CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

737 matches found

CNNVD•added 2026/04/21 12:0 a.m.•4 views

GitHub Enterprise Server 安全漏洞

GitHub Enterprise Server is an open-source application developed by GitHub in the United States. It provides a scalable and easy-to-manage platform by allowing users to set their GitHub instances as virtual devices. Prior to version 3.21 of GitHub Enterprise Server, there was a security...

9.5CVSS5.8AI score0.00079EPSS

Exploits0References1

Snyk•added 2026/03/27 1:23 a.m.•1 views

Origin Validation Error

Overview Affected versions of this package are vulnerable to Origin Validation Error during the intra-handshake attestation.. An attacker can impersonate a trusted service endpoint and gain unauthorized access to sensitive data or operations by extracting the ephemeral TLS private key through...

7.8CVSS5.9AI score0.00005EPSS

Exploits0References3

Packet Storm News•added 2026/02/22 12:0 a.m.•1 views

Red-Teaming Claude Opus and ChatGPT-Based Security Advisors for Trusted Execution Environments

Trusted Execution Environments TEEs e.g., Intel SGX and ArmTrustZone aim to protect sensitive computation from a compromised operating system, yet real deployments remain vulnerable to microarchitectural leakage, side-channel attacks, and fault injection. In parallel, security teams increasingly...

5.9AI score

Exploits0

Packet Storm News•added 2026/01/30 12:0 a.m.•3 views

Trojan-Resilient NTT: Protecting against Control Flow and Timing Faults on Reconfigurable Platforms

Number Theoretic Transform NTT is the most essential component for polynomial multiplications used in lattice-based Post-Quantum Cryptography PQC algorithms such as Kyber, Dilithium, NTRU etc. However, side-channel attacks SCA and hardware vulnerabilities in the form of hardware Trojans may alter...

5.5AI score

Exploits0

Tenable Nessus•added 2026/01/16 12:0 a.m.•1 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003848)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003848 advisory. kernel/bpf/verifier.c in the Linux kernel before 4.20.6 performs undesirable out-of-bounds speculation on pointer arithmetic in various cases, including cases of...

5.6CVSS6.6AI score0.00029EPSS

Exploits0References17

RedhatCVE•added 2026/01/09 10:44 a.m.•9 views

CVE-2022-26382

While the text displayed in Autofill tooltips cannot be directly read by JavaScript, the text was rendered using page fonts. Side-channel attacks on the text by using specially crafted fonts could have lead to this text being inferred by the webpage. This vulnerability affects Firefox 98...

4.3CVSS6AI score0.00182EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 10:19 a.m.•5 views

CVE-2019-18222

The ECDSA signature implementation in ecdsa.c in Arm Mbed Crypto 2.1 and Mbed TLS through 2.19.1 does not reduce the blinded scalar before computing the inverse, which allows a local attacker to recover the private key via side-channel attacks...

4.7CVSS6.5AI score0.00109EPSS

Exploits0References1

Packet Storm News•added 2025/10/13 12:0 a.m.•2 views

Navigating the Dual-Use Nature and Security Implications of Reconfigurable Intelligent Surfaces in Next-Generation Wireless Systems

Reconfigurable intelligent surface RIS technology offers significant promise in enhancing wireless communication systems, but its dual-use potential also introduces substantial security risks. This survey explores the security implications of RIS in next-generation wireless networks. We first...

7AI score

Exploits0