thi...

8.4CVSS

Exploits0References2

Chainguard•added yesterday•6 views

CVE-2019-15608 vulnerabilities

Vulnerabilities for packages: yarn...

5.9CVSS6.6AI score0.01783EPSS

Exploits1

Chainguard•added yesterday•4 views

GHSA-J6C9-X7QJ-28XF vulnerabilities

Vulnerabilities for packages: kibana, langfuse-fips...

Wolfi•added yesterday•4 views

GHSA-5XF4-F2FQ-F69J vulnerabilities

Vulnerabilities for packages: yarn...

Chainguard•added yesterday•6 views

CVE-2026-53540 vulnerabilities

Vulnerabilities for packages: tritonserver-backend-vllm-cuda-12.9...

The Hacker News•added yesterday•16 views

145 Mastra npm Packages Compromised via Hijacked Contributor Account

As many as 145 npm packages associated with the Mastra namespace "@mastra/", a popular open-source JavaScript and TypeScript framework for building artificial intelligence AI applications, have been compromised as part of a software supply chain attack codenamed easy-day-js , per findings from...

5.6AI score

Tenable Nessus•added yesterday•3 views

Linux Distros Unpatched Vulnerability : CVE-2026-12311

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Information disclosure, sandbox escape in the Security: Process Sandboxing component. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Thunderbi...

4.7CVSS5.4AI score0.00185EPSS

Tenable Nessus•added yesterday•4 views

Linux Distros Unpatched Vulnerability : CVE-2026-12310

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Memory safety bug fixed in Thunderbird 152. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Thunderbird 152, and Thunderbird 140.12...

7.5CVSS5.5AI score0.00268EPSS

Tenable Nessus•added yesterday•4 views

Linux Distros Unpatched Vulnerability : CVE-2026-12307

5.3CVSS5.5AI score0.00278EPSS

Tenable Nessus•added yesterday•3 views

Linux Distros Unpatched Vulnerability : CVE-2026-12290

8.1CVSS5.4AI score0.00156EPSS

Tenable Nessus•added yesterday•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-12291

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use-after-free in the Networking: HTTP component. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12, Firefox ESR 115.37, Thunderbird 152, and...

5.4AI score0.00156EPSS

Tenable Nessus•added yesterday•3 views

Linux Distros Unpatched Vulnerability : CVE-2026-12329

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Memory safety bug fixed in Thunderbird ESR 140.12. This vulnerability was fixed in Firefox ESR 140.12 and Thunderbird 140.12. CVE-2026-12329 Note that Nessus...

5.3CVSS5.5AI score0.00251EPSS

Chainguard•added 2 days ago•6 views

CVE-2026-48523 vulnerabilities

Vulnerabilities for packages: openstack-placement-2025.2-fips, openstack-placement-2026.1-fips, openstack-horizon-2025.1-fips, openstack-glance-2025.2-fips, metaflow-service-fips, superset-fips, datadog-agent, openstack-keystone-2026.1-fips, openstack-horizon-2026.1-fips,...

5.4CVSS5.1AI score0.0011EPSS

Exploits1

Chainguard•added 2 days ago•6 views

GHSA-6CJ7-V55X-8MWR vulnerabilities

Vulnerabilities for packages: python...

Chainguard•added 2 days ago•5 views

GHSA-JG6J-874M-WGJJ vulnerabilities

Vulnerabilities for packages: python...