CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE-2026-28387: fix use-after-free / double-free in danematch by releasing the previously stored dane-mcert with X509free instead of OPENSSLfree; the slot is reference-bumped via X509upref so the matching free is X509free...

8.1CVSS5.8AI score0.00631EPSS

Exploits0References1

OSV•added 2026/04/29 9:1 a.m.•5 views

MINI-P942-VHRX-MXRX

Bulletin has no description...

8.8CVSS4.8AI score0.00196EPSS

Exploits1

Cvelist•added 2026/04/29 8:22 a.m.•31 views

CVE-2026-42515 Insecure Direct Object Reference (IDOR) Vulnerability in e-Sushrut HMIS

This vulnerability exists in e-Sushrut due to improper access control in resource access validation. An authenticated attacker could exploit this vulnerability by manipulating parameter in the API request URL to gain unauthorized access to sensitive information of patients on the targeted system...

7.1CVSS0.00226EPSS

Exploits0References1

OSV•added 2026/04/29 7:30 a.m.•7 views

MINI-X5MW-RGV9-R62R

Bulletin has no description...

5.3CVSS4.8AI score0.0019EPSS

Exploits0

OSV•added 2026/04/29 3:1 a.m.•4 views

MINI-J9P5-5RJ9-75RH

Bulletin has no description...

8.8CVSS5AI score0.00196EPSS

Exploits1

OSV•added 2026/04/29 2:15 a.m.•6 views

MINI-C629-36M6-J429

Bulletin has no description...

4.8CVSS4.8AI score0.00199EPSS

Exploits0

OSV•added 2026/04/29 2:15 a.m.•3 views

MINI-9WHF-PJG5-FV2W

Bulletin has no description...

5AI score

Exploits0

OSV•added 2026/04/29 12:37 a.m.•5 views

CLEANSTART-2026-SP87460 Security fixes for ghsa-72hv-8253-57qq applied in versions: 3.8.6-r0

Security vulnerability affects the apache-zookeeper package. This issue is resolved in later releases. See references for vulnerability details...

5.8AI score

Exploits0References2

OSV•added 2026/04/29 12:15 a.m.•5 views

MINI-83X8-PH53-37J4

Bulletin has no description...

6.1CVSS4.8AI score0.0029EPSS

Exploits0

Positive Technologies•added 2026/04/29 12:0 a.m.•7 views

PT-2026-35989

Name of the Vulnerable Software and Affected Versions PDFunite version 0.41.0 Description A buffer overflow allows local attackers to crash the application by processing malformed PDF files during merge operations. A segmentation fault can be triggered in the XRef::getEntry function within...

6.9CVSS6AI score0.00177EPSS

Exploits1References6

Snyk•added 2026/04/29 12:0 a.m.•6 views

Origin Validation Error

Overview Affected versions of this package are vulnerable to Origin Validation Error via the reuse of an easy handle in HTTP requests when a custom Host: header is set for the initial request and omitted in a subsequent one. An attacker can obtain cookies intended for a different host by exploiti...

7.5CVSS5.8AI score0.00291EPSS

Exploits1References2

OSV•added 2026/04/28 11:0 p.m.•4 views

MINI-3H4V-86FM-CMRQ

Bulletin has no description...

8.8CVSS4.8AI score0.00196EPSS

Exploits1

OSV•added 2026/04/28 10:30 p.m.•5 views

MINI-7R9W-624P-795C

Bulletin has no description...

6.1CVSS4.8AI score0.0024EPSS

Exploits0

NVD•added 2026/04/28 10:16 p.m.•11 views

CVE-2026-41649

Outline is a service that allows for collaborative documentation. The shares.create API endpoint starting in version 0.86.0 and prior to version 1.7.0 has an insecure direct object reference.. When both collectionId and documentId are provided in the request, the authorization logic only checks...

7.7CVSS0.00293EPSS

Exploits1References3

OSV•added 2026/04/28 9:15 p.m.•4 views

MINI-XPH6-XF46-5GQ3

Bulletin has no description...

7.5CVSS5.7AI score0.00283EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by