CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

76 matches found

EUVD•added 2026/05/22 2:11 p.m.•8 views

EUVD-2026-31444

NGINX Plus and NGINX Open Source have a vulnerability in the ngxhttprewritemodule module. This vulnerability exists when a rewrite directive uses a regex pattern with distinct, overlapping Perl-Compatible Regular Expression PCRE captures for example, ^/.$ and a replacement string that references...

9.2CVSS6.2AI score0.00237EPSS

Exploits3References1

AstraLinux•added 2026/05/03 11:59 p.m.•4 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: iommufd: Check for uptr overflow syzkaller discovered that setting up a page with a user VA that wraps past zero can trigger WARNONs, especially when pinuserpages strangely returns 0 due to invalid arguments. This issue preven...

5.9AI score0.00022EPSS

Exploits0References2

OSV•added 2026/04/17 1:1 p.m.•2 views

OESA-2026-1943 libarchive security update

is an open-source BSD-licensed C programming library that provides streaming access to a variety of different archive formats, including tar, cpio, pax, zip, and ISO9660 images. The distribution also includes bsdtar and bsdcpio, full-featured implementations of tar and cpio that use . Security...

9.8CVSS6.7AI score0.00185EPSS

Exploits0References4

EUVD•added 2026/04/08 3:9 p.m.•2 views

EUVD-2026-19348

OpenEXR: DWA Lossy Decoder Heap Out-of-Bounds Write...

8.4CVSS5.9AI score0.00011EPSS

Exploits1References5

SUSE CVE•added 2026/04/07 11:25 p.m.•2 views

SUSE CVE-2026-34589

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. From 3.2.0 to before 3.2.7, 3.3.9, and 3.4.9, the DWA lossy decoder constructs temporary per-component block pointers using signed 32-bit arithmetic. Fo...

7CVSS5.8AI score0.00011EPSS

Exploits1References4

OSV•added 2026/04/06 4:16 p.m.•0 views

DEBIAN-CVE-2026-34589

5CVSS5.3AI score0.00011EPSS

Exploits1References1

UbuntuCve•added 2026/04/06 4:16 p.m.•1 views

CVE-2026-34589

8.4CVSS5.9AI score0.00011EPSS

Exploits1References9

OSV•added 2026/04/06 4:16 p.m.•1 views

UBUNTU-CVE-2026-34589

8.4CVSS5.8AI score0.00011EPSS

Exploits1References10

Vulnrichment•added 2026/04/06 3:33 p.m.•2 views

CVE-2026-34589 OpenEXR: DWA Lossy Decoder Heap Out-of-Bounds Write

8.4CVSS5.9AI score0.00011EPSS

Exploits1References4

AlpineLinux•added 2026/04/06 3:33 p.m.•3 views

CVE-2026-34589

8.4CVSS5.9AI score0.00011EPSS

Exploits1

Debian CVE•added 2026/04/06 3:33 p.m.•4 views

CVE-2026-34589

8.4CVSS5.3AI score0.00011EPSS

Exploits1

Positive Technologies•added 2026/04/06 12:0 a.m.•2 views

PT-2026-30663

Name of the Vulnerable Software and Affected Versions OpenEXR versions 3.2.0 through 3.2.6, 3.3.9, and 3.4.9 Description OpenEXR, an image storage format used in the motion picture industry, contains a flaw in the DWA lossy decoder. Specifically, the decoder uses signed 32-bit arithmetic to creat...

8.4CVSS5.9AI score0.0009EPSS

Exploits6References47

SUSE CVE•added 2026/03/31 11:28 p.m.•2 views

SUSE CVE-2026-5121

A flaw was found in libarchive. On 32-bit systems, an integer overflow vulnerability exists in the zisofs block pointer allocation logic. A remote attacker can exploit this by providing a specially crafted ISO9660 image, which can lead to a heap buffer overflow. This could potentially allow for...

7.1CVSS6.7AI score0.00064EPSS

Exploits0References8

Cvelist•added 2026/03/19 9:49 p.m.•15 views

CVE-2026-30871 OpenWrt Project has Stack-based Buffer Overflow in DNS PTR Query

OpenWrt Project is a Linux operating system targeting embedded devices. In versions prior to 24.10.6 and 25.12.1, the mdns daemon has a Stack-based Buffer Overflow vulnerability in the parsequestion function. The issue is triggered by PTR queries for reverse DNS domains .in-addr.arpa and .ip6.arp...

9.5CVSS0.00023EPSS

Exploits0References3

NVD•added 2025/12/30 1:16 p.m.•1 views

CVE-2023-54239

In the Linux kernel, the following vulnerability has been resolved: iommufd: Check for uptr overflow syzkaller found that setting up a map with a user VA that wraps past zero can trigger WARNONs, particularly from pinuserpages weirdly returning 0 due to invalid arguments. Prevent creating a pages...

0.00022EPSS

Exploits0References2

OSV•added 2025/12/30 1:16 p.m.•0 views

UBUNTU-CVE-2023-54239

5.8AI score0.00022EPSS

Exploits0References5

UbuntuCve•added 2025/12/30 1:16 p.m.•1 views

CVE-2023-54239

5.7AI score0.00022EPSS

Exploits0References4

CVE•added 2025/12/30 12:11 p.m.•2 views

CVE-2023-54239

CVE-2023-54239 concerns the Linux kernel iommufd component. Public docs describe a fixed issue where a user virtual address (uptr) could overflow when mapping pages, triggering WARN_ONs (notably from pin_user_pages) due to invalid arguments. The fix prevents creating a pages object with an uptr a...

6AI score0.00022EPSS

Exploits0References2

OSV•added 2025/12/30 12:11 p.m.•1 views

CVE-2023-54239 iommufd: Check for uptr overflow

6.2AI score0.00022EPSS

Exploits0References5

CNNVD•added 2025/12/30 12:0 a.m.•2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from an unchecked user pointer overflow that could lead to a null pointer dereference...

5.9AI score0.00022EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by