Lucene search
K

21923 matches found

OSV
OSV
added 2026/04/23 6:9 a.m.5 views

BELL-CVE-2026-22021

Bulletin has no description...

5.3CVSS7.4AI score0.00305EPSS
Exploits0References1
Snyk
Snyk
added 2026/04/23 4:24 a.m.5 views

Malicious Package

Overview changelog-cli-logger is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS5.4AI score
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/04/23 1:24 a.m.4 views

SUSE CVE-2026-31530

In the Linux kernel, the following vulnerability has been resolved: cxl/port: Fix use after free of parentport in cxldetachep cxldetachep is called during bottom-up removal when all CXL memory devices beneath a switch port have been removed. For each port in the hierarchy it locks both the port a...

5.7AI score0.00125EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/04/23 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2026-6732

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in libxml2. This vulnerability occurs when the library processes a specially crafted XML Schema Definition XSD validated document that includes...

7.5CVSS5.9AI score0.00632EPSS
Exploits1References3
Circl
Circl
added 2026/04/22 11:20 p.m.8 views

CVE-2026-41170

creationtimestamp| type| source ---|---|--- 2026-04-22 23:20:48+00:00| seen| Telegram/bXcnMEVg4MqmghIUy-Ivhp7SDQD9oC-u5oUbMXpQMRT1SlU...

8.5CVSS5.8AI score0.00238EPSS
Exploits0
NVD
NVD
added 2026/04/22 9:17 p.m.5 views

CVE-2026-41168

pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.1 can craft a PDF which leads to long runtimes. This requires cross-reference streams with wrong large /Size values or object streams with wrong large /N values. This ha...

6.9CVSS0.00297EPSS
Exploits0References4
OSV
OSV
added 2026/04/22 9:17 p.m.6 views

DEBIAN-CVE-2026-41168

pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.1 can craft a PDF which leads to long runtimes. This requires cross-reference streams with wrong large /Size values or object streams with wrong large /N values. This ha...

5.3CVSS5.3AI score0.00297EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/22 8:49 p.m.5 views

EUVD-2026-25100

pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.1 can craft a PDF which leads to long runtimes. This requires cross-reference streams with wrong large /Size values or object streams with wrong large /N values. This ha...

6.9CVSS5.6AI score0.00297EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/04/22 8:49 p.m.4 views

CVE-2026-41168 pypdf has possible long runtimes for wrong size values in cross-reference and object streams

pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.1 can craft a PDF which leads to long runtimes. This requires cross-reference streams with wrong large /Size values or object streams with wrong large /N values. This ha...

6.9CVSS5.6AI score0.00297EPSS
Exploits0References4
CVE
CVE
added 2026/04/22 8:49 p.m.18 views

CVE-2026-41168

Summary: CVE-2026-41168 affects the Python PDF library pypdf

6.9CVSS5.6AI score0.00297EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/04/22 8:49 p.m.29 views

CVE-2026-41168 pypdf has possible long runtimes for wrong size values in cross-reference and object streams

pypdf is a free and open-source pure-python PDF library. An attacker who uses a vulnerability present in versions prior to 6.10.1 can craft a PDF which leads to long runtimes. This requires cross-reference streams with wrong large /Size values or object streams with wrong large /N values. This ha...

6.9CVSS0.00297EPSS
Exploits0References4
Circl
Circl
added 2026/04/22 7:55 p.m.9 views

CVE-2026-41326

creationtimestamp| type| source ---|---|--- 2026-04-22 19:55:07+00:00| published-proof-of-concept| https://github.com/kata-containers/kata-containers/security/advisories/GHSA-q49m-57vm-c8cc 2026-05-04 20:10:29+00:00| seen| https://gist.github.com/alon710/e5f670283b66e1c583d8b3f3f9d1efba 2026-05-1...

8.8CVSS5.7AI score0.00269EPSS
Exploits0References3
OSV
OSV
added 2026/04/22 4:31 p.m.5 views

MINI-WM23-4F6G-H5PM

Bulletin has no description...

9.8CVSS5.6AI score0.00652EPSS
Exploits0
OSV
OSV
added 2026/04/22 4:31 p.m.3 views

MINI-M6QW-86XC-QGP7

Bulletin has no description...

7.5CVSS5.6AI score0.00324EPSS
Exploits1
EUVD
EUVD
added 2026/04/22 3:31 p.m.6 views

EUVD-2026-24817

In the Linux kernel, the following vulnerability has been resolved: virtionet: Fix UAF on dstops when IFFXMITDSTRELEASE is cleared and napitx is false A UAF issue occurs when the virtionet driver is configured with napitx=N and the device's IFFXMITDSTRELEASE flag is cleared e.g., during the...

5.6AI score0.00129EPSS
Exploits0References9
NVD
NVD
added 2026/04/22 2:17 p.m.2 views

CVE-2026-6355

A vulnerability in the web application allows unauthorized users to access and manipulate sensitive data across different tenants by exploiting insecure direct object references. This could lead to unauthorized access to sensitive information and unauthorized changes to the tenant's configuration...

6.5CVSS0.00213EPSS
Exploits0References1
NVD
NVD
added 2026/04/22 2:16 p.m.4 views

CVE-2026-31530

In the Linux kernel, the following vulnerability has been resolved: cxl/port: Fix use after free of parentport in cxldetachep cxldetachep is called during bottom-up removal when all CXL memory devices beneath a switch port have been removed. For each port in the hierarchy it locks both the port a...

7.8CVSS0.00125EPSS
Exploits0References4
CVE
CVE
added 2026/04/22 1:54 p.m.24 views

CVE-2026-31530

The CVE-2026-31530 entry is backed by concrete details in the connected documents: in the Linux kernel’s cxl subsystem, the vulnerability stems from a use-after-free of parent_port during cxl_detach_ep() when removing CXL memory devices. The root cause is the absence of a lifetime guarantee betwe...

7.8CVSS5.7AI score0.00125EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2026/04/22 1:53 p.m.28 views

CVE-2026-31469 virtio_net: Fix UAF on dst_ops when IFF_XMIT_DST_RELEASE is cleared and napi_tx is false

In the Linux kernel, the following vulnerability has been resolved: virtionet: Fix UAF on dstops when IFFXMITDSTRELEASE is cleared and napitx is false A UAF issue occurs when the virtionet driver is configured with napitx=N and the device's IFFXMITDSTRELEASE flag is cleared e.g., during the...

7.8CVSS0.00129EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/04/22 1:25 p.m.4 views

CVE-2026-5750

An insecure direct object reference IDOR vulnerability in the Fullstep V5 registration process allows authenticated users to access data belonging to other registered users through various vulnerable authenticated resources in the application. The vulnerable endpoints result from:...

7.6CVSS5.8AI score0.00207EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder