CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2026/01/22 1:2 p.m.•21 views

CVE-2026-1324

Summary: CVE-2026-1324 affects Sangfor Operation and Maintenance Management System (

9.8CVSS5.3AI score0.06437EPSS

Exploits1References4Affected Software1

OSV•added 2026/01/22 1:0 p.m.•5 views

OPENSUSE-SU-2026:20080-1 Security update for buildah

This update for buildah fixes the following issues: - CVE-2025-47914: golang.org/x/crypto/ssh/agent: Fixed non validated message size causing a panic due to an out of bounds read bsc1254054 - CVE-2025-47913: golang.org/x/crypto/ssh/agent: Fixed client process termination when receiving an...

8.4CVSS6.8AI score0.00673EPSS

Exploits5References8

RedHat Linux•added 2026/01/22 9:20 a.m.•4 views

openssh: OpenSSH: Null character in ssh:// URI can lead to code execution via ProxyCommand

A flaw was found in OpenSSH where the SSH client accepted \0 null characters in ssh:// URIs. When a ProxyCommand is configured, these characters could alter how the command is parsed, potentially leading to code execution depending on how the proxy is set up...

3.6CVSS6.7AI score0.00114EPSS

Exploits0References7

Amazon•added 2026/01/22 12:0 a.m.•9 views

Important: docker

Issue Overview: SSH Agent servers do not validate the size of messages when processing new identity requests, which may cause the program to panic if the message is malformed due to an out of bounds read. CVE-2025-47914 SSH servers parsing GSSAPI authentication requests do not validate the number...

7.5CVSS7.3AI score0.00563EPSS

Exploits3

CNNVD•added 2026/01/22 12:0 a.m.•4 views

GitLab CE/EE security vulnerabilities

GitLab Enterprise Edition EE and GitLab Community Edition CE are both products of the American company GitLab. GitLab Enterprise Edition is a content management system. GitLab Community Edition is a community version of GitLab. Versions of GitLab CE/EE prior to 18.6.4, 18.7.2, and 18.8.2 containe...

7.5CVSS6AI score0.00538EPSS

Github Security Blog•added 2026/01/21 11:2 p.m.•11 views

Soft Serve Affected by an Authentication Bypass

Impact What kind of vulnerability is it? Who is impacted? This issue impacts every Soft Serve instance. A critical authentication bypass allows an attacker to impersonate any user including Admin by "offering" the victim's public key during the SSH handshake before authenticating with their own...

9.8CVSS5.6AI score0.00532EPSS

Exploits0References5Affected Software1

OSV•added 2026/01/21 6:16 p.m.•4 views

CVE-2021-47871

Hestia Control Panel 1.3.2 contains an arbitrary file write vulnerability that allows authenticated attackers to write files to arbitrary locations using the API index.php endpoint. Attackers can exploit the v-make-tmp-file command to write SSH keys or other content to specific file paths on the...

8.8CVSS5.9AI score0.00421EPSS

Exploits0References4

EUVD•added 2026/01/21 5:27 p.m.•4 views

EUVD-2026-3620

8.8CVSS5.8AI score0.00421EPSS

Exploits0References6

NVD•added 2026/01/21 5:16 p.m.•4 views

CVE-2026-20080

A vulnerability in the SSH service of Cisco IEC6400 Wireless Backhaul Edge Compute Software could allow an unauthenticated, remote attacker to cause the SSH service to stop responding. This vulnerability exists because the SSH service lacks effective flood protection. An attacker could exploit th...

5.3CVSS0.00309EPSS

ATTACKERKB•added 2026/01/21 4:26 p.m.•4 views

CVE-2026-20080

Exploits0References2Affected Software1

Vulnrichment•added 2026/01/21 4:26 p.m.•4 views

CVE-2026-20080 Cisco IEC6400 Edge Compute Appliance SSH Denial of Service Vulnerability

EUVD•added 2026/01/21 4:26 p.m.•4 views

EUVD-2026-3662

Cvelist•added 2026/01/21 4:26 p.m.•16 views

CVE-2026-20080 Cisco IEC6400 Edge Compute Appliance SSH Denial of Service Vulnerability

5.3CVSS0.00309EPSS

CVE•added 2026/01/21 4:26 p.m.•12 views

CVE-2026-20080

CVE-2026-20080 affects Cisco IEC6400 Wireless Backhaul Edge Compute Software. The SSH service can be flooded by unauthenticated remote attackers, causing the SSH server to become unresponsive while other operations stay stable. Reported by Cisco and mirrored in multiple feeds, the issue arises fr...

Cisco•added 2026/01/21 4:0 p.m.•7 views

Cisco IEC6400 Wireless Backhaul Edge Compute Software SSH Denial of Service Vulnerability

CNNVD•added 2026/01/21 12:0 a.m.•5 views

Cisco IEC6400 Wireless Backhaul Edge Compute Software: Resource Management Error Vulnerability

Cisco IEC6400 Wireless Backhaul Edge Compute Software is a system firmware for edge computing devices developed by the American company Cisco. There is a resource management vulnerability in Cisco IEC6400 Wireless Backhaul Edge Compute Software. This vulnerability stems from the lack of effective...

5.3CVSS5.8AI score0.00309EPSS

Positive Technologies•added 2026/01/21 12:0 a.m.•6 views

PT-2026-3787