CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

105 matches found

NVD•added 2026/06/17 8:17 p.m.•7 views

CVE-2026-55200

libssh2 through 1.11.1, fixed in commit 7acf3df contains an out-of-bounds write vulnerability in ssh2transportread that fails to enforce upper bounds on packetlength field. Remote attackers can send crafted SSH packets with excessively large packetlength values to corrupt heap memory and achieve...

9.8CVSS0.00922EPSS

Exploits7References4

Tenable Nessus•added 2026/05/11 12:0 a.m.•6 views

MiracleLinux 8 : corosync-3.1.8-1.el8_10.1 (AXSA:2026-593:02)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2026-593:02 advisory. corosync: Corosync: Denial of Service and information disclosure via crafted UDP packet CVE-2026-35091 corosync: Corosync: Denial of Service via...

8.2CVSS5.9AI score0.00994EPSS

Exploits2References3

Positive Technologies•added 2026/04/13 12:0 a.m.•4 views

PT-2026-32485

Name of the Vulnerable Software and Affected Versions AC800M System 800xA versions 6.0.0x through 6.0.0303.0 AC800M System 800xA versions 6.1.0x through 6.1.0031.0 AC800M System 800xA versions 6.1.1x through 6.1.1202.0 AC800M System 800xA versions 6.2.0x through 6.2.0006.0 Symphony Plus SD Series...

7.1CVSS5.2AI score0.00184EPSS

Exploits0References4

Vulnrichment•added 2026/03/25 4:24 p.m.•1 views

CVE-2026-26233 Denial of Service via HTTP/2 single packet attack on login endpoint

Mattermost versions 11.4.x = 11.4.0, 11.3.x = 11.3.1, 11.2.x = 11.2.3, 10.11.x = 10.11.11 fail to rate limit login requests which allows unauthenticated remote attackers to cause denial of service server crash and restart via HTTP/2 single packet attack with 100+ parallel login requests...

4.3CVSS5.9AI score0.00305EPSS

Exploits0References1

ATTACKERKB•added 2026/02/03 6:51 p.m.•4 views

CVE-2025-61983

Heap-based Buffer Overflow vulnerability in TP-Link Archer AX53 v1.0 tmpserver modules allows authenticated adjacent attackers to cause a segmentation fault or potentially execute arbitrary code via a specially crafted network packet containing an excessive number of fields with zero‑length...

7.3CVSS5.9AI score0.00469EPSS

Exploits0References5

Tenable Nessus•added 2026/01/20 12:0 a.m.•5 views

MiracleLinux 8 : libreswan-4.4-4.el8 (AXSA:2022-2989:01)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2022-2989:01 advisory. libreswan: Malicious IKEv1 packet can cause libreswan to restart CVE-2022-23094 Tenable has extracted the preceding description block directly from the...

7.5CVSS7.4AI score0.02699EPSS

Exploits1References2

Vulnrichment•added 2026/01/15 12:0 a.m.•5 views

CVE-2025-70304

A buffer overflow in the vobsubgetsubpicduration function of GPAC v2.4.0 allows attackers to cause a Denial of Service DoS via a crafted packet...

6.8AI score0.00343EPSS

Exploits1References1