CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

48 matches found

EUVD•added 2026/05/29 12:32 p.m.•7 views

EUVD-2026-33289

Uncontrolled resource consumption in the Wireless Control Module WCM of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows an adjacent-network attacker with write access to the in-vehicle network to permanently immobilize the motorcycle. The WCM enforces a brute-force lockout on the...

4.6CVSS5.8AI score0.00024EPSS

Exploits0References1

Positive Technologies•added 2026/05/29 12:0 a.m.•6 views

PT-2026-44830

4.6CVSS5.8AI score0.00024EPSS

Exploits0References2

Snyk•added 2026/05/18 5:27 p.m.•3 views

Use of a Broken or Risky Cryptographic Algorithm

Overview sulu/sulu is a highly extensible open-source PHP content management system based on the Symfony framework. Affected versions of this package are vulnerable to Use of a Broken or Risky Cryptographic Algorithm due to the use of a weak cryptographical hash algorithm in the User.php and...

6.9CVSS5.8AI score0.00027EPSS

Exploits0References2

SUSE CVE•added 2026/05/07 2:17 a.m.•6 views

SUSE CVE-2026-43226

In the Linux kernel, the following vulnerability has been resolved: net/rds: No shortcut out of RDSCONNERROR RDS connections carry a state "rdsconnpath::cpstate" and transitions from one state to another and are conditional upon an expected state: "rdsconnpathtransition." There is one exception t...

7.5CVSS5.8AI score0.00068EPSS

Exploits0References3

NVD•added 2026/05/06 12:16 p.m.•2 views

CVE-2026-43226

7.5CVSS0.00068EPSS

Exploits0References8

ATTACKERKB•added 2026/05/06 11:28 a.m.•4 views

CVE-2026-43226

5.8AI score0.00068EPSS

Exploits0References9Affected Software1

CVE•added 2026/05/06 11:28 a.m.•7 views

CVE-2026-43226

The CVE-2026-43226 issue affects the Linux kernel Reliable Datagram Sockets (RDS). A state-machine bug allowed an RDS_CONN_ERROR to bypass the proper shutdown path via a shortcut through RDS_CONN_CONNECTING, created by RDS/TCP multipath changes. This could leave a connection stuck in shutdown-que...

7.5CVSS5.8AI score0.00068EPSS

Exploits0References8Affected Software1

Cvelist•added 2026/05/06 11:28 a.m.•27 views

CVE-2026-43226 net/rds: No shortcut out of RDS_CONN_ERROR

7.5CVSS0.00068EPSS

Exploits0References8

Positive Technologies•added 2026/05/06 12:0 a.m.•4 views

PT-2026-37566

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the Reliable Delivery Service RDS implementation where a shortcut was introduced allowing connections to transition from RDS CONN ERROR directly back to RDS CONN...

7.5CVSS5.8AI score0.00068EPSS

Exploits0References19

Tenable Nessus•added 2026/05/06 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2026-43226

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/rds: No shortcut out of RDSCONNERROR RDS connections carry a state rdsconnpath::cpstate and transitions from one state to another and are conditional upon a...

7.5CVSS5.8AI score0.00068EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•10 views

Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: nvme-tcp: fixed a possible use-after-free issue in the transport errorrecovery mechanism. While nvmetcpsubmitasynceventwork checks the ctrl and queue states before preparing the AER command and scheduling iowork, this check is...

7.8CVSS6.4AI score0.00022EPSS

Exploits0References2

CNVD•added 2025/12/22 12:0 a.m.•1 views

WordPress HelloLeads CRM Form Shortcode plugin missing authorization vulnerability

WordPress HelloLeads CRM Form Shortcode plugin is a WordPress plugin with integrated Customer Relationship Management CRM functionality that allows users to embed CRM forms and marketing tools on their websites through shortcodes. A lack of authorization vulnerability exists in the WordPress...

5.3CVSS6.5AI score0.00026EPSS

Exploits0References1

Tenable Nessus•added 2025/10/07 12:0 a.m.•1 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986994)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986994 advisory. In the Linux kernel, the following vulnerability has been resolved: nvme-tcp: fix possible use-after-free in transport errorrecovery work While...

7.8CVSS6AI score0.00022EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-26749

Malicious code in bioql PyPI...

6.4AI score0.00014EPSS

Exploits0References3

CNNVD•added 2025/09/15 12:0 a.m.•2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from failure to reset critical information in wext.connect, which could lead to reuse after release...

7.8CVSS5.8AI score0.00022EPSS

Exploits0References8

Cvelist•added 2025/09/10 6:38 a.m.•4 views

CVE-2025-9622 WP Blast | SEO & Performance Booster <= 1.8.6 - Cross-Site Request Forgery to Cache Clearing

The WP Blast | SEO & Performance Booster plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.8.6. This is due to missing or incorrect nonce validation on multiple administrative actions in the Settings class. This makes it possible for...

4.3CVSS0.00032EPSS

Exploits0References6

SUSE CVE•added 2025/09/04 11:23 p.m.•3 views

SUSE CVE-2025-38720

In the Linux kernel, the following vulnerability has been resolved: net: hibmcge: fix rtnl deadlock issue Currently, the hibmcge netdev acquires the rtnllock in pcierrorhandlers.resetprepare and releases it in pcierrorhandlers.resetdone. However, in the PCI framework: pciresetbus - pciresetslot -...

5.5CVSS6.5AI score0.00014EPSS

Exploits0References3