CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNNVD•added 2026/03/10 12:0 a.m.•5 views

ImageMagick 缓冲区错误漏洞

ImageMagick is a set of open-source image processing software developed by the ImageMagick project. It can read, convert, and write images in various formats. Versions of ImageMagick prior to 7.1.2-16 and 6.9.13-41 contained a buffer error vulnerability. This vulnerability stemmed from integer...

8.1CVSS7.4AI score0.00243EPSS

OpenVAS•added 2026/03/10 12:0 a.m.•2 views

Huawei EulerOS: Security Advisory for libxml2 (EulerOS-SA-2026-1288)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS5.8AI score0.00725EPSS

Exploits0References2

EUVD•added 2026/03/09 9:40 p.m.•2 views

EUVD-2026-10386

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-16 and 6.9.13-41, an uninitialized pointer dereference vulnerability exists in the JBIG decoder due to a missing check. This vulnerability is fixed in 7.1.2-16 and 6.9.13-41...

7.5CVSS5.8AI score0.00269EPSS

OSV•added 2026/03/09 9:40 p.m.•3 views

CVE-2026-28691 ImageMagick has an uninitialized pointer dereference in JBIG decoder

7.5CVSS5.8AI score0.00269EPSS

Exploits0References3

OSV•added 2026/03/09 7:19 p.m.•4 views

MGASA-2026-0053 Updated thunderbird packages fix security vulnerabilities

Incorrect boundary conditions in the WebRTC: Audio/Video component. CVE-2026-2757 Use-after-free in the JavaScript: GC component. CVE-2026-2758 Incorrect boundary conditions in the Graphics: ImageLib component. CVE-2026-2759 Sandbox escape due to incorrect boundary conditions in the Graphics:...

10CVSS5.8AI score0.00622EPSS

Exploits0References4

EUVD•added 2026/03/09 3:30 p.m.•4 views

EUVD-2026-10330

Software installed and run as a non-privileged user may conduct improper GPU system calls to gain write permission to read-only wrapped user-mode memory. This is caused by improper handling of the memory protections for the user-mode wrapped memory resource...

4.4CVSS5.8AI score0.00124EPSS

Exploits0References2

HackRead•added 2026/03/09 2:23 p.m.•5 views

Iran’s MuddyWater Hackers Target US Firms with New Dindoor Backdoor

Researchers say Iran's MuddyWater hackers targeted US companies and an Israeli software firm’s department in a cyber campaign using the Dindoor malware - All this amid the ongoing conflict...

5.8AI score

Exploits0

RedhatCVE•added 2026/03/09 1:59 p.m.•5 views

CVE-2026-3738

A vulnerability was identified in SourceCodester Pet Grooming Management Software 1.0. This vulnerability affects unknown code of the component Financial Report Page. The manipulation leads to improper authorization. Remote exploitation of the attack is possible. The exploit is publicly available...

6.5CVSS5.5AI score0.00254EPSS

Exploits1References1

RedhatCVE•added 2026/03/09 1:59 p.m.•4 views

CVE-2026-3737

A vulnerability was determined in SourceCodester Pet Grooming Management Software 1.0. This affects an unknown part of the file adduser.php of the component User Creation Handler. Executing a manipulation can lead to improper authorization. The attack may be launched remotely. The exploit has bee...

6.5CVSS5.5AI score0.00254EPSS

Exploits1References1

RedHat Linux•added 2026/03/09 1:21 p.m.•3 views

firefox: thunderbird: Sandbox escape due to incorrect boundary conditions in the Telemetry component in External Software

A flaw was found in Firefox and Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: Sandbox escape due to incorrect boundary conditions in the Telemetry component in External Software...

NVD•added 2026/03/09 1:15 p.m.•11 views

CVE-2026-21736

4.4CVSS0.00124EPSS

RedHat Linux•added 2026/03/09 11:24 a.m.•1 views

firefox: thunderbird: Sandbox escape due to incorrect boundary conditions in the Telemetry component in External Software

RedhatCVE•added 2026/03/09 8:2 a.m.•2 views

CVE-2026-30858

WeKnora is an LLM-powered framework designed for deep document understanding and semantic retrieval. Prior to version 0.3.0, a DNS rebinding vulnerability in the webfetch tool allows an unauthenticated attacker to bypass URL validation and access internal resources on the server, including privat...

7.5CVSS5.7AI score0.00355EPSS

Exploits1References1

RedHat Linux•added 2026/03/09 2:6 a.m.•4 views

firefox: thunderbird: Sandbox escape due to incorrect boundary conditions in the Telemetry component in External Software

RedHat Linux•added 2026/03/09 2:2 a.m.•3 views

firefox: thunderbird: Sandbox escape due to incorrect boundary conditions in the Telemetry component in External Software

RedHat Linux•added 2026/03/09 2:0 a.m.•2 views

firefox: thunderbird: Sandbox escape due to incorrect boundary conditions in the Telemetry component in External Software

RedHat Linux•added 2026/03/09 1:57 a.m.•2 views

firefox: thunderbird: Sandbox escape due to incorrect boundary conditions in the Telemetry component in External Software

RedHat Linux•added 2026/03/09 1:56 a.m.•2 views

firefox: thunderbird: Sandbox escape due to incorrect boundary conditions in the Telemetry component in External Software

RedHat Linux•added 2026/03/09 1:52 a.m.•1 views

firefox: thunderbird: Sandbox escape due to incorrect boundary conditions in the Telemetry component in External Software