CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

58 matches found

EUVD-2026-34033

Fixed a VM panic caused by unbounded recursion in the grpcfuse kernel module when a container created deeply nested directories on a bind-mounted host folder and triggered a dentry invalidation event. This issue has been fixed in Docker Desktop 4.76.0...

8.2CVSS5.7AI score0.00014EPSS

Exploits0References2

OSV•added 2026/05/21 5:15 a.m.•1 views

USN-8202-3 jq regression

USN-8202-1 fixed vulnerabilities in jq. The update caused a regression for Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. This update fixes the problem. We apologize for the inconvenience. Original advisory details: It was discovered that jq did not correctly handle certain string concatenations. An...

7.5CVSS6AI score0.00024EPSS

Exploits0References3

EUVD•added 2026/04/30 7:23 a.m.•3 views

EUVD-2026-26352

Incorrect packet validation allowed unbounded recursion parsing SCTP chunk parameters. This can eventually result in a stack overflow and panic. Remote attackers can craft packets which cause affected systems to panic. This affects any system where pf is configured to process traffic, independent...

7.5CVSS5.3AI score0.00065EPSS

Exploits0References1

Ubuntu•added 2026/04/28 4:18 a.m.•7 views

USN-8202-2: jq vulnerabilities

USN-8202-1 fixed vulnerabilities in jq. This update provides the corresponding update to Ubuntu 26.04 LTS. Original advisory details: It was discovered that jq did not correctly handle certain string concatenations. An attacker could possibly use this issue to cause a denial of service or execute...

8.2CVSS5.9AI score0.00137EPSS

Exploits5

OSV•added 2026/04/23 7:35 a.m.•2 views

USN-8202-1 jq vulnerabilities

It was discovered that jq did not correctly handle certain string concatenations. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. This issue was addressed in Ubuntu 16.04 LTS, Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, Ubuntu 22.04 LTS, Ubuntu 24.04 LTS...

8.2CVSS6AI score0.00137EPSS

Exploits5References7

Ubuntu•added 2026/04/23 7:35 a.m.•6 views

USN-8202-1: jq vulnerabilities

8.2CVSS5.9AI score0.00137EPSS

Exploits5

OSV•added 2026/03/30 11:41 a.m.•0 views

USN-8129-1 pyasn1 vulnerability

It was discovered that pyasn1 incorrectly handled recursion when decoding ASN.1 data. An attacker could use this issue to cause pyasn1 to consume resources, leading to a denial of service...

7.5CVSS5.8AI score0.00027EPSS

Exploits1References2

IBM Security Bulletins•added 2026/03/25 7:31 p.m.•4 views

Security Bulletin: Multiple Security vulnerabilities affecting IBM Knowledge Catalog Standard Cartridge

Summary Multiple security vulnerabilities impacting IBM Knowledge Catalog Standard Cartridge. These vulnerabilities had been addressed and customers should update to the recommended version of the product at the earliest opportunity. Vulnerability Details CVEID:CVE-2025-36187 DESCRIPTION: IBM...

9.4CVSS7AI score0.1309EPSS

Exploits9Affected Software1

Tenable Nessus•added 2026/02/26 12:0 a.m.•7 views

AlmaLinux 9 : protobuf (ALSA-2026:3095)

The remote AlmaLinux 9 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2026:3095 advisory. python: protobuf: Protobuf: Denial of Service due to recursion depth bypass CVE-2026-0994 Tenable has extracted the preceding description block directly from the...

8.2CVSS6AI score0.00013EPSS

Exploits0References3

OSV•added 2026/02/25 12:38 p.m.•1 views

USN-8063-1 protobuf vulnerability

It was discovered that Protocol Buffers incorrectly handled recursion when the Python google.protobuf.jsonformat.ParseDict function is being used. An attacker could possibly use this issue to cause Protocol Buffers to consume resources, resulting in a denial of service...

8.2CVSS7.3AI score0.00013EPSS

Exploits0References2

NCSC•added 2026/01/21 10:8 a.m.•11 views

Vulnerabilities fixed in Oracle Fusion Middleware

Oracle has fixed vulnerabilities in several products, including Oracle HTTP Server, Oracle WebLogic Server, and Oracle Fusion Middleware. The vulnerabilities in the Oracle products allow unauthenticated attackers to access sensitive data, conduct denial-of-service DoS attacks, and compromise the...

10CVSS6.8AI score0.74016EPSS

Exploits38References1

RedhatCVE•added 2026/01/09 8:44 a.m.•6 views

CVE-2022-23591

Tensorflow is an Open Source Machine Learning Framework. The GraphDef format in TensorFlow does not allow self recursive functions. The runtime assumes that this invariant is satisfied. However, a GraphDef containing a fragment such as the following can be consumed when loading a SavedModel. This...

7.5CVSS7.1AI score0.00335EPSS

Exploits0References1

IBM Security Bulletins•added 2025/12/30 12:59 p.m.•11 views

Security Bulletin: Multiple Vulnerabilities in IBM Event Processing

Summary Multiple vulnerabilities were addressed in IBM Event Processing version 1.4.5 Vulnerability Details CVEID:CVE-2025-30218 DESCRIPTION: Next.js is a React framework for building full-stack web applications. To mitigate CVE-2025-29927, Next.js validated the x-middleware-subrequest-id which...

8.2CVSS6.3AI score0.00234EPSS

Exploits56Affected Software1

Tenable Nessus•added 2025/11/03 12:0 a.m.•2 views

RHEL 9 : kernel (RHSA-2025:19492)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:19492 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: net: usb: smsc75xx: Limit...

7.8CVSS7.3AI score0.00067EPSS

Exploits0References22

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2018-8292

Malware in sbrugna...

7.5CVSS5.8AI score0.00948EPSS

Exploits0References22

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2017-7979

Malware in sbrugna...

7.5CVSS7.6AI score0.00676EPSS

Exploits0References6