CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

84 matches found

RedhatCVE•added 2026/05/27 12:45 p.m.•6 views

CVE-2026-45835

A flaw was found in the Linux kernel's Bluetooth L2CAP Logical Link Control and Adaptation Protocol component. A missing null pointer check in the l2capsocknewconnectioncb function could allow a remote attacker to trigger a null-pointer dereference. This vulnerability can lead to a system crash,...

5.5CVSS5.8AI score0.00032EPSS

Exploits0References4

Tenable Nessus•added 2026/05/27 12:0 a.m.•7 views

RHEL 10 : podman (RHSA-2026:20570)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:20570 advisory. The podman tool manages pods, container images, and containers. It is part of the libpod library, which is for applications that use...

7.5CVSS7.3AI score0.00022EPSS

Exploits0References8

IBM Security Bulletins•added 2026/05/21 4:11 p.m.•5 views

Security Bulletin: IBM App Connect for Manufacturing is vulnerable to multiple vulnerabilities due to Netty

Summary IBM App Connect for Manufacturing is vulnerable to multiple vulnerabilities due to Netty. Vulnerability Details CVEID:CVE-2026-42580 DESCRIPTION: Netty is an asynchronous, event-driven network application framework. Prior to 4.2.13.Final and 4.1.133.Final, Netty's chunk size parser silent...

9.8CVSS7AI score0.00018EPSS

Exploits5Affected Software1

Tenable Nessus•added 2026/05/06 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2026-43198

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tcp: fix potential race in tcpv6synrecvsock Code in tcpv6synrecvsock after the call to tcpv4synrecvsock is done too late. After tcpv4synrecvsock, the child sock...

9.8CVSS5.7AI score0.00067EPSS

Exploits0References4

Tenable Nessus•added 2026/03/03 12:0 a.m.•1 views

RockyLinux 9 : skopeo (RLSA-2026:3340)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:3340 advisory. crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate CVE-2025-61729 golang: net/url: Memory exhaustion in...

10CVSS6AI score0.00045EPSS

Exploits3References7

Tenable Nessus•added 2026/01/16 12:0 a.m.•1 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003587)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003587 advisory. An issue was discovered in the Linux kernel before 5.0.10. SMB2read in fs/cifs/smb2pdu.c has a use-after- free. NOTE: this was not fixed correctly in 5.0.10; see the...

4.3CVSS6.5AI score0.00548EPSS

Exploits1References8

OSV•added 2026/01/15 2:51 p.m.•2 views

USN-7964-1 git vulnerabilities

It was discovered that Git did not properly sanitize URLs when asking for credentials via a terminal prompt. An attacker could possibly use this issue to trick a user into disclosing their password. CVE-2024-50349 It was discovered that Git did not properly handle carriage return characters in it...

7.5CVSS6.8AI score0.03365EPSS

Exploits2References3

UbuntuCve•added 2026/01/14 9:15 p.m.•2 views

CVE-2026-0959

IEEE 802.11 protocol dissector crash in Wireshark 4.6.0 to 4.6.2 and 4.4.0 to 4.4.12 allows denial of service...

6.5CVSS5.9AI score0.00046EPSS

Exploits0References3

RedhatCVE•added 2026/01/09 11:26 a.m.•8 views

CVE-2021-33627

An issue was discovered in Insyde InsydeH2O Kernel 5.0 before 05.09.11, 5.1 before 05.17.11, 5.2 before 05.27.11, 5.3 before 05.36.11, 5.4 before 05.44.11, and 5.5 before 05.52.11 affecting FwBlockServiceSmm. Software SMI services that use the Communicate function of the EFISMMCOMMUNICATIONPROTOC...

8.2CVSS7.1AI score0.00103EPSS

Exploits0References1

Github Security Blog•added 2025/12/02 9:30 a.m.•7 views

Eclipse Paho Go MQTT may incorrectly encode strings if length exceeds 65535 bytes

In Eclipse Paho Go MQTT v3.1 library paho.mqtt.golang versions =1.5.0 UTF-8 encoded strings, passed into the library, may be incorrectly encoded if their length exceeds 65535 bytes. This may lead to unexpected content in packets sent to the server for example, part of an MQTT topic may leak into...

6.3CVSS6.8AI score0.00042EPSS

Exploits0References6Affected Software1

Tenable Nessus•added 2025/10/14 12:0 a.m.•2 views

SUSE SLES15 Security Update : kernel (Live Patch 19 for SLE 15 SP5) (SUSE-SU-2025:03553-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:03553-1 advisory. This update for the Linux Kernel 5.14.21-1505005580 fixes several issues. The following security issues were fixed: - CVE-2024-53168: sunrpc:...

7.8CVSS7.3AI score0.00049EPSS

Exploits1References16

CNNVD•added 2025/10/10 12:0 a.m.•3 views

quic-go 安全漏洞

quic-go is an implementation of the QUIC protocol, RFC 9000 protocol in Go by Lucas Clemente, a personal developer. A security vulnerability in quic-go versions prior to 0.49.0, prior to 0.54.1, and prior to 0.55.0, which stems from improper handling of assertion failures, could lead to a denial ...

7.5CVSS6.2AI score0.00028EPSS

Exploits0References3