CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 2026/06/15 7:15 p.m.•14 views

CVE-2026-52722

GStreamer VMnc decoder in gstreamer1-plugins-bad-free contains a signed integer overflow in cursor payload handling. A crafted VMnc stream with large cursor dimensions can cause signed payload-size arithmetic overflow, bypass a length check, and lead to out-of-bounds reads. This may allow a remot...

7.1CVSS5.4AI score0.00288EPSS

Exploits0References3

Debian CVE•added 2026/06/15 7:15 p.m.•7 views

CVE-2026-52722

7.1CVSS5.4AI score0.00288EPSS

Exploits0

Tenable Nessus•added 2026/06/12 12:0 a.m.•10 views

EulerOS Virtualization 2.13.1 : libtiff (EulerOS-SA-2026-2377)

According to the versions of the libtiff packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the...

RedHat Linux•added 2026/06/11 1:24 p.m.•5 views

openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing

A flaw was found in OpenSSL. A signed integer overflow vulnerability exists when sizing the destination buffer for Unicode output. This can lead to a heap buffer overflow, which may result in a crash or potentially allow an attacker to execute arbitrary code. Exploitation requires an application ...

8.1CVSS6.1AI score0.00358EPSS

RedHat Linux•added 2026/06/11 1:9 p.m.•5 views

openssl: OpenSSL: Heap buffer overflow due to signed integer overflow in Unicode output sizing

8.1CVSS6.1AI score0.00358EPSS

RedHat Linux•added 2026/06/10 7:50 a.m.•8 views

libtiff: libtiff: Arbitrary code execution or denial of service via signed integer overflow in TIFF file processing

A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8bitYCbCr44tile function by providing a specially crafted TIFF file. This flaw can lead to an out-of-bounds heap write due to incorrect memory pointer calculations,...

7.8CVSS5.9AI score0.0033EPSS

Tenable Nessus•added 2026/06/10 12:0 a.m.•5 views

EulerOS 2.0 SP13 : libtiff (EulerOS-SA-2026-2343)

According to the versions of the libtiff packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the putcontig8bitYCbCr44tile...

Tenable Nessus•added 2026/06/10 12:0 a.m.•6 views

EulerOS 2.0 SP13 : libtiff (EulerOS-SA-2026-2300)

EUVD•added 2026/06/09 6:31 p.m.•8 views

EUVD-2026-35474

Issue summary: A signed integer overflow when sizing the destination buffer for Unicode output in ASN1mbstringncopy can lead to a heap buffer overflow. Impact summary: A heap buffer overflow may lead to a crash or possibly attacker controlled code execution or other undefined behaviour. In...

8.1CVSS6.3AI score0.00358EPSS

Exploits0References7

AlpineLinux•added 2026/06/09 4:3 p.m.•8 views

CVE-2026-7383

8.1CVSS6.3AI score0.00358EPSS

Exploits0

Tenable Nessus•added 2026/06/09 12:0 a.m.•4 views

EulerOS 2.0 SP11 : libtiff (EulerOS-SA-2026-2215)

Tenable Nessus•added 2026/06/06 12:0 a.m.•10 views

RHEL 9 : php:8.3 (RHSA-2026:22142)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:22142 advisory. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: PHP: PHP: Denial of Service via...

8.8CVSS5.6AI score0.0045EPSS

Exploits1References10

Rockylinux•added 2026/06/01 6:3 a.m.•22 views

php:8.2 security update

An update is available for php, php-pecl-rrd, module.php, module.php-pecl-xdebug3, module.php-pecl-apcu, php-pecl-xdebug3, module.php-pecl-rrd, php-pecl-zip, module.php-pecl-zip, php-pecl-apcu. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a...

8.8CVSS5.5AI score0.0045EPSS

Exploits1

Tenable Nessus•added 2026/06/01 12:0 a.m.•9 views

RockyLinux 8 : php:8.2 (RLSA-2026:22305)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:22305 advisory. PHP: PHP: Denial of Service via improper handling of signed characters in ctype functions CVE-2026-7258 PHP: PHP-FPM: PHP-FPM: Cross-Site Scripting...

8.8CVSS6AI score0.0045EPSS

Exploits1References9

Tenable Nessus•added 2026/05/27 12:0 a.m.•14 views

RHEL 8 : compat-libtiff3 (RHSA-2026:20592)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2026:20592 advisory. The libtiff3 package provides libtiff 3, an older version of libtiff library for manipulating TIFF Tagged Image File Format image format files. This...

7.8CVSS6.2AI score0.0033EPSS

RedHat Linux•added 2026/05/26 3:55 a.m.•14 views

libtiff: libtiff: Arbitrary code execution or denial of service via signed integer overflow in TIFF file processing

7.8CVSS6.1AI score0.0033EPSS

GithubExploit•added 2026/05/21 7:12 a.m.•54 views

CVEs

NULL Dereference The vulnerabilities found in cryptofioctl...

5.8AI score

Exploits0

RedhatCVE•added 2026/05/20 4:52 p.m.•7 views

CVE-2026-44636

A flaw was found in libsixel. A signed integer overflow in sixelencodehighcolor's allocation size calculation can lead to a heap buffer overflow. The public sixelencode entry point validates only that width and height are greater than zero, with no upper bound. width and height are multiplied as...

7.8CVSS6.2AI score0.00104EPSS

RedHat Linux•added 2026/05/20 1:29 p.m.•13 views

libtiff: libtiff: Arbitrary code execution or denial of service via signed integer overflow in TIFF file processing

7.8CVSS6.1AI score0.0033EPSS