CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2247 matches found

OSSF Malicious Packages•added 2026/05/19 4:47 p.m.•16 views

Malicious code in durabletask (PyPI)

1.4.1, 1.4.2, and 1.4.3 of durabletask were compromised via a PyPI maintainer account takeover. All three malicious versions were published on 2026-05-19 within a 35-minute window 16:19–16:54 UTC. Pin to =1.4.0. Attack chain - Stage 1 — Import-time dropper: on import, the package fetches a...

5.9AI score

Exploits0References6

Snyk•added 2026/05/19 3:21 p.m.•5 views

Improper Encoding or Escaping of Output

Overview Affected versions of this package are vulnerable to Improper Encoding or Escaping of Output due to improper escaping of single quotes in the SSH transport command construction process. An attacker can inject arbitrary shell tokens by including single quotes in the repository path,...

9.6CVSS6AI score0.00365EPSS

Exploits0References2

RedHat Linux•added 2026/05/19 9:10 a.m.•5 views

libssh: libssh: Denial of Service due to malformed SFTP message

A flaw was found in libssh in which a malicious SFTP SSH File Transfer Protocol server can exploit this by sending a malformed 'longname' field within an SSHFXPNAME message during a file listing operation. This missing null check can lead to reading beyond allocated memory on the heap. This can...

3.1CVSS6.3AI score0.00442EPSS

Exploits0References5

Positive Technologies•added 2026/05/19 12:0 a.m.•9 views

PT-2026-42027

Name of the Vulnerable Software and Affected Versions Kopia versions prior to 0.22.4 Description Kopia's HTTP server, when started with the --without-password flag, accepts unauthenticated requests to the '/api/v1/repo/exists' endpoint. The handler forwards a storage configuration provided by the...

9.8CVSS6.2AI score0.00109EPSS

Exploits0References12

AlmaLinux•added 2026/05/19 12:0 a.m.•7 views

Important: openssh security update

OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server. Security Fixes: OpenSSH: OpenSSH: Privilege escalation via scp legacy protocol when not preserving file mode...

8.1CVSS6.2AI score0.00289EPSS

Exploits0References12

OSV•added 2026/05/15 5:17 p.m.•1 views

GHSA-MXG3-432P-MR72 goshs: SSH host key verification disabled, allowing transparent MITM of every tunnelled HTTP request

Summary The --tunnel / -t flag opens an outbound SSH connection to localhost.run:22 with HostKeyCallback: ssh.InsecureIgnoreHostKey. The Go documentation for that function states verbatim: "It should not be used for production code." With the callback disabled the client accepts any host key the...

7.4CVSS5.7AI score

Exploits0References4

ATTACKERKB•added 2026/05/15 4:40 p.m.•5 views

CVE-2026-45037

Tabby formerly Terminus is a highly configurable terminal emulator. Prior to 1.0.232, Tabby's terminal linkifier passes any detected URI directly to the operating system's protocol handler without validating the protocol scheme. This allows a malicious SSH or Telnet server to send crafted termina...

7.1CVSS6AI score0.00137EPSS

Exploits0References2Affected Software1

Snyk•added 2026/05/14 2:22 p.m.•8 views

Malicious Package

Overview knot-rack-session-store is a malicious package. This package is part of a malicious cluster of Ruby gems published by the threat actor knot-theory. Designed to impersonate legitimate utilities, it executes a payload upon installation that harvests environment variables, SSH keys, AWS...

9.8CVSS5.8AI score

Exploits0References2

Snyk•added 2026/05/14 2:22 p.m.•8 views

Malicious Package

Overview knot-activesupport-logger is a malicious package. This package is part of a malicious cluster of Ruby gems published by the threat actor knot-theory. Designed to impersonate legitimate utilities, it executes a payload upon installation that harvests environment variables, SSH keys, AWS...

9.8CVSS5.8AI score

Exploits0References2

NVD•added 2026/05/13 4:16 p.m.•9 views

CVE-2026-28758

When BIG-IP DNS is provisioned, a vulnerability exists in the gtmadd and bigipadd iControl REST commands that return the ssh-password parameter in cleartext in the iControl REST response and is also logged in the audit log. This may allow a highly privileged, authenticated attacker with access to...

6.7CVSS0.00083EPSS

Exploits0References1

ATTACKERKB•added 2026/05/13 3:40 p.m.•3 views

CVE-2026-44467

The Claude Desktop app gives you Claude Code with a graphical interface built for running multiple sessions side by side. From 1.2581.0 to before 1.4304.0, Claude Desktop's SSH remote development feature verified only whether a hostname existed in /.ssh/knownhosts without comparing the server's...

7.4CVSS6AI score0.00135EPSS

Exploits0References2Affected Software1

RedhatCVE•added 2026/05/13 8:21 a.m.•8 views

CVE-2026-1185

A configuration file on the local file system had improper input validation which could allow code execution and potentially lead to privilege escalation. This vulnerability can only be exploited if an attacker can log in to the Axis device using SSH...

8.8CVSS6.2AI score0.00226EPSS

Exploits0References1

OSSF Malicious Packages•added 2026/05/13 3:9 a.m.•7 views

Malicious code in github.com/BufferZoneCorp/grpc-client (Go)

--- -= Per source details. Do not edit below this line.=- Source: google-open-source-security a4e4f74e90479d472a307d311d48214827e21cf93ecf9b0b62ff2cb72adb2c9e This package is a malicious packages part of the Go BufferZoneCorp and RubyGems knot-theory clusters. The packages in this cluster steal...

5.8AI score

Exploits0References1

OSSF Malicious Packages•added 2026/05/13 3:9 a.m.•6 views

Malicious code in github.com/BufferZoneCorp/go-weather-sdk (Go)

5.8AI score

Exploits0References1

OSSF Malicious Packages•added 2026/05/13 3:9 a.m.•7 views

Malicious code in github.com/BufferZoneCorp/log-core (Go)

5.8AI score

Exploits0References1

OSSF Malicious Packages•added 2026/05/13 3:9 a.m.•7 views

Malicious code in knot-devise-jwt-helper (RubyGems)