CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2026/05/06 12:0 a.m.•4 views

Oracle Linux 10 : systemd (ELSA-2026-13651)

The remote Oracle Linux 10 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-13651 advisory. 257-13.0.1.el101.3 - Fix detection of Oracle Virtualization or BM envs Orabug: 37531877 - Avoid udevadm warnings when using udev valid configs Orabug: 3750319...

5.5CVSS6AI score0.00026EPSS

AstraLinux•added 2026/05/03 11:59 p.m.•3 views

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: The synchronization of ofchangesetDestroy with the devlink removals operations. In the following sequence: 1 ofplatformdepopulate 2 ofoverlayremove During step 1, devices are destroyed, and devlinks are removed. During step 2, OF...

5.5CVSS6.2AI score0.00014EPSS

AstraLinux•added 2026/05/03 11:59 p.m.•4 views

Astra Linux - уязвимость в linux, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: ALSA: Fixed deadlocks that occur during the removal of kctl elements at disconnection. In sndcarddisconnect, we set the card-shutdown flag at the beginning, call callbacks, and perform synchronization for the card-powerrefsleep...

5.5CVSS6.4AI score0.0002EPSS

NVD•added 2026/04/22 12:16 a.m.•0 views

CVE-2026-41128

Craft CMS is a content management system CMS. In versions 5.6.0 through 5.9.14, the actionSavePermissions endpoint allows a user with only viewUsers permission to remove arbitrary users from all user groups. While saveUserGroups enforces per-group authorization for additions, it performs no...

5.3CVSS0.00041EPSS

Tenable Nessus•added 2026/04/21 12:0 a.m.•2 views

Unity Linux 20.1050a Security Update: kernel (UTSA-2026-007010)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007010 advisory. In the Linux kernel, the following vulnerability has been resolved: of: dynamic: Synchronize ofchangesetdestroy with the devlink removals In the following sequence: ...

5.5CVSS6.8AI score0.00014EPSS

Positive Technologies•added 2026/04/21 12:0 a.m.•0 views

PT-2026-34219

Name of the Vulnerable Software and Affected Versions Craft CMS versions 5.6.0 through 5.9.14 Description The 'actionSavePermissions' endpoint allows a user possessing only viewUsers permission to remove arbitrary users from all user groups. This occurs because the saveUserGroups function enforce...

5.3CVSS5.4AI score0.00041EPSS

Exploits0References6

Tenable Nessus•added 2026/04/08 12:0 a.m.•1 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006820)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006820 advisory. In the Linux kernel, the following vulnerability has been resolved: of: dynamic: Synchronize ofchangesetdestroy with the devlink removals In the following sequence: ...

5.5CVSS6.3AI score0.00014EPSS

OSV•added 2026/03/13 11:40 a.m.•4 views

CLSA-2026-1770214396 Update of microcode_ctl

Update Intel CPU microcode to 20251111: - Addition of cpuid:806F8/0x10 SPR-HBM B3 microcode in microcode.dat at revision 0x2c000410; - Addition of cpuid:806F8/0x87 SPR-SP E5/S3 microcode in microcode.dat at revision 0x2b000650; - Addition of cpuid:90672/0x07 ADL-HX/S 8+8 C0 microcode in...

OSV•added 2026/03/13 11:17 a.m.•4 views

CLSA-2026-1770214504 Update of microcode_ctl

Wired Threat Level•added 2026/03/11 12:1 p.m.•3 views

Meta Ramps Up Efforts to Disrupt Industrialized Scamming

Meta removed 10.9 million Facebook and Instagram accounts linked to “criminal scam centers” last year, the company announced on Wednesday...

5.8AI score

Exploits0

OSV•added 2026/03/04 8:37 a.m.•0 views

SUSE-SU-2026:20696-1 Security update for ca-certificates-mozilla

This update for ca-certificates-mozilla fixes the following issues: - Updated to 2.84 state of Mozilla SSL root CAs bsc1258002 - Removed: - Baltimore CyberTrust Root - CommScope Public Trust ECC Root-01 - CommScope Public Trust ECC Root-02 - CommScope Public Trust RSA Root-01 - CommScope Public...

5.8AI score

CloudLinux•added 2026/02/06 3:45 p.m.•5 views

Update of microcode_ctl

5.4AI score

Exploits0

OSV•added 2026/02/04 3:3 p.m.•5 views

CLSA-2026-1770217418 Update of microcode_ctl

OSV•added 2026/02/04 2:36 p.m.•4 views

CLSA-2026-1770215787 Update of microcode_ctl

OSV•added 2026/02/04 2:26 p.m.•6 views

CLSA-2026-1770215200 Update of microcode_ctl

OSV•added 2026/02/04 2:9 p.m.•3 views

CLSA-2026-1770214151 Update of microcode_ctl

OSV•added 2026/02/04 1:59 p.m.•3 views

CLSA-2026-1770213583 Update of microcode_ctl

Tenable Nessus•added 2026/01/20 12:0 a.m.•2 views

MiracleLinux 7 : kernel-3.10.0-1160.119.1.0.3.el7.AXS7 (AXSA:2024-8831:30)

"The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-8831:30 advisory. xen/blkfront: force data bouncing when backend is untrusted CVE-2022-33742 ALSA: Fix deadlocks with kctl removals at disconnection CVE-2024-38600...

7.1CVSS5.9AI score0.0005EPSS