CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: fsubset: Fix unbalanced refcnt in gethfree gethalloc increments the reference count, but gethfree fails to decrement it. This prevents the configuration of attributes via configfs after unlinking the function...

5.8AI score0.00013EPSS

Exploits0References3

Tenable Nessus•added 2026/05/12 12:0 a.m.•5 views

Mozilla Firefox < 150.0.3

The version of Firefox installed on the remote macOS or Mac OS X host is prior to 150.0.3. It is, therefore, affected by multiple vulnerabilities as referenced in the mfsa2026-45 advisory. - Sandbox escape in the Profile Backup component. This vulnerability was fixed in Firefox 150.0.3...

9.8CVSS5.8AI score0.00109EPSS

Exploits0References6

Oracle linux•added 2026/05/12 12:0 a.m.•9 views

kernel security update

6.12.0-124.56.1 - Add new Oracle Linux Driver Signing key 1 certificate Orabug: 37985782 - Disable UKI signing Orabug: 36571828 - Update Oracle Linux certificates Kevin Lyons - Disable signing for aarch64 Ilya Okomin - Oracle Linux RHCK Module Signing Key was added to the kernel trusted keys list...

8.8CVSS6AI score0.38453EPSS

Exploits29

CVE•added 2026/05/12 12:0 a.m.•9 views

CVE-2023-30059

An insecure direct object reference in MK-Auth 23.01K4.9 allows an attacker to access and send support calls for other users by manipulating the chamado parameter via a crafted GET request. The documents do not provide details on exploited versions, specific vectors beyond the parameter manipulat...

5.4CVSS5.7AI score0.00028EPSS

Exploits0References1

Hewlett-Packard•added 2026/05/12 12:0 a.m.•12 views

Intel UEFI Reference Firmware May 2026 Security Update

Intel has informed HP of a potential security vulnerability in UEFI for some Intel Reference Platforms which might allow information disclosure. Intel is releasing firmware updates to mitigate this potential vulnerability. Intel has released updates to mitigate the potential vulnerability. HP has...

5.6CVSS5.8AI score0.00017EPSS

Exploits0Affected Software5

Positive Technologies•added 2026/05/12 12:0 a.m.•7 views

PT-2026-40048

An insecure direct object reference in MK-Auth 23.01K4.9 allows attackers to access and send support calls for other users via manipulation of the chamado parameter through a crafted GET request...

5.7AI score0.00028EPSS

Exploits0References2

Vulnrichment•added 2026/05/12 12:0 a.m.•4 views

CVE-2023-30059

An insecure direct object reference in MK-Auth 23.01K4.9 allows attackers to access and send support calls for other users via manipulation of the chamado parameter through a crafted GET request...

5.7AI score0.00028EPSS

Exploits0References1

Cvelist•added 2026/05/12 12:0 a.m.•26 views

CVE-2023-30059

An insecure direct object reference in MK-Auth 23.01K4.9 allows attackers to access and send support calls for other users via manipulation of the chamado parameter through a crafted GET request...

0.00028EPSS

Exploits0References1

Intel•added 2026/05/12 12:0 a.m.•8 views

UEFI Reference Firmware Advisory

Summary: A potential security vulnerability in UEFI for some Intel Reference Platforms may allow information disclosure. Intel is releasing firmware updates to mitigate this potential vulnerability. Vulnerability Details: CVEID: CVE-2025-35991 Description: Improper initialization in the UEFI...

5.6CVSS5.7AI score0.00017EPSS

Exploits0

OSV•added 2026/05/11 11:20 p.m.•5 views

MINI-R3H6-5R29-MQ4H

Bulletin has no description...

7.5CVSS5.7AI score0.0002EPSS

Exploits0

OSV•added 2026/05/11 11:20 p.m.•1 views

MINI-PWF8-7H8M-PQHW

Bulletin has no description...

5.3CVSS5.7AI score0.00013EPSS

Exploits0