CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2026/04/27 10:30 p.m.•1 views

EUVD-2026-25933

6.9CVSS5.2AI score0.00159EPSS

Exploits0References6

CVE•added 2026/04/27 10:30 p.m.•7 views

CVE-2026-7183

The CVE-2026-7183 entry affects aligungr UERANSIM (up to version 3.2.7), specifically the rls_pdu.cpp DecodeRlsMessage function in the Radio Link Simulation Layer. The issue arises from manipulation of the pduLength argument, causing an uncaught exception. Exploitability is described as remote. T...

6.9CVSS5.4AI score0.00067EPSS

Exploits0References6

Cvelist•added 2026/04/27 10:30 p.m.•27 views

CVE-2026-7183 aligungr UERANSIM Radio Link Simulation Layer rls_pdu.cpp DecodeRlsMessage uncaught exception

6.9CVSS0.00067EPSS

Exploits0References6

ATTACKERKB•added 2026/04/27 10:30 p.m.•1 views

CVE-2026-7183

6.9CVSS5AI score0.00159EPSS

Exploits0References7Affected Software1

CNNVD•added 2026/04/27 12:0 a.m.•4 views

UERANSIM 安全漏洞

UERANSIM is an open-source advanced 5G UE and RAN gNodeB simulator developed by Ali Güngör of Turkey. Versions of UERANSIM 3.2.7 and earlier contained security vulnerabilities. These vulnerabilities stemmed from improper handling of the parameter pdulength in the Radio Link Simulation Layer...

6.9CVSS6.1AI score0.00067EPSS

Positive Technologies•added 2026/04/27 12:0 a.m.•3 views

PT-2026-35537

A vulnerability has been found in aligungr UERANSIM up to 3.2.7. The affected element is the function rls::DecodeRlsMessage in the library src/lib/rls/rls pdu.cpp of the component Radio Link Simulation Layer. The manipulation of the argument pduLength leads to uncaught exception. The attack may b...

6.9CVSS5.4AI score0.00067EPSS

Exploits0References7

OSV•added 2024/12/04 2:53 p.m.•16 views

SUSE-SU-2024:4176-1 Security update for postgresql14

This update for postgresql14 fixes the following issues: - CVE-2024-10976: Ensure cached plans are marked as dependent on the calling role when RLS applies to a non-top-level table reference bsc1233323. - CVE-2024-10977: Make libpq discard error messages received during SSL or GSS protocol...

OSV•added 2024/12/04 2:51 p.m.•12 views

SUSE-SU-2024:4175-1 Security update for postgresql13

This update for postgresql13 fixes the following issues: - CVE-2024-10976: Ensure cached plans are marked as dependent on the calling role when RLS applies to a non-top-level table reference bsc1233323. - CVE-2024-10977: Make libpq discard error messages received during SSL or GSS protocol...

OSV•added 2024/12/04 2:50 p.m.•12 views

SUSE-SU-2024:4174-1 Security update for postgresql15

This update for postgresql15 fixes the following issues: - CVE-2024-10976: Ensure cached plans are marked as dependent on the calling role when RLS applies to a non-top-level table reference bsc1233323. - CVE-2024-10977: Make libpq discard error messages received during SSL or GSS protocol...

SUSE Linux•added 2024/11/29 4:24 p.m.•1 views

Security update for postgresql14

This update for postgresql14 fixes the following issues: CVE-2024-10976: Ensure cached plans are marked as dependent on the calling role when RLS applies to a non-top-level table reference bsc1233323. CVE-2024-10977: Make libpq discard error messages received during SSL or GSS protocol negotiatio...

8.8CVSS6.5AI score0.06356EPSS

Exploits1References16

OSV•added 2024/11/29 4:23 p.m.•20 views

SUSE-SU-2024:4118-1 Security update for postgresql14

SUSE Linux•added 2024/11/28 12:25 p.m.•0 views

Security update for postgresql12

This update for postgresql12 fixes the following issues: CVE-2024-10976: Ensure cached plans are marked as dependent on the calling role when RLS applies to a non-top-level table reference bsc1233323. CVE-2024-10977: Make libpq discard error messages received during SSL or GSS protocol negotiatio...

8.8CVSS6.5AI score0.06356EPSS

Exploits1References16

OSV•added 2024/11/28 12:24 p.m.•11 views

SUSE-SU-2024:4098-1 Security update for postgresql15

OSV•added 2024/11/28 12:24 p.m.•17 views

SUSE-SU-2024:4097-1 Security update for postgresql12

This update for postgresql12 fixes the following issues: - CVE-2024-10976: Ensure cached plans are marked as dependent on the calling role when RLS applies to a non-top-level table reference bsc1233323. - CVE-2024-10977: Make libpq discard error messages received during SSL or GSS protocol...

OSV•added 2024/11/28 12:24 p.m.•17 views

SUSE-SU-2024:4096-1 Security update for postgresql14

OSV•added 2024/11/28 12:23 p.m.•18 views

SUSE-SU-2024:4095-1 Security update for postgresql15

NVD•added 2024/06/13 4:15 p.m.•7 views

CVE-2024-37877

UERANSIM before 3.2.6 allows out-of-bounds read when a RLS packet is sent to gNodeB with malformed PDU length. This occurs in function readOctetString in src/utils/octetview.cpp and in function DecodeRlsMessage in src/lib/rls/rlspdu.cpp...

5.5CVSS0.00159EPSS

Positive Technologies•added 2024/06/13 12:0 a.m.•2 views

PT-2024-27803 · Ueransim · Ueransim

Name of the Vulnerable Software and Affected Versions: UERANSIM versions prior to 3.2.6 Description: The issue allows for an out-of-bounds read when a RLS packet is sent to gNodeB with a malformed PDU length. This occurs in the readOctetString function in src/utils/octet view.cpp and the...

5.5CVSS7.2AI score0.00159EPSS

Exploits0References4

CVE•added 2024/06/13 12:0 a.m.•39 views

CVE-2024-37877

UERANSIM prior to 3.2.6 is affected by an out-of-bounds read when processing an RLS packet with a malformed PDU length. The issue is reported in readOctetString (src/utils/octet_view.cpp) and DecodeRlsMessage (src/lib/rls/rls_pdu.cpp). A fix is available in version 3.2.6 and later; upgrading is t...

5.5CVSS6.8AI score0.00159EPSS