CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2026/06/09 11:17 p.m.•5 views

UBUNTU-CVE-2026-9754

An authenticated user with the read role may read limited amounts of uninitialized stack memory via specially-crafted issuances of the filemd5 command...

7.1CVSS5.3AI score0.00224EPSS

Exploits0References3

CVE•added 2026/06/09 10:33 p.m.•18 views

CVE-2026-9754

CVE-2026-9754 describes an issue where an authenticated user with the read role can read limited amounts of uninitialized stack memory via specially crafted issuances of the filemd5 command. The condition relies on issuing filemd5 in a crafted way to disclose memory that was not initialized, with...

7.1CVSS5.5AI score0.00224EPSS

Exploits0References1Affected Software1

Cvelist•added 2026/06/09 10:33 p.m.•42 views

CVE-2026-9754 Stack memory disclosure in filemd5 command

An authenticated user with the read role may read limited amounts of uninitialized stack memory via specially-crafted issuances of the filemd5 command...

7.1CVSS0.00224EPSS

MongoDB•added 2026/06/09 10:33 p.m.•11 views

Stack memory disclosure in filemd5 command

An authenticated user with the read role may read limited amounts of uninitialized stack memory via specially-crafted issuances of the filemd5 command...

7.1CVSS5.5AI score0.00224EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2026/06/09 12:0 a.m.•13 views

PT-2026-48304

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description An authenticated user with the read role can read limited amounts of uninitialized stack memory. This occurs through specially-crafted issuances of the 'filemd5'...

7.1CVSS5.8AI score0.00224EPSS

Exploits0References8

OSV•added 2026/05/13 8:10 a.m.•1 views

BIT-MONGODB-2026-4148 ExpressionContext use-after-free in classic engine $lookup and $graphLookup aggregation operators

A use-after-free vulnerability can be triggered in sharded clusters by an authenticated user with the read role who issues a specially crafted $lookup or $graphLookup aggregation pipeline...

Positive Technologies•added 2026/04/13 12:0 a.m.•1 views

PT-2026-32437

A use-after-free vulnerability can be triggered in sharded clusters by an authenticated user with the read role who issues a specially crafted $lookup or $graphLookup aggregation pipeline...

RedhatCVE•added 2026/03/26 2:58 p.m.•3 views

Exploits0References3

CVE-2026-4148

A use-after-free vulnerability can be triggered in sharded clusters by an authenticated user with the read role who issues a specially crafted $lookup or $graphLookup aggregation pipeline...

RedhatCVE•added 2026/03/26 2:58 p.m.•5 views

CVE-2026-4147

An authenticated user with the read role may read limited amounts of uninitialized stack memory via specially-crafted issuances of the filemd5 command...

EUVD•added 2026/03/17 6:30 p.m.•2 views

EUVD-2026-12587

A use-after-free vulnerability can be triggered in sharded clusters by an authenticated user with the read role who issues a specially crafted $lookup or $graphLookup aggregation pipeline...

EUVD•added 2026/03/17 6:30 p.m.•4 views

EUVD-2026-12586

An authenticated user with the read role may read limited amounts of uninitialized stack memory via specially-crafted issuances of the filemd5 command...

NVD•added 2026/03/17 4:16 p.m.•3 views

CVE-2026-4148

A use-after-free vulnerability can be triggered in sharded clusters by an authenticated user with the read role who issues a specially crafted $lookup or $graphLookup aggregation pipeline...

8.8CVSS0.00323EPSS

NVD•added 2026/03/17 4:16 p.m.•3 views

CVE-2026-4147

An authenticated user with the read role may read limited amounts of uninitialized stack memory via specially-crafted issuances of the filemd5 command...

7.1CVSS0.00215EPSS

UbuntuCve•added 2026/03/17 4:16 p.m.•3 views

CVE-2026-4147

An authenticated user with the read role may read limited amounts of uninitialized stack memory via specially-crafted issuances of the filemd5 command...

OSV•added 2026/03/17 4:16 p.m.•4 views

UBUNTU-CVE-2026-4148

A use-after-free vulnerability can be triggered in sharded clusters by an authenticated user with the read role who issues a specially crafted $lookup or $graphLookup aggregation pipeline...

ATTACKERKB•added 2026/03/17 3:53 p.m.•2 views

Exploits0References3

CVE-2026-4148

A use-after-free vulnerability can be triggered in sharded clusters by an authenticated user with the read role who issues a specially crafted $lookup or $graphLookup aggregation pipeline...

Exploits0References2Affected Software1

CVE•added 2026/03/17 3:50 p.m.•23 views

CVE-2026-4147

The CVE-2026-4147 entry describes an issue where an authenticated user with the read role can read limited amounts of uninitialized stack memory through specially crafted issuances of the filemd5 command. Root cause: exposure of uninitialized stack memory during filemd5 handling. Impact: potentia...

Exploits0References1Affected Software1

ATTACKERKB•added 2026/03/17 3:50 p.m.•3 views

CVE-2026-4147

An authenticated user with the read role may read limited amounts of uninitialized stack memory via specially-crafted issuances of the filemd5 command...

Exploits0References2Affected Software1

Cvelist•added 2026/03/17 3:50 p.m.•20 views

CVE-2026-4147 Stack memory disclosure in filemd5 command

An authenticated user with the read role may read limited amounts of uninitialized stack memory via specially-crafted issuances of the filemd5 command...

7.1CVSS0.00215EPSS