CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5549 matches found

RedHat Linux•added 2026/04/22 1:51 p.m.•5 views

libpng: LIBPNG out-of-bounds read in png_image_read_composite

An out of bounds read vulnerability has been discovered in libpng. This vulnerability is in libpng's simplified API allows reading up to 1012 bytes beyond the pngsRGBbase512 array when processing valid palette PNG images with partial transparency and gamma correction. The PNG files that trigger...

7.1CVSS6.3AI score0.00294EPSS

Exploits2References8

CNNVD•added 2026/04/22 12:0 a.m.•4 views

Nimiq 安全漏洞

Nimiq is an open-source implementation of the Albatross protocol in Rust. Versions of Nimiq prior to 1.3.0 contained a security vulnerability. This vulnerability stemmed from the use of MessageCodec::readrequest and readresponse in the nimiq-libp2p library, which called readtoend on the inbound...

5.3CVSS5.9AI score0.00297EPSS

Exploits0References1

Tenable Nessus•added 2026/04/22 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-22018

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported version...

3.7CVSS7.3AI score0.00258EPSS

Exploits0References2

Positive Technologies•added 2026/04/22 12:0 a.m.•6 views

PT-2026-34543

nimiq-libp2p is a Nimiq network implementation based on libp2p. Prior to version 1.3.0, MessageCodec::read request and read response call read to end on inbound substreams, so a remote peer can send only a partial frame and keep the substream open. because Behaviour::new also sets with max...

5.3CVSS5.8AI score0.00297EPSS

Exploits0References6

EUVD•added 2026/04/21 9:31 p.m.•27 views

EUVD-2026-24461

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is 7.2.6. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle V...

2.3CVSS5.7AI score0.0011EPSS

Exploits1References2

EUVD•added 2026/04/21 9:31 p.m.•5 views

EUVD-2026-24457

Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. The supported version that is affected is 7.2.6. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle...

5CVSS5.7AI score0.00096EPSS

Exploits0References2

EUVD•added 2026/04/21 9:31 p.m.•1 views

EUVD-2026-24393

Vulnerability in the Oracle Workflow product of Oracle E-Business Suite component: Workflow Loader. Supported versions that are affected are 12.2.3-12.2.15. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle Workflow. While the...

5.5CVSS5.7AI score0.00241EPSS

Exploits0References2

EUVD•added 2026/04/21 9:31 p.m.•4 views

EUVD-2026-24385

Vulnerability in the Oracle Applications Framework product of Oracle E-Business Suite component: Personalization. Supported versions that are affected are 12.2.9-12.2.15. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle Application...

4.7CVSS5.7AI score0.00218EPSS

Exploits0References2

EUVD•added 2026/04/21 9:31 p.m.•7 views

EUVD-2026-24332

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Libraries. Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK:...

3.7CVSS5.8AI score0.00258EPSS

Exploits0References2

EUVD•added 2026/04/21 9:31 p.m.•18 views

EUVD-2026-24352

Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft component: Fluid Core. Supported versions that are affected are 8.61-8.62. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise PeopleSoft Enterprise...

6.6CVSS5.7AI score0.00218EPSS

Exploits0References2

EUVD•added 2026/04/21 9:31 p.m.•2 views

EUVD-2026-24335

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JSSE. Supported versions that are affected are Oracle Java SE: 8u481, 8u481-b50, 8u481-perf, 11.0.30, 17.0.18, 21.0.10, 25.0.2, 26; Oracle GraalVM for JDK: 17.0.18 a...

5.3CVSS5.8AI score0.00305EPSS

Exploits0References2

NVD•added 2026/04/21 9:16 p.m.•7 views

CVE-2026-35248

5CVSS0.00096EPSS

Exploits0References1

NVD•added 2026/04/21 9:16 p.m.•7 views

CVE-2026-34323

Vulnerability in the Oracle Life Sciences InForm product of Oracle Life Science Applications component: IDM Authentication. Supported versions that are affected are 7.0.1.0 and 7.0.1.1. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise...

6.3CVSS0.00176EPSS

Exploits0References1

NVD•added 2026/04/21 9:16 p.m.•2 views

CVE-2026-34294

Vulnerability in the Oracle Identity Manager Connector product of Oracle Fusion Middleware component: Microsoft Active Directory. The supported version that is affected is 12.2.1.4.0. Difficult to exploit vulnerability allows low privileged attacker with network access via LDAP to compromise Orac...

5.9CVSS0.00175EPSS

Exploits0References1

NVD•added 2026/04/21 9:16 p.m.•4 views

CVE-2026-34298

4.7CVSS0.00218EPSS

Exploits0References1

NVD•added 2026/04/21 9:16 p.m.•2 views

CVE-2026-34277

6.6CVSS0.00218EPSS

Exploits0References1