CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

69 matches found

RedhatCVE•added 2026/03/09 1:59 p.m.•3 views

CVE-2026-30909

Crypt::NaCl::Sodium versions through 2.002 for Perl has potential integer overflows. bin2hex, encrypt, aes256gcmencryptafternm and seal functions do not check that output size will be less than SIZEMAX, which could lead to integer wraparound causing an undersized output buffer. Encountering this...

9.8CVSS5.8AI score0.00533EPSS

Exploits0References1

RedhatCVE•added 2026/03/09 1:59 p.m.•2 views

CVE-2026-30910

Crypt::Sodium::XS versions through 0.001000 for Perl has potential integer overflows. Combined aead encryption, combined signature creation, and bin2hex functions do not check that output size will be less than SIZEMAX, which could lead to integer wraparound causing an undersized output buffer...

7.5CVSS6.2AI score0.00287EPSS

Exploits0References1

EUVD•added 2026/03/08 3:30 a.m.•4 views

EUVD-2026-10199

5.8AI score0.00533EPSS

Exploits0References7

OSV•added 2026/03/08 1:15 a.m.•3 views

CVE-2026-30909

9.8CVSS5.8AI score

Exploits0References7

NVD•added 2026/03/08 1:15 a.m.•4 views

CVE-2026-30909

9.8CVSS0.00533EPSS

Exploits0References7

CVE•added 2026/03/08 12:46 a.m.•12 views

CVE-2026-30909

Crypt::NaCl::Sodium for Perl up to version 2.002 is affected by potential integer overflows in bin2hex, encrypt, aes256gcm_encrypt_afternm, and seal, due to output-size checks against SIZE_MAX not being performed. This can lead to integer wraparound and an undersized output buffer, with impact de...

9.8CVSS5.8AI score0.00533EPSS

Exploits0References7Affected Software1

Vulnrichment•added 2026/03/08 12:46 a.m.•2 views

CVE-2026-30909 Crypt::NaCl::Sodium versions through 2.002 for Perl has potential integer overflows

5.8AI score0.00533EPSS

Exploits0References6

Cvelist•added 2026/03/08 12:46 a.m.•23 views

CVE-2026-30909 Crypt::NaCl::Sodium versions through 2.002 for Perl has potential integer overflows

0.00533EPSS

Exploits0References6

CNNVD•added 2026/03/08 12:0 a.m.•3 views

Crypt::NaCl::Sodium 安全漏洞

Crypt::NaCl::Sodium is an encryption/decryption library open source by CPAN authors. Versions of Crypt::NaCl::Sodium 2.002 and earlier contain security vulnerabilities, which stem from integer overflows and may lead to insufficient output buffer size...

9.8CVSS5.9AI score0.00533EPSS

Exploits0References8

Positive Technologies•added 2026/03/08 12:0 a.m.•5 views

PT-2026-23893

Name of the Vulnerable Software and Affected Versions Crypt::NaCl::Sodium versions through 2.002 Description The Crypt::NaCl::Sodium library for Perl versions through 2.002 may experience integer overflows in the bin2hex, encrypt, aes256gcm encrypt afternm, and seal functions. These functions do...

9.8CVSS5.7AI score0.00533EPSS

Exploits0References16

RedhatCVE•added 2026/02/24 1:44 a.m.•4 views

CVE-2026-2588

Crypt::NaCl::Sodium versions through 2.001 for Perl has an integer overflow flaw on 32-bit systems. Sodium.xs casts a STRLEN sizet to unsigned long long when passing a length pointer to libsodium functions. On 32-bit systems sizet is typically 32-bits while an unsigned long long is at least 64-bi...

9.1CVSS5.4AI score0.00346EPSS

Exploits0References1

OSV•added 2026/02/23 12:15 a.m.•3 views

CVE-2026-2588

9.1CVSS5.6AI score

Exploits0References3

NVD•added 2026/02/23 12:15 a.m.•4 views

CVE-2026-2588

9.1CVSS0.00346EPSS

Exploits0References3

CNNVD•added 2026/02/23 12:0 a.m.•5 views

Crypt::NaCl::Sodium 安全漏洞

Crypt::NaCl::Sodium is an encryption/decryption library open source by CPAN authors. Versions of Crypt::NaCl::Sodium 2.001 and earlier have security vulnerabilities, which stem from integer overflow defects on 32-bit systems...

9.1CVSS5.9AI score0.00346EPSS

Exploits0References3

Cvelist•added 2026/02/22 11:31 p.m.•21 views

CVE-2026-2588 Crypt::NaCl::Sodium versions through 2.001 for Perl has an integer overflow flaw on 32-bit systems

0.00346EPSS

Exploits0References3

ATTACKERKB•added 2026/02/22 11:31 p.m.•5 views

CVE-2026-2588

5.6AI score0.00346EPSS

Exploits0References4

CVE•added 2026/02/22 11:31 p.m.•10 views

CVE-2026-2588

Crypt::NaCl::Sodium for Perl has an integer overflow in 32‑bit environments, affecting versions up to 2.001. The Sodium.xs code casts a STRLEN (size_t) to unsigned long long when passing a length pointer to libsodium, creating an overflow risk where 32‑bit size_t is 32‑bit but unsigned long long ...

9.1CVSS5.6AI score0.00346EPSS

Exploits0References3Affected Software1

OSV•added 2026/01/10 5:7 a.m.•5 views

MGASA-2026-0004 Updated sodium packages fix security vulnerability

Libsodium before ad3004e, in atypical use cases involving certain custom cryptography or untrusted data to cryptocoreed25519isvalidpoint, mishandles checks for whether an elliptic curve point is valid because it sometimes allows points that aren't in the main cryptographic group. CVE-2025-69277...

4.5CVSS6.8AI score0.00166EPSS

Exploits0References3

Microsoft CVE•added 2026/01/09 9:10 a.m.•5 views

Crypt::Sodium::XS module versions prior to 0.000042, for Perl, include a vulnerable version of libsodium

...

9.8CVSS5.4AI score0.00228EPSS

Exploits0

Tenable Nessus•added 2026/01/09 12:0 a.m.•4 views

Ubuntu 22.04 LTS / 24.04 LTS / 25.04 / 25.10 : Sodium vulnerability (USN-7949-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS / 25.04 / 25.10 host has packages installed that are affected by a vulnerability as referenced in the USN-7949-1 advisory. It was discovered that Sodium incorrectly handled the elliptic curve point validity check in certain atypical use cases. This could...

4.5CVSS5.5AI score0.00166EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by