CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

251290 matches found

CVE-2025-59874

HCL Hive Telco Observability is affected by a Required directives missing from the CSP issue is detected in keycloak component of the web application. Missing essential directives can leave a site vulnerable...

8.1CVSS

Exploits0References1

CVE•added 2 hours ago•2 views

CVE-2026-10863

CVE-2026-10863 affects MISP’s correlations/over-correlations endpoint. Affected: app/Controller/CorrelationsController.php (overCorrelations). Vulnerability arises from accepting user-controlled order query parameters, allowing an authenticated user to influence the ordering of the over-correlati...

6.4CVSS

Exploits0References1

Circl•added 2 hours ago•1 views

CVE-2026-40541

creationtimestamp| type| source ---|---|--- 2026-06-04 13:20:18+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mnhpnwevta2j...

5.8AI score

Exploits0References1

EUVD•added 2 hours ago•8 views

EUVD-2026-32016

Starlette has missing Host header validation that poisons request.url.path, bypassing path-based security checks...

6.5CVSS5.8AI score0.00353EPSS

Exploits2References8

ATTACKERKB•added 2 hours ago•2 views

CVE-2026-10855

An authorization flaw existed in the MISP Event Template Importer overwrite workflow. When importing an event template in overwrite mode, the application checked whether a matching template already existed but did not verify that the importing user belonged to the organization that owned the...

5.1CVSS

Exploits0References2

EUVD•added 3 hours ago•2 views

EUVD-2025-210064

8.1CVSS5.7AI score

Exploits0References1

CVE•added 3 hours ago•5 views

CVE-2025-59874

CVE-2025-59874 affects HCL Hive Telco Observability. The issue is identified as a missing CSP directive in the web application’s Keycloak component, with missing essential directives leaving the site vulnerable. The CVSS v3.1 base metrics indicate a high-severity, network-exploitability risk (AV:...

8.1CVSS5.7AI score

Exploits0References1

Circl•added 3 hours ago•2 views

CVE-2026-49858

creationtimestamp| type| source ---|---|--- 2026-06-04 12:08:39+00:00| seen| https://bsky.app/profile/soyuka.me/post/3mnhlnpjjpc23...

5.8AI score

Exploits0References1

OSV•added 3 hours ago•5 views

ROOT-APP-NPM-CVE-2026-25639 CVE-2026-25639 in @rootio/axios - Patched by Root

Root has patched CVE-2026-25639 in the @rootio/axios package for Root:npm. Multiple fixed versions available...

7.5CVSS5.4AI score0.00044EPSS

Exploits1

OSV•added 3 hours ago•7 views

ROOT-APP-NPM-CVE-2026-42039 CVE-2026-42039 in @rootio/axios - Patched by Root

Root has patched CVE-2026-42039 in the @rootio/axios package for Root:npm. Multiple fixed versions available...

7.5CVSS5.8AI score0.00023EPSS

Exploits1

OSV•added 3 hours ago•3 views

ROOT-APP-NPM-CVE-2026-42038 CVE-2026-42038 in @rootio/axios - Patched by Root

Root has patched CVE-2026-42038 in the @rootio/axios package for Root:npm. Multiple fixed versions available...

6.8CVSS5.8AI score0.0006EPSS

Exploits1

OSV•added 3 hours ago•6 views

ROOT-APP-PYPI-CVE-2026-45134 CVE-2026-45134 in rootio-langsmith - Patched by Root

Root has patched CVE-2026-45134 in the rootio-langsmith package for Root:PyPI. Multiple fixed versions available...

7.1CVSS5.8AI score0.00036EPSS

Exploits0

OSV•added 3 hours ago•3 views

ROOT-APP-NPM-CVE-2026-42041 CVE-2026-42041 in @rootio/axios - Patched by Root

Root has patched CVE-2026-42041 in the @rootio/axios package for Root:npm. Multiple fixed versions available...

4.8CVSS5.8AI score0.00148EPSS

Exploits1

OSV•added 4 hours ago•2 views

ROOT-APP-MAVEN-CVE-2025-41249 CVE-2025-41249 in io.root.org.springframework:spring-core - Patched by Root

Root has patched CVE-2025-41249 in the io.root.org.springframework:spring-core package for Root:Maven. Multiple fixed versions available...

7.5CVSS6.9AI score0.00112EPSS

Exploits0

Circl•added 4 hours ago•1 views

CVE-2026-31158

creationtimestamp| type| source ---|---|--- 2026-06-04 11:17:39+00:00| seen| https://gist.github.com/Hardik007007/65b9300fad060b129892728e04c6865e...

5.8AI score

Exploits0References1

OSV•added 5 hours ago•1 views

RHSA-2026:23222 Red Hat Security Advisory: libsndfile security update

Bulletin has no description...

8.2CVSS5.7AI score0.00047EPSS

Exploits1References9

RedhatCVE•added 5 hours ago•3 views

CVE-2026-48594

Improper Handling of Highly Compressed Data Data Amplification vulnerability in elixir-tesla tesla allows a denial of service via decompression bomb in HTTP response bodies. When Tesla.Middleware.DecompressResponse or Tesla.Middleware.Compression is included in a Tesla middleware pipeline, HTTP...

8.2CVSS5.8AI score0.00042EPSS

Exploits0References1

OSV•added 5 hours ago•4 views

ROOT-APP-NPM-CVE-2026-27904 CVE-2026-27904 in @rootio/minimatch - Patched by Root

Root has patched CVE-2026-27904 in the @rootio/minimatch package for Root:npm. Multiple fixed versions available...

7.5CVSS5.9AI score0.00026EPSS

Exploits1

OSV•added 6 hours ago•2 views

ROOT-APP-NPM-CVE-2023-26133 CVE-2023-26133 in @rootio/progressbar.js - Patched by Root

Root has patched CVE-2023-26133 in the @rootio/progressbar.js package for Root:npm. Multiple fixed versions available...

9.8CVSS5.8AI score0.00077EPSS

Exploits1

NVD•added 6 hours ago•3 views

CVE-2026-50212

Weak validation logic within device dissociation API routines allows a remote entity to forcefully unbind unrelated user endpoints, causing severe denial of service...

7.1CVSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by