CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

942 matches found

github.com/jackc/pgproto3/v2: github.com/jackc/pgproto3/v2: Denial of Service via malicious PostgreSQL server

A flaw was found in the DataRow.Decode function within the github.com/jackc/pgproto3/v2 component. A malicious or compromised PostgreSQL server can exploit this by sending a DataRow message containing a negative field length. This improper validation of field lengths leads to a "slice bounds out ...

7.5CVSS6.3AI score0.00067EPSS

Exploits0References7

EUVD•added 2 days ago•8 views

EUVD-2026-33797

In applySimpleFieldMaxSize of DataRowHandler.java, there is a possible way to insert a large contact name due to improper input validation. This could lead to local denial of service with no additional execution privileges needed. User interaction is not needed for exploitation...

5.5CVSS5.9AI score0.00006EPSS

Exploits0References2

Vulnrichment•added 3 days ago•6 views

CVE-2026-0085

5.9AI score0.00006EPSS

Exploits0References1

ATTACKERKB•added 3 days ago•4 views

CVE-2026-0085

5.5CVSS5.9AI score0.00006EPSS

Exploits0References2Affected Software1

CVE•added 3 days ago•7 views

CVE-2026-0085

CVE-2026-0085 relates to a vulnerability in the DataRowHandler.java function applySimpleFieldMaxSize , where improper input validation could allow inserting an unusually large contact name. The result is a local Denial of Service with no extra privileges and no user interaction required. Document...

5.5CVSS5.9AI score0.00006EPSS

Exploits0References1Affected Software1

CNNVD•added 3 days ago•3 views

Google Android security vulnerabilities

Google Android is an open-source operating system based on Linux, developed by Google Inc. There is a security vulnerability in Google Android, which stems from improper input validation in the applySimpleFieldMaxSize function within DataRowHandler.java. This vulnerability may lead to local denia...

5.5CVSS5.8AI score0.00006EPSS

Exploits0References1

Positive Technologies•added 3 days ago•10 views

PT-2026-45591

5.9AI score0.00006EPSS

Exploits0References2

OSV•added 3 days ago•5 views

ASB-A-414389102

5.5CVSS5.9AI score0.00006EPSS

Exploits0References1

RedhatCVE•added last week•7 views

CVE-2026-45718

Budibase is an open-source low-code platform. Prior to 3.38.1, the row action trigger endpoint POST /api/tables/:sourceId/actions/:actionId/trigger fails to validate that the user-supplied rowId is within the scope of the view's row filters. A user with access to a filtered view can trigger row...

5.4CVSS5.8AI score0.00028EPSS

Exploits0References1

NVD•added 2026/05/27 6:16 p.m.•8 views

CVE-2026-45718

5.4CVSS0.00028EPSS

Exploits0References2

EUVD•added 2026/05/27 5:7 p.m.•7 views

EUVD-2026-32600

5.4CVSS5.8AI score0.00028EPSS

Exploits0References2

ATTACKERKB•added 2026/05/27 5:7 p.m.•3 views

CVE-2026-45718

5.4CVSS5.8AI score0.00028EPSS

Exploits0References3Affected Software1

CVE•added 2026/05/27 5:7 p.m.•7 views

CVE-2026-45718

Budibase (open-source low-code platform) fixed in 3.38.1 a vulnerability in the row action trigger endpoint (POST /api/tables/:sourceId/actions/:actionId/trigger). Before 3.38.1, the endpoint did not validate that the provided rowId was within the view’s filters, allowing a user with access to a ...

5.4CVSS5.8AI score0.00028EPSS

Exploits0References2

Cvelist•added 2026/05/27 5:7 p.m.•31 views

CVE-2026-45718 Budibase: Row Action Trigger Bypasses View Row Filter Security Boundary Allowing Action on Out-of-Scope Rows

5.4CVSS0.00028EPSS

Exploits0References2

Vulnrichment•added 2026/05/27 5:7 p.m.•3 views

CVE-2026-45718 Budibase: Row Action Trigger Bypasses View Row Filter Security Boundary Allowing Action on Out-of-Scope Rows

5.4CVSS5.8AI score0.00028EPSS

Exploits0References2

CNNVD•added 2026/05/27 12:0 a.m.•2 views

Budibase 安全漏洞

Budibase is an open-source platform developed by Budibase in the UK. It allows for the creation of internal applications, workflows, and management panels within minutes. Versions of Budibase prior to 3.38.1 contained security vulnerabilities. These vulnerabilities stemmed from action triggers th...

5.4CVSS5.8AI score0.00028EPSS

Exploits0References3

Packet Storm News•added 2026/05/26 12:0 a.m.•3 views

HammerSim: A System-Level Tool to Model RowHammer

Modern architecture research relies on simulators to evaluate system security, yet analyzing emerging hardware vulnerabilities like RowHammer requires full-system visibility. As RowHammer vulnerabilities worsen with continuous technology scaling, existing simulators lack the system-level models...

5.8AI score

Exploits0

AstraLinux•added 2026/05/20 5:53 a.m.•6 views

Astra Linux - уязвимость в libraw

In LibRaw, there is a out-of-bounds read vulnerability within the “simpledecoderow” function libraw\src\x3f\x3futilspatched.cpp, which can be triggered by an image with a large rowstride field...

5.5CVSS6AI score0.00029EPSS

Exploits1References2

AstraLinux•added 2026/05/20 5:53 a.m.•13 views

Astra Linux - уязвимость в ffmpeg

There is a heap-based Buffer Overflow vulnerability in FFmpeg 4.2, located in the getblockrow function in libavfilter/vfbm3d.c. This vulnerability may lead to memory corruption and other potential issues...

8.8CVSS7AI score0.00531EPSS

Exploits1References2

Packet Storm News•added 2026/05/19 12:0 a.m.•5 views

Loaded Dice: Solving the Non-Selection Problem for Scalable Probabilistic RowHammer Defense

DRAM scaling has exacerbated the RowHammer vulnerability. To counter this, JEDEC recently introduced Per Row Activation Counting PRAC with the Alert Back-Off protocol as an optional DDR5 feature. While promising, PRAC requires per-row counter cells that incur area overhead, and updating them on...

5.8AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by