CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE•added 8 hours ago•6 views

CVE-2026-56123

CVE-2026-56123 affects socat versions 1.8.0.0 through 1.8.1.1. A signed-char sign-extension bug in the DOMAINNAME reply parser during SOCKS5 handshake allows a negative bytes_to_read value to be implicitly converted to size_t, causing an unbounded heap write into a 262-byte reply buffer. This res...

9.2CVSS6.2AI score

AlpineLinux•added 8 hours ago•3 views

CVE-2026-56123

9.2CVSS6.2AI score

EUVD•added 8 hours ago•4 views

EUVD-2026-39455

9.2CVSS6.2AI score

Metasploit•added 2026/06/18 7:1 p.m.•71 views

OS Command Exec, Unix Command Shell, Bind TCP (via socat)

Execute an OS command from PHP. Creates an interactive shell via socat Module Options msf use payload/php/unix/cmd/bindsocattcp msf payloadbindsocattcp show actions ...actions... msf payloadbindsocattcp set ACTION msf payloadbindsocattcp show options ...show and set options... msf...

5.3AI score

Metasploit•added 2026/06/18 7:1 p.m.•62 views

Unix Command Shell, Bind TCP (via socat)

Creates an interactive shell via socat Module Options msf use payload/cmd/unix/bindsocattcp msf payloadbindsocattcp show actions ...actions... msf payloadbindsocattcp set ACTION msf payloadbindsocattcp show options ...show and set options... msf payloadbindsocattcp run This module requires...

9.2CVSS5.2AI score0.26468EPSS

Exploits3

Tenable Nessus•added 2026/05/27 12:0 a.m.•12 views

Amazon Linux 2 : socat, --advisory ALAS2-2026-3303 (ALAS-2026-3303)

The version of socat installed on the remote host is prior to 1.7.3.2-2. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2026-3303 advisory. readline.sh in socat through 1.8.0.1 relies on the /tmp/$USER/stderr2 file. CVE-2024-54661 Tenable has extracted the preceding...

9.8CVSS5.8AI score0.00778EPSS

Exploits0References4

Amazon•added 2026/05/26 12:0 a.m.•10 views

Low: socat

Issue Overview: readline.sh in socat through 1.8.0.1 relies on the /tmp/$USER/stderr2 file. CVE-2024-54661 Affected Packages: socat Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference between AL2 Core and AL2 Extras advisories. Issue...

Tenable Nessus•added 2026/05/16 12:0 a.m.•8 views

Amazon Linux 2023 : socat (ALAS2023-2026-1701)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1701 advisory. readline.sh in socat through 1.8.0.1 relies on the /tmp/$USER/stderr2 file. CVE-2024-54661 Tenable has extracted the preceding description block directly from the tested product security advisory. Note...

Amazon•added 2026/05/15 12:0 a.m.•12 views

Exploits0References4

Low: socat

Issue Overview: readline.sh in socat through 1.8.0.1 relies on the /tmp/$USER/stderr2 file. CVE-2024-54661 Affected Packages: socat Issue Correction: Run dnf update socat --releasever 2023.11.20260514 or dnf update --advisory ALAS2023-2026-1701 --releasever 2023.11.20260514 to update your system...

Packet Storm News•added 2026/04/09 12:0 a.m.•4 views

Tracing the Chain: Deep Learning for Stepping-Stone Intrusion Detection

Stepping-stone intrusions SSIs are a prevalent network evasion technique in which attackers route sessions through chains of compromised intermediate hosts to obscure their origin. Effective SSI detection requires correlating the incoming and outgoing flows at each relay host at extremely low fal...

5.8AI score

Tenable Nessus•added 2026/01/19 12:0 a.m.•7 views

MiracleLinux 7 : socat-1.7.3.2-2.el7 (AXBA:2017-1813:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXBA:2017-1813:01 advisory. - The signal handler implementations in socat before 1.7.3.0 and 2.0.0-b8 allow remote attackers to cause a denial of service process freeze or crash...

7.5CVSS5.7AI score0.0393EPSS

Tenable Nessus•added 2026/01/13 12:0 a.m.•4 views

MiracleLinux 9 : socat-1.7.4.1-6.el9_6.1 (AXSA:2025-10632:02)

The remote MiracleLinux 9 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2025-10632:02 advisory. socat: arbitrary file overwrite via predictable /tmp directory CVE-2024-54661 Tenable has extracted the preceding description block directly from the...

9.8CVSS7.1AI score0.00778EPSS

Tenable Nessus•added 2026/01/13 12:0 a.m.•3 views

MiracleLinux 8 : socat-1.7.4.1-2.el8_10 (AXSA:2025-10502:01)

The remote MiracleLinux 8 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2025-10502:01 advisory. socat: arbitrary file overwrite via predictable /tmp directory CVE-2024-54661 Tenable has extracted the preceding description block directly from the...

9.8CVSS7.1AI score0.00778EPSS

OSV•added 2025/12/27 9:4 a.m.•8 views

RLSA-2023:5259 Moderate: mariadb:10.3 security, bug fix, and enhancement update

MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. The following packages have been upgraded to a later upstream version: mariadb 10.3. BZ2223572, BZ2223574, BZ2223962, BZ2223965 Security Fixes: mariadb: segmentation fault via the component subselect...

7.5CVSS7.4AI score0.02021EPSS

Exploits2References6

OpenVAS•added 2025/10/28 12:0 a.m.•2 views

Fedora: Security Advisory (FEDORA-2025-0d54679581)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...