CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

275 matches found

SUSE CVE-2026-10275

A flaw has been found in OpenSC up to 0.26.1. This affects the function testkpgencertwrite of the file src/tools/pkcs11-tool.c of the component pkcs11-tool Key Generation Module. This manipulation causes buffer overflow. The attack is possible to be carried out remotely. The complexity of an atta...

5.1CVSS5.5AI score0.00064EPSS

Exploits0References3

Tenable Nessus•added 4 days ago•6 views

Linux Distros Unpatched Vulnerability : CVE-2026-10275

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw has been found in OpenSC up to 0.26.1. This affects the function testkpgencertwrite of the file src/tools/pkcs11-tool.c of the component pkcs11-tool Key...

5.1CVSS5.4AI score0.00064EPSS

Exploits0References3

NVD•added 5 days ago•7 views

CVE-2026-10275

5.1CVSS0.00064EPSS

Exploits0References9

OSV•added 5 days ago•1 views

DEBIAN-CVE-2026-10275

5CVSS5.3AI score0.00064EPSS

Exploits0References1

EUVD•added 5 days ago•7 views

EUVD-2026-33680

5.1CVSS5.5AI score0.00064EPSS

Exploits0References9

Debian CVE•added 5 days ago•8 views

CVE-2026-10275

5.1CVSS5.5AI score0.00064EPSS

Exploits0

CVE•added 5 days ago•9 views

CVE-2026-10275

OpenSC up to 0.26.1 contains a vulnerability in the pkcs11-tool component, specifically in the function test_kpgen_certwrite of src/tools/pkcs11-tool.c, which leads to a buffer overflow. This issue can be exploited remotely; CVSS-like context indicates network access with high attack complexity a...

5.1CVSS5.5AI score0.00064EPSS

Exploits0References9

SUSE Linux•added 2026/05/27 7:58 a.m.•6 views

Security update for gnutls

This update for gnutls fixes the following issues CVE-2026-3833: x509/name-constraints: compare domain names case-insensitive bsc1263707. CVE-2026-5260: lib/pkcs11privkey: guard against overreading on short ciphertexts bsc1263715. CVE-2026-33845: buffers: switch from endoffset over to fraglength...

8.8CVSS5.8AI score0.00486EPSS

Exploits1References44

OSV•added 2026/05/27 7:57 a.m.•3 views

SUSE-SU-2026:2087-1 Security update for gnutls

This update for gnutls fixes the following issues - CVE-2026-3833: x509/name-constraints: compare domain names case-insensitive bsc1263707. - CVE-2026-5260: lib/pkcs11privkey: guard against overreading on short ciphertexts bsc1263715. - CVE-2026-33845: buffers: switch from endoffset over to...

9.8CVSS5.8AI score0.00486EPSS

Exploits1References23

RedHat Linux•added 2026/05/26 7:4 a.m.•5 views

gnutls: Fix use-after-free in gnutls_pkcs11_token_set_pin

No description is available for this CVE...

5.8AI score

Exploits0References4

Tenable Nessus•added 2026/05/26 12:0 a.m.•10 views

Amazon Linux 2023 : gnutls, gnutls-c++, gnutls-dane (ALAS2023-2026-1757)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1757 advisory. GnuTLS didn't check that DTLS fragments claimed a consistent messagelength value. Additionally, a crucial array size check was missing, enabling an attacker to cause a heap overwrite...

9.8CVSS5.8AI score0.00486EPSS

Exploits1References16

OSV•added 2026/05/22 9:56 a.m.•3 views

SUSE-SU-2026:21867-1 Security update for gnutls

9.8CVSS5.8AI score0.00486EPSS

Exploits1References25

OSV•added 2026/05/22 9:27 a.m.•3 views

SUSE-SU-2026:21784-1 Security update for gnutls

9.8CVSS5.8AI score0.00486EPSS

Exploits1References25

OSV•added 2026/05/18 10:8 a.m.•4 views

OPENSUSE-SU-2026:20778-1 Security update for gnutls

This update for gnutls fixes the following issues - CVE-2026-3832: cert-session: fix multi-entry OCSP revocation bypass bsc1263706. - CVE-2026-3833: x509/name-constraints: compare domain names case-insensitive bsc1263707. - CVE-2026-5260: lib/pkcs11privkey: guard against overreading on short...

9.8CVSS5.8AI score0.00486EPSS

Exploits2References26

OSV•added 2026/05/18 10:6 a.m.•3 views

SUSE-SU-2026:21815-1 Security update for gnutls

9.8CVSS5.8AI score0.00486EPSS

Exploits2References27

Tenable Nessus•added 2026/04/27 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2026-33317

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OP-TEE is a Trusted Execution Environment TEE designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. ...

8.7CVSS5.9AI score0.00015EPSS

Exploits2References3

NVD•added 2026/04/24 3:16 a.m.•1 views

CVE-2026-33317

OP-TEE is a Trusted Execution Environment TEE designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. In versions 3.13.0 through 4.10.0, missing checks in entrygetattributevalue in ta/pkcs11/src/object.c can lead to out-of-bounds read from...

8.7CVSS0.00015EPSS

Exploits2References4

ATTACKERKB•added 2026/04/24 2:20 a.m.•1 views

CVE-2026-33317

8.7CVSS5.9AI score0.00015EPSS

Exploits2References5Affected Software1

EUVD•added 2026/04/24 2:20 a.m.•3 views

EUVD-2026-25379

8.7CVSS5.9AI score0.00015EPSS

Exploits2References4

OSV•added 2026/04/14 4:21 p.m.•2 views

OPENSUSE-SU-2026:20581-1 Security update for nebula

This update for nebula fixes the following issues: Changes in nebula: - Update to version 1.10.3: Fix an issue where blocklist bypass is possible when using curve P256 Any newly issued P256 based certificates will have their signature clamped to the low-s form. Nebula will assert the low-s...

7.5CVSS6.6AI score0.00607EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by