CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added yesterday•7 views

CVE-2026-48982

CVE-2026-48982 affects pam_usb prior to version 0.9.2, where updating a one-time pad file creates a temporary file with open() lacking O_EXCL, enabling a race between concurrent processes to update the same pad. This non-atomicity can cause the stored pad to diverge from expectations, potentially...

5.8CVSS5.3AI score0.00015EPSS

EUVD•added 2 days ago•5 views

EUVD-2026-37539

Race in Safe Browsing in Google Chrome on Mac prior to 149.0.7827.155 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS5.4AI score0.00182EPSS

Exploits0References3

NVD•added 2 days ago•2 views

CVE-2026-12468

Race in Updater in Google Chrome on Mac prior to 149.0.7827.155 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page. Chromium security severity: High...

8.3CVSS0.00178EPSS

NVD•added 2 days ago•4 views

CVE-2026-0083

In Nfc::eventCallback of Nfc.h, there is a possible use after free due to a race condition. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

10CVSS0.00121EPSS

Exploits0References1

7.8CVSS5.8AI score0.00125EPSS

kernel: sctp: revalidate list cursor after sctp_sendmsg_to_asoc() in SCTP_SENDALL

A flaw was found in the Linux kernel's Stream Control Transmission Protocol SCTP implementation. A race condition exists in the SCTPSENDALL path where a cached list entry is not properly revalidated after the socket lock is temporarily released. This allows a local attacker or a remote attacker v...

4.7CVSS5.5AI score0.00091EPSS

kernel: md/bitmap: fix GPF in write_page caused by resize race

A flaw was found in the Linux kernel's md/bitmap component. This vulnerability involves a use-after-free race condition that occurs during array resize operations. When the bitmapdaemonwork and bitmapresize functions execute concurrently, they can access memory pages that have already been freed...

7.8CVSS5.3AI score0.00095EPSS

kernel: netfilter: ctnetlink: ensure safe access to master conntrack

A flaw was found in the netfilter: ctnetlink component of the Linux kernel. This vulnerability occurs due to insufficient locking when accessing the master conntrack object, allowing it to become invalid while still being referenced. A local attacker could potentially exploit this race condition,...

CVE•added 2 days ago•5 views

CVE-2026-0083

Summary: CVE-2026-0083 describes a possible use-after-free in Nfc::eventCallback() within Nfc.h caused by a race condition, enabling local privilege escalation with no additional privileges and no user interaction required. Connected sources (NVD, EUVD, CIRCL, CVE lists) reproduce the same descri...

10CVSS5.6AI score0.00121EPSS

Exploits0References1Affected Software1

Cvelist•added 2 days ago•25 views

CVE-2026-0083

10CVSS0.00121EPSS

Exploits0References1

Cvelist•added 2 days ago•13 views

CVE-2026-12468

0.00178EPSS

Debian CVE•added 2 days ago•3 views

CVE-2026-12454

8.3CVSS5.4AI score0.00182EPSS

Exploits0

7.8CVSS5.8AI score0.00125EPSS

kernel: sctp: revalidate list cursor after sctp_sendmsg_to_asoc() in SCTP_SENDALL

Positive Technologies•added 2 days ago•6 views

PT-2026-50235

Name of the Vulnerable Software and Affected Versions Google Android affected versions not specified Description A race condition in the eventCallback function of Nfc.h can lead to a use-after-free scenario. This issue allows for local escalation of privilege without requiring additional executio...

10CVSS5.5AI score0.00121EPSS

Exploits0References4

Positive Technologies•added 2 days ago•5 views

PT-2026-50471

Name of the Vulnerable Software and Affected Versions chrome-devtools-mcp affected versions not specified Description On POSIX systems, specifically macOS and Linux sessions where the XDG RUNTIME DIR environment variable is unset, the daemon writes its PID file to a deterministic path in /tmp usi...

6.1CVSS5.4AI score

Exploits0References4

Tenable Nessus•added 2 days ago•5 views

RockyLinux 8 : rsync (RLSA-2026:26408)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:26408 advisory. rsync: rsync: Remote memory disclosure via integer overflow in compressed-token decoding CVE-2026-43618 rsync: TOCTOU symlink race condition allowing...

8.1CVSS5.5AI score0.00643EPSS

Tenable Nessus•added 2 days ago•4 views

RockyLinux 9 : rsync (RLSA-2026:26410)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:26410 advisory. rsync: rsync: Remote memory disclosure via integer overflow in compressed-token decoding CVE-2026-43618 rsync: TOCTOU symlink race condition allowing...

8.1CVSS5.5AI score0.00643EPSS