CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

34292 matches found

Snyk•added 2026/05/04 5:40 p.m.•4 views

NULL Pointer Dereference

Overview Affected versions of this package are vulnerable to NULL Pointer Dereference in the CreateBucketFromBackup process when handling backup metadata during storage bucket import. An attacker can cause the daemon to crash and disrupt service availability by supplying a crafted archive with a...

7.1CVSS5.8AI score0.00398EPSS

Exploits1References2

Github Security Blog•added 2026/05/04 5:40 p.m.•4 views

Incus has a Nil-Pointer Dereference Panic via Bucket Metadata

Summary Missing validation logic in the storage bucket import logic allows an authenticated user with access to Incus' storage bucket feature to cause the Incus daemon to crash. Repeated use of this issue can be used to keep Incus offline causing a denial of service. Details The storage bucket...

7.1CVSS5.7AI score0.00398EPSS

Exploits1References3Affected Software1

Cvelist•added 2026/05/04 4:43 p.m.•31 views

CVE-2025-47408 Untrusted Pointer Dereference in Power Optimization Firmware

Memory corruption when another driver calls an IOCTL with invalid input/output buffer...

7.8CVSS0.00075EPSS

Exploits0References1

Cvelist•added 2026/05/04 4:43 p.m.•26 views

CVE-2025-47405 Untrusted Pointer Dereference in Camera

Memory corruption when processing camera sensor input/output control codes with invalid output buffers...

7.8CVSS0.00075EPSS

Exploits0References1

Vulnrichment•added 2026/05/04 4:43 p.m.•3 views

CVE-2025-47405 Untrusted Pointer Dereference in Camera

Memory corruption when processing camera sensor input/output control codes with invalid output buffers...

7.8CVSS5.8AI score0.00075EPSS

Exploits0References1

CVE•added 2026/05/04 4:43 p.m.•5 views

CVE-2025-47405

CVE-2025-47405 describes memory corruption that occurs when processing camera sensor IO controls with invalid output buffers. The connected CVE records call it an untrusted pointer dereference in the camera path, linking root cause to dereferencing pointers derived from untrusted inputs during IO...

7.8CVSS5.8AI score0.00075EPSS

Exploits0References1Affected Software1

NVD•added 2026/05/04 3:16 p.m.•7 views

CVE-2026-33007

A NULL pointer dereference in the modauthnsocache in Apache HTTP Server 2.4.66 and earlier allows an unauthenticated remote user to crash a child process in a caching forward proxy configuration. Users are recommended to upgrade to version 2.4.67, which fixes this issue...

5.3CVSS0.00514EPSS

Exploits0References2

NVD•added 2026/05/04 3:16 p.m.•4 views

CVE-2026-29169

A NULL pointer dereference in moddavlock in Apache HTTP Server 2.4.66 and earlier may allow an attacker to crash the server with a malicious request.moddavlock is not used internally by moddav or moddavfs. The only known use-case for moddavlock was moddavsvn from Apache Subversion earlier than...

7.5CVSS0.00594EPSS

Exploits0References3

EUVD•added 2026/05/04 2:48 p.m.•6 views

EUVD-2026-26957

7.5CVSS5.8AI score0.00594EPSS

Exploits0References1

ATTACKERKB•added 2026/05/04 2:48 p.m.•6 views

CVE-2026-29169

7.5CVSS5.8AI score0.00594EPSS

Exploits0References2

Cvelist•added 2026/05/04 2:48 p.m.•62 views

CVE-2026-29169 Apache HTTP Server: mod_dav_lock indirect lock crash

0.00594EPSS

Exploits0References1

AlpineLinux•added 2026/05/04 2:48 p.m.•4 views

CVE-2026-29169

7.5CVSS5.8AI score0.00594EPSS

Exploits0

CVE•added 2026/05/04 2:48 p.m.•49 views

CVE-2026-29169

CVE-2026-29169 : A NULL pointer dereference in mod_dav_lock of Apache HTTP Server 2.4.66 and earlier can crash the server when handling a malicious request. mod_dav_lock is not used internally by mod_dav or mod_dav_fs; the only known use-case was with mod_dav_svn from Apache Subversion (earlier t...

7.5CVSS5.8AI score0.00594EPSS

Exploits0References3Affected Software1

EUVD•added 2026/05/04 2:41 p.m.•5 views

EUVD-2026-26963

5.3CVSS5.8AI score0.00514EPSS

Exploits0References1