CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

76 matches found

CVE-2026-47382

NocoDB is software for building databases as spreadsheets. Prior to 2026.05.1, the connection-test endpoint opened a raw TCP socket to the user-supplied database host without resolving and range-checking the destination, so private and link-local addresses including IPv4-mapped IPv6 forms and...

5.3CVSS0.00041EPSS

Exploits0References1

AstraLinux•added 2026/05/03 11:59 p.m.•4 views

Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Range checks for the CHDBOFF and ERDBOFF registers. If the values read from the CHDBOFF and ERDBOFF registers are outside the range of the MHI register space, an invalid address may be calculated, which can later...

5.5CVSS5.7AI score0.00134EPSS

Exploits0References2

EUVD•added 2026/03/04 6:31 p.m.•6 views

EUVD-2026-9459

Multiple Cisco products are affected by a vulnerability in the Snort 3 VBA feature that could allow an unauthenticated, remote attacker to cause the Snort 3 Detection Engine to crash. This vulnerability is due to improper range checking when decompressing VBA data, which is user controlled. An...

5.8CVSS6AI score0.00414EPSS

Exploits0References2

SUSE CVE•added 2026/01/16 12:27 a.m.•3 views

SUSE CVE-2025-68819

In the Linux kernel, the following vulnerability has been resolved: media: dvb-usb: dtv5100: fix out-of-bounds in dtv5100i2cmsg rlen value is a user-controlled value, but dtv5100i2cmsg does not check the size of the rlen value. Therefore, if it is set to a value larger than sizeofst-data, an...

5.5CVSS6.5AI score0.00173EPSS

Exploits0References21

UbuntuCve•added 2026/01/13 4:16 p.m.•2 views

CVE-2025-68819

5.9AI score0.00173EPSS

Exploits0References36

Cvelist•added 2026/01/13 3:29 p.m.•19 views

CVE-2025-68819 media: dvb-usb: dtv5100: fix out-of-bounds in dtv5100_i2c_msg()

0.00173EPSS

Exploits0References7

EUVD•added 2025/10/15 6:57 p.m.•1 views

EUVD-2025-34686

gnark-crypto doesn't range check input values during ECDSA and EdDSA signature deserialization...

6.5AI score

Exploits0References6

RedHat Linux•added 2025/10/08 3:18 p.m.•5 views

kernel: bpf: Don't use tnum_range on array range checking for poke descriptors

In the Linux kernel, the following vulnerability has been resolved: bpf: Don't use tnumrange on array range checking for poke descriptors Hsin-Wei reported a KASAN splat triggered by their BPF runtime fuzzer which is based on a customized syzkaller: BUG: KASAN: slab-out-of-bounds in...

7.1CVSS6.8AI score0.0021EPSS

Exploits0References5

EUVD•added 2025/10/07 12:30 a.m.•6 views

EUVD-2016-9285

Malware in sbrugna...

10CVSS9.5AI score0.01585EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2023-25025

Malicious code in bioql PyPI...

4.2CVSS5AI score0.00091EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•5 views

EUVD-2023-37060

Malicious code in bioql PyPI...

6.7CVSS6.7AI score0.00093EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-25018

Malicious code in bioql PyPI...

4.2CVSS5AI score0.00091EPSS

Exploits0References1

AlmaLinux•added 2025/09/08 12:0 a.m.•6 views

Important: kernel-rt security update

The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirements. Security Fixes: kernel: bpf: Don't use tnumrange on array range checking for poke descriptors CVE-2022-49985 kernel: posix-cpu-timers: fix race between...

7.4CVSS7.6AI score0.01345EPSS

Exploits8References6

SUSE CVE•added 2025/06/19 3:44 a.m.•2 views

SUSE CVE-2022-49985

5.5CVSS6.2AI score0.0021EPSS

Exploits0References12

CVE•added 2025/06/18 11:0 a.m.•108 views

CVE-2022-49985

The CVE-2022-49985 entry concerns the Linux kernel, where the BPF component allowed a range check descriptor to misrepresent a tight range because tnum_range(0, map->max_entries-1) may yield a superset of the intended values. The root cause is that the tnum-based range representation can erron...

7.1CVSS6.3AI score0.0021EPSS

Exploits0References4Affected Software1

BDU FSTEC•added 2024/12/18 12:0 a.m.•3 views

The vulnerability of the loader for AMD Platform Security Processor processors allows a hacker to execute arbitrary code.

The vulnerability of the loader for AMD Platform Security Processor processors involves incorrect checking of the range in the object header. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

7.8CVSS7AI score0.0117EPSS

Exploits0References5Affected Software1

NVD•added 2023/11/06 4:15 a.m.•11 views

CVE-2023-32838

In dpe, there is a possible out of bounds write due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07310805; Issue ID: ALPS07310805...

6.7CVSS6.8AI score0.00087EPSS

Exploits0References1