CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

229 matches found

Akamai Blog•added 2026/05/18 8:0 a.m.•7 views

CVE-2026-42945: Mitigating a Critical Heap Buffer Overflow Vulnerability in NGINX

Discover CVE-2026-42945 NGINX Rift, a critical heap buffer overflow vulnerability. Learn about the affected versions and critical patch updates...

9.2CVSS6.2AI score0.00897EPSS

Exploits34

OSV•added 2026/05/12 10:6 a.m.•4 views

RHSA-2026:15976 Red Hat Security Advisory: kpatch-patch-4_18_0-553_109_1, kpatch-patch-4_18_0-553_40_1, kpatch-patch-4_18_0-553_53_1, kpatch-patch-4_18_0-553_72_1, and kpatch-patch-4_18_0-553_85_1 security update

Bulletin has no description...

7.8CVSS5.7AI score0.02235EPSS

Exploits225References17

Tenable Nessus•added 2026/05/11 12:0 a.m.•2 views

Oracle Linux 10 : libsoup3 (ELSA-2026-15968)

The remote Oracle Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-15968 advisory. - Add patches for CVE-2026-4271 and CVE-2026-5119 - Add patch for CVE-2026-1761 - Fix CVE-2026-0719 - Fix CVE-2025-14523 - Add patch for CVE-2025-121...

8.6CVSS5.8AI score0.01174EPSS

Exploits2References3

IBM Security Bulletins•added 2026/05/07 1:38 p.m.•9 views

Security Bulletin: IBM App Connect Enterprise Certified Container UBI updates

Summary IBM App Connect Enterprise Certified Container ACEcc is built on the Red Hat Universal Base Images. ACEcc operator versions 12.0.23 LTS and 13.1.0 contain fixes to the listed CVEs found in the base images. This bulletin provides patch information to address the reported vulnerabilities...

9.2CVSS5.7AI score0.00126EPSS

Exploits1Affected Software1

OSV•added 2026/02/06 10:8 a.m.•5 views

RHSA-2026:2115 Red Hat Security Advisory: kpatch-patch-5_14_0-284_104_1, kpatch-patch-5_14_0-284_117_1, kpatch-patch-5_14_0-284_134_1, kpatch-patch-5_14_0-284_148_1, and kpatch-patch-5_14_0-284_92_1 security update

Bulletin has no description...

7CVSS4.7AI score0.00058EPSS

Exploits0References8

IBM Security Bulletins•added 2026/02/05 12:52 p.m.•12 views

Security Bulletin: IBM App Connect Enterprise Certified Container UBI updates

Summary IBM App Connect Enterprise Certified Container ACEcc is built on the Red Hat Universal Base Images. ACEcc operator versions 12.0.20 LTS and 12.20.0 contain fixes to the listed CVEs found in the base images. This bulletin provides patch information to address the reported vulnerabilities...

8.6CVSS7.6AI score0.01174EPSS

Exploits5Affected Software1

EUVD•added 2026/01/28 4:35 p.m.•3 views

EUVD-2025-206455

Symantec Endpoint Protection, prior to 14.3 RU10 Patch 1, RU9 Patch 2, and RU8 Patch 3, may be susceptible to a Elevation of Privilege vulnerability, which is a type of issue whereby an attacker may attempt to compromise the software application to gain elevated access to resources that are...

6.7CVSS5.8AI score0.00007EPSS

Exploits0References1

Tenable Nessus•added 2026/01/14 12:0 a.m.•3 views

MiracleLinux 3 : bind-9.3.6-4.P1.1.1AXS3 (AXSA:2009-425:4)

"The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2009-425:4 advisory. BIND Berkeley Internet Name Domain is an implementation of the DNS Domain Name System protocols. BIND includes a DNS server named, which resolves host names t...

2.6CVSS6.7AI score0.20044EPSS

Exploits1References2

RedhatCVE•added 2026/01/09 9:11 a.m.•8 views

CVE-2022-35982

TensorFlow is an open source platform for machine learning. If SparseBincount is given inputs for indices, values, and denseshape that do not make a valid sparse tensor, it results in a segfault that can be used to trigger a denial of service attack. We have patched the issue in GitHub commit...

7.5CVSS6.6AI score0.00064EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:0 a.m.•3 views

CVE-2023-29214

XWiki Commons are technical libraries common to several other top level XWiki projects. Any user with edit rights can execute arbitrary Groovy, Python or Velocity code in XWiki leading to full access to the XWiki installation. The root cause is improper escaping of the included pages in the...

9.9CVSS7.4AI score0.06474EPSS

Exploits1References1

The Hacker News•added 2025/11/06 11:40 a.m.•8 views

ThreatsDay Bulletin: AI Tools in Malware, Botnets, GDI Flaws, Election Attacks & More

Cybercrime has stopped being a problem of just the internet — it's becoming a problem of the real world. Online scams now fund organized crime, hackers rent violence like a service, and even trusted apps or social platforms are turning into attack vectors. The result is a global system where ever...

9.8CVSS9.4AI score0.06902EPSS

Exploits0

OpenVAS•added 2025/10/28 12:0 a.m.•2 views

Fedora: Security Advisory (FEDORA-2025-42dd948b86)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8AI score

Exploits0References3

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2020-0218

Malware in sbrugna...

4.4CVSS4.3AI score0.00017EPSS

Exploits1References9

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2019-3321

Malware in sbrugna...

6.1CVSS6.3AI score0.0024EPSS

Exploits0References2