CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

545 matches found

OSV•added 21 hours ago•1 views

UBUNTU-CVE-2026-27145

x509.Certificate.VerifyHostname previously called matchHostnames in...

5.8AI score

Exploits0References5

OSV•added yesterday•7 views

ROOT-APP-MAVEN-CVE-2025-55752 CVE-2025-55752 in io.root.org.apache.tomcat:tomcat-catalina - Patched by Root

Root has patched CVE-2025-55752 in the io.root.org.apache.tomcat:tomcat-catalina package for Root:Maven. Multiple fixed versions available...

7.5CVSS7.1AI score0.00274EPSS

Exploits4

OSV•added yesterday•3 views

ROOT-OS-DEBIAN-13-CVE-2026-31403 CVE-2026-31403 in rootio-linux - Patched by Root

Root has patched CVE-2026-31403 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...

7.8CVSS5.8AI score0.00015EPSS

Exploits0

OSV•added 3 days ago•6 views

ROOT-OS-DEBIAN-11-CVE-2025-38004 CVE-2025-38004 in rootio-linux - Patched by Root

Root has patched CVE-2025-38004 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...

7.1CVSS7.2AI score0.00032EPSS

Exploits0

OSV•added 2026/05/27 2:17 p.m.•3 views

DEBIAN-CVE-2026-46055

In the Linux kernel, the following vulnerability has been resolved: apparmor: Fix string overrun due to missing termination When booting Ubuntu 26.04 with Linux 7.0-rc4 on an ARM64 Qualcomm Snapdragon X1 we see a string buffer overrun: BUG: KASAN: slab-out-of-bounds in aadfamatch...

7.1CVSS5.8AI score0.00015EPSS

Exploits0References1

OSV•added 2026/05/27 2:17 p.m.•6 views

DEBIAN-CVE-2026-46011

In the Linux kernel, the following vulnerability has been resolved: media: mtk-jpeg: fix use-after-free in release path due to uncancelled work The mtkjpegrelease function frees the context structure ctx without first cancelling any pending or running work in ctx-jpegwork. This creates a race...

7.8CVSS5.7AI score0.00013EPSS

Exploits0References1

OSV•added 2026/05/27 2:17 p.m.•7 views

DEBIAN-CVE-2026-45949

In the Linux kernel, the following vulnerability has been resolved: hwrng: core - use RCU and workstruct to fix race condition Currently, hwrngfill is not cleared until the hwrngfillfn thread exits. Since hwrngunregister reads hwrngfill outside the rngmutex lock, a concurrent hwrngunregister may...

5.7AI score0.00023EPSS

Exploits0References1

OSV•added 2026/05/26 10:7 a.m.•7 views

RHSA-2026:20586 Red Hat Security Advisory: thunderbird security update

Bulletin has no description...

8.8CVSS5.9AI score0.00054EPSS

Exploits0References27

OSV•added 2026/05/26 7:25 a.m.•4 views

ROOT-OS-UBUNTU-2204-CVE-2025-38348 CVE-2025-38348 in rootio-linux - Patched by Root

Root has patched CVE-2025-38348 in the rootio-linux package for Root:Ubuntu:22.04. Multiple fixed versions available...

7.8CVSS5.4AI score0.00072EPSS

Exploits0

OSV•added 2026/05/20 12:0 a.m.•2 views

UBUNTU-CVE-2026-41292

NLnet Labs Unbound up to and including version 1.25.0 is vulnerable to a degradation of service attack related to parsing long lists of incoming EDNS options. An adversary sending queries with too many EDNS options can hold Unbound threads hostage while they are parsing and creating internal data...

8.7CVSS5.8AI score0.00075EPSS

Exploits0References5

OSV•added 2026/05/18 7:12 p.m.•5 views

MGASA-2026-0147 Updated rclone packages fix security vulnerabilities

This update bring new features, bugs and vulnerabilities fixed in rclone and golang components used to build it...

10CVSS7.1AI score0.69905EPSS

Exploits14References35

OSV•added 2026/05/08 7:23 a.m.•3 views

MAL-2026-3382 Malicious code in solana-wallet-utils (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 0fafa4851b72650b6cb905d88ab0e9ac73276e188d44bf1ff2cb010eb6945c59 Code pretends to be a crypto utility but exfiltrates given private key / seed --- Category: MALICIOUS - The campaign has clearly malicious intent, like...

5.8AI score

Exploits0References1

OSV•added 2026/05/07 10:7 a.m.•2 views

RHSA-2026:13978 Red Hat Security Advisory: libsoup security update

Bulletin has no description...

5.9CVSS5.7AI score0.00014EPSS

Exploits1References8

vulnersOsv•added 2026/05/06 9:43 p.m.•2 views

a-mailx (=0.1.0), aaa-ml-datasets-course (=1.0.0) +105 more potentially affected by CVE-2026-42557 via notebook (>=7.0.0 <=7.5.5)

notebook PYPI version =7.0.0, =0.0.7, =1.0.1, =0.1.0, =1.6.4, =0.1.0, =0.0.1, =0.1.0, =0.0.1, =0.1.8, =0.0.2, =0.0.6 - compare-my-stocks =1.0.5 and more Source cves: CVE-2026-42557 Source advisory: OSV:GHSA-MQCG-5X36-VFCG...

8.6CVSS5.8AI score0.00102EPSS

Exploits0

OSV•added 2026/05/06 2:44 p.m.•3 views

BIT-JAVA-2023-41074

The issue was addressed with improved checks. This issue is fixed in tvOS 17, Safari 17, watchOS 10, iOS 17 and iPadOS 17, macOS Sonoma 14. Processing web content may lead to arbitrary code execution...

8.8CVSS7.5AI score0.01216EPSS

Exploits0References17

OSV•added 2026/05/06 12:16 p.m.•4 views

UBUNTU-CVE-2026-43124

In the Linux kernel, the following vulnerability has been resolved: pstore: ramcore: fix incorrect success return when vmap fails In persistentramvmap, vmap may return NULL on failure. If offset is non-zero, adding offsetinpagestart causes the function to return a non-NULL pointer even though the...

5.5CVSS5.7AI score0.00013EPSS

Exploits0References3

OSV•added 2026/05/01 3:16 p.m.•1 views

DEBIAN-CVE-2026-31755

In the Linux kernel, the following vulnerability has been resolved: usb: cdns3: gadget: fix NULL pointer dereference in epqueue When the gadget endpoint is disabled or not yet configured, the ep-desc pointer can be NULL. This leads to a NULL pointer dereference when cdns3gadgetepqueue is called,...

5.5CVSS5.7AI score0.00015EPSS

Exploits0References1

OSV•added 2026/05/01 1:54 p.m.•3 views

JLSEC-2026-374

VP9 in libvpx before 1.13.1 mishandles widths, leading to a crash related to encoding...

7.5CVSS6.9AI score0.01446EPSS

Exploits0References20

OSV•added 2026/04/30 7:16 a.m.•1 views

UBUNTU-CVE-2026-5408

BT-DHT protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service...

5.5CVSS5.8AI score0.00016EPSS

Exploits1References2