CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Imperva Blog•added 2026/06/07 8:40 a.m.•20 views

The Clock Is Already Ticking: Why Post-Quantum Cryptography Can’t Wait

There is a question I have been hearing more and more from CISOs, compliance officers, and security architects over the past year. It does not start with "we had a breach" or "we failed an audit." It starts with something that sounds almost philosophical: " Are we quantum-safe?" A year ago, that...

5.6AI score

RedhatCVE•added 2026/06/05 7:36 p.m.•7 views

CVE-2026-41509

CROSS implementation contains reference and optimized implementations of the CROSS post-quantum signature algorithm. Prior to commit fc6b7e7, there is a buffer overflow in cryptosignopen caused by an underflow of the integer mlen. This issue has been patched via commit fc6b7e7...

9.8CVSS5.7AI score0.0034EPSS

Exploits0References1

Packet Storm News•added 2026/06/05 12:0 a.m.•6 views

Empirical Evaluation of Large Language Models for Migration of Code Fragments to Post-Quantum Cryptography

The transition to post-quantum cryptography PQC requires not only replacing vulnerable cryptographic primitives, but also refactoring the surrounding software logic. While existing PQC migration frameworks provide organizational guidance, practical code-level remediation remains largely manual an...

5.6AI score

SUSE CVE•added 2026/06/02 1:38 a.m.•12 views

SUSE CVE-2026-44518

liboqs is a C-language cryptographic library that provides implementations of post-quantum cryptography algorithms. Prior to 0.16.0, an out-of-bounds read has been identified in the XMSS and XMSS^MT stateful signature verification code. When the verification function is called with a signature...

SUSE CVE•added 2026/06/02 1:37 a.m.•11 views

Exploits0References4

SUSE CVE-2026-46344

Tenable Nessus•added 2026/06/02 12:0 a.m.•8 views

Exploits0References3

Linux Distros Unpatched Vulnerability : CVE-2026-46344

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - liboqs is a C-language cryptographic library that provides implementations of post-quantum cryptography algorithms. Prior to 0.16.0, an out-of-bounds read has...

NVD•added 2026/05/29 7:16 p.m.•15 views

CVE-2026-46344

5.3CVSS0.00305EPSS

EUVD•added 2026/05/29 6:8 p.m.•13 views

EUVD-2026-33413

EUVD•added 2026/05/29 6:7 p.m.•14 views

EUVD-2026-33412

Positive Technologies•added 2026/05/29 12:0 a.m.•10 views

PT-2026-44940

Name of the Vulnerable Software and Affected Versions liboqs versions prior to 0.16.0 Description An out-of-bounds read exists in the XMSS and XMSS^MT stateful signature verification code. This occurs when the verification function is called with a signature buffer sized for the declared algorith...

5.3CVSS5.6AI score0.00305EPSS

Exploits0References5

Wiz blog•added 2026/05/28 1:34 p.m.•10 views

State of Post Quantum Cryptography

Discussion of PQC relevant statistics that we see across our customers and other data sources...

Packet Storm News•added 2026/05/27 12:0 a.m.•12 views

Efficient and Quantum-Safe Internet Key Exchange Protocols for Satellite Communications

This paper studies cryptographic key exchange in satellite communications, which requires specific solutions because the satellite context presents unique challenges, particularly concerning onboard resource constraints and long transmission latency. We address these challenges by considering the...

Wiz blog•added 2026/05/18 11:0 a.m.•11 views

From Cryptographic Blind Spots to Post-Quantum Agility: Introducing Wiz for PQC Readiness

Eliminate cryptographic blind spots and neutralize legacy debt with an integrated cryptographic asset inventory. Identify risks across code, cloud, and runtime, using the Wiz Security Graph to prioritize migration and protect against "Harvest Now, Decrypt Later" attacks...

OSV•added 2026/05/15 6:13 p.m.•4 views

GHSA-RC6V-5RMX-W5MV arnika is affected by medium-severity issues in UDP rotation, PQC handling, and KMS TLS

Summary Three medium-severity issues in arnika affecting the UDP key-rotation protocol, PQC key file handling, and KMS TLS client. All require specific preconditions to exploit and do not allow direct code execution or immediate key extraction. A self-contained PoC is attached. Details 1 ACK...

6.3CVSS6.1AI score

Exploits0References4

Github Security Blog•added 2026/05/15 6:13 p.m.•13 views

arnika is affected by medium-severity issues in UDP rotation, PQC handling, and KMS TLS

6.1AI score

Exploits0References4Affected Software1

Packet Storm News•added 2026/05/15 12:0 a.m.•8 views

Quantum Futures Interactive: A Live Demonstration of Post-Quantum Blockchain Security, Infrastructure Tradeoffs, and Sustainable Distributed Trust

Advances in quantum computing introduce long-term security challenges for widely deployed public-key cryptographic systems used across blockchain platforms and decentralized applications. Although post-quantum cryptography PQC standards are emerging, understanding quantum risk remains fragmented...

Securelist•added 2026/05/12 7:0 a.m.•4 views

State of ransomware in 2026

With International Anti-Ransomware Day taking place on May 12, Kaspersky presents its annual report on the evolving global and regional ransomware cyberthreat landscape. Ransomware remains one of the most persistent and adaptive cyberthreats. In 2026: New families continue to emerge, adopting...

6AI score

NVD•added 2026/05/08 2:16 p.m.•20 views

CVE-2026-41509

9.8CVSS0.0034EPSS

EUVD•added 2026/05/08 1:47 p.m.•10 views

EUVD-2026-28598

6.9CVSS6AI score0.0034EPSS