CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5135 matches found

ATTACKERKB•added 2026/03/26 1:2 a.m.•1 views

CVE-2026-4833

A weakness has been identified in Orc discount up to 3.0.1.2. This issue affects the function compile of the file markdown.c of the component Markdown Handler. This manipulation causes uncontrolled recursion. The attack is restricted to local execution. The exploit has been made available to the...

4.8CVSS5.4AI score0.0002EPSS

Exploits0References7Affected Software1

Cvelist•added 2026/03/26 1:2 a.m.•26 views

CVE-2026-4833 Orc discount Markdown markdown.c compile recursion

4.8CVSS0.0002EPSS

Exploits0References7

Vulnrichment•added 2026/03/26 1:2 a.m.•1 views

CVE-2026-4833 Orc discount Markdown markdown.c compile recursion

4.8CVSS5.5AI score0.0002EPSS

Exploits0References7

EUVD•added 2026/03/26 1:2 a.m.•0 views

EUVD-2026-16078

4.8CVSS5.4AI score0.0002EPSS

Exploits0References7

CNNVD•added 2026/03/26 12:0 a.m.•2 views

discount 安全漏洞

discount is a Markdown language parsing and conversion tool developed by Orc developers. Versions of discount 3.0.1.2 and earlier contain security vulnerabilities. These vulnerabilities stem from the compile function in the markdown.c file being manipulated in a way that allows uncontrolled...

4.8CVSS5.8AI score0.0002EPSS

Exploits0References7

Positive Technologies•added 2026/03/26 12:0 a.m.•3 views

PT-2026-28186

4.8CVSS5.4AI score0.0002EPSS

Exploits0References8

CNNVD•added 2026/03/26 12:0 a.m.•2 views

YAML 安全漏洞

YAML is a parsing and serialization library developed by Eemeli Aro, which supports YAML 1.1 and 1.2 standards. Versions of YAML prior to 1.10.3 and 2.8.3 contain security vulnerabilities. These vulnerabilities stem from the use of depth-limited recursive function calls during node...

4.3CVSS5.8AI score0.00025EPSS

Exploits1References4

Snyk•added 2026/03/25 9:3 p.m.•3 views

Uncontrolled Recursion

Overview smol-toml is an A small, fast, and correct TOML parser/serializer Affected versions of this package are vulnerable to Uncontrolled Recursion. An attacker can cause the application to crash by submitting TOML documents containing thousands of consecutive commented lines, which triggers...

6.9CVSS6AI score

Exploits0References2

OSV•added 2026/03/25 9:3 p.m.•1 views

GHSA-V3RJ-XJV7-4JMQ smol-toml: Denial of Service via TOML documents containing thousands of consecutive commented lines

Summary An attacker can send a maliciously crafted TOML to cause the parser to crash, because of a stack overflow caused by thousands of consecutive commented lines. The library uses recursion internally while parsing to skip over commented lines, which can be exploited to crash an application th...

5.3CVSS6.2AI score

Exploits0References3

Github Security Blog•added 2026/03/25 9:2 p.m.•2 views

Protobuf: Denial of Service issue through malicious messages containing negative varints or deep recursion

Impact A Denial of Service DoS vulnerability exists in the Protobuf PHP library during the parsing of untrusted input. Maliciously structured messages—specifically those containing negative varints or deep recursion—can be used to crash the application, impacting service availability. Patches...

7.1CVSS5.8AI score0.00031EPSS

Exploits0References7Affected Software1

OSV•added 2026/03/25 9:2 p.m.•4 views

GHSA-P2GH-CFQ4-4WJC Protobuf: Denial of Service issue through malicious messages containing negative varints or deep recursion

7.1CVSS5.8AI score0.00031EPSS

Exploits0References7

Snyk•added 2026/03/25 8:8 p.m.•1 views

Uncontrolled Recursion

Overview Affected versions of this package are vulnerable to Uncontrolled Recursion in the compose/resolve phase due to using recursive function calls without a depth bound. An attacker can cause the application to throw a RangeError and potentially terminate the Node.js process by supplying a...

6.5CVSS5.9AI score0.00025EPSS

Exploits1References2

Snyk•added 2026/03/25 8:8 p.m.•2 views

Uncontrolled Recursion

6.5CVSS5.9AI score0.00025EPSS

Exploits1References2

IBM Security Bulletins•added 2026/03/25 7:31 p.m.•5 views

Security Bulletin: Multiple Security vulnerabilities affecting IBM Knowledge Catalog Standard Cartridge

Summary Multiple security vulnerabilities impacting IBM Knowledge Catalog Standard Cartridge. These vulnerabilities had been addressed and customers should update to the recommended version of the product at the earliest opportunity. Vulnerability Details CVEID:CVE-2025-36187 DESCRIPTION: IBM...

9.4CVSS7AI score0.1309EPSS

Exploits9Affected Software1

SUSE Linux•added 2026/03/25 10:31 a.m.•4 views

Security update for grafana

This update for grafana fixes the following issues: Security issues fixed: CVE-2026-21722: Public dashboards annotations: use dashboard timerange if time selection disabled bsc1258136 CVE-2026-21721: Fixed access control by the dashboard permissions API bsc1257337 CVE-2026-21720: Fixed...

8.7CVSS5.8AI score0.00438EPSS

Exploits1References22

OSV•added 2026/03/25 10:26 a.m.•1 views

CVE-2026-23292 scsi: target: Fix recursive locking in __configfs_open_file()

In the Linux kernel, the following vulnerability has been resolved: scsi: target: Fix recursive locking in configfsopenfile In flushwritebuffer, &p-fragsem is acquired and then the loaded store function is called, which, here, is targetcoreitemdbrootstore. This function called filpopen, following...

5.5CVSS5.7AI score0.00018EPSS

Exploits0References9

OSV•added 2026/03/25 9:44 a.m.•2 views

SUSE-SU-2026:20878-1 Security update for python-pyasn1

This update for python-pyasn1 fixes the following issue: - CVE-2026-30922: Denial of Service via Unbounded Recursion bsc1259803...

7.5CVSS7.1AI score0.00027EPSS

Exploits1References3

OSV•added 2026/03/25 3:9 a.m.•0 views

OPENSUSE-SU-2026:20418-1 Security update for python-pyasn1

This update for python-pyasn1 fixes the following issue: - CVE-2026-30922: Denial of Service via Unbounded Recursion bsc1259803...

7.5CVSS5.9AI score0.00027EPSS

Exploits1References2