CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Positive Technologies•added 2026/05/07 12:0 a.m.•8 views

PT-2026-38463

Stack-based buffer overflow in .NET and Visual Studio allows an unauthorized attacker to deny service over a network...

7.5CVSS6.4AI score0.00787EPSS

CNNVD•added 2026/05/07 12:0 a.m.•5 views

ParquetSharp 安全漏洞

ParquetSharp is a .NET library developed by G-Research for reading and writing Parquet files across platforms. Versions of ParquetSharp from 18.1.0 to 23.0.0.1 contained security vulnerabilities. These vulnerabilities stemmed from the use of DecimalConverter.ReadDecimal to perform stackalloc with...

5.3CVSS5.9AI score0.00273EPSS

Exploits0References2

CNNVD•added 2026/05/07 12:0 a.m.•5 views

XMLDOM 安全漏洞

XMLDOM is a JavaScript implementation of the W3C DOM for Node developed by jindw. Versions of XMLDOM prior to 0.9.10, 0.8.13, and xmldom 0.6.0 and earlier contained security vulnerabilities. These vulnerabilities stemmed from the unlimited depth of recursive traversal in lib/dom.js, which could...

8.7CVSS5.8AI score0.00557EPSS

OSV•added 2026/05/06 11:38 p.m.•4 views

GHSA-R5FR-9GMV-JGGH scim_proton and kanidm_proto have an authenticated process abort via SCIM filter stack exhaustion

Summary A single unauthenticated GET to any /scim/v1/... endpoint with a ?filter= query string of a few thousand nested parentheses ≈ 4–12 KB drives the recursive-descent PEG parser past the worker thread's stack guard page. Rust responds to stack overflow with std::process::abort — the entire...

8.7CVSS5.9AI score0.00317EPSS

Exploits0References2

Github Security Blog•added 2026/05/06 11:38 p.m.•4 views

scim_proton and kanidm_proto have an authenticated process abort via SCIM filter stack exhaustion

8.7CVSS5.9AI score0.00317EPSS

Exploits0References2Affected Software2

RedhatCVE•added 2026/05/06 8:21 p.m.•8 views

CVE-2026-34459

Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, the SbieSvc proxy service's GetRawInputDeviceInfoSlave handler contains two vulnerabilities that can be chained for sandbox escape. First, when a sandboxed process sends an IPC request...

8.8CVSS6.1AI score0.00139EPSS

RedhatCVE•added 2026/05/06 8:21 p.m.•4 views

CVE-2026-34461

Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, the SbieIniServer RunSbieCtrl handler contains a stack buffer overflow. The MSGIDSBIEINIRUNSBIECTRL message is handled before normal sandbox and impersonation checks, and for non-sandbox...

7.8CVSS6.5AI score0.00172EPSS

RedhatCVE•added 2026/05/06 8:21 p.m.•5 views

CVE-2026-34462

Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, several ProcessServer handlers KillAllHandler, SuspendAllHandler, and RunSandboxedHandler copy a WCHAR boxname34 field from request structures into WCHAR40 stack buffers using wcscpy...

7.8CVSS6.2AI score0.00174EPSS

Cvelist•added 2026/05/06 3:46 p.m.•30 views

CVE-2026-41286 Stack-based Buffer Overflow in WatchGuard Agent Discovery Service on Windows Causes Denial of Service - Variant B

Stack-based Buffer Overflow vulnerability in the WatchGuard Agent discovery service on Windows allows Overflow Buffers. An unauthenticated attacker on the same local network could exploit this vulnerability to crash the agent service...

7.1CVSS0.00213EPSS

Vulnrichment•added 2026/05/06 3:46 p.m.•6 views

CVE-2026-41286 Stack-based Buffer Overflow in WatchGuard Agent Discovery Service on Windows Causes Denial of Service - Variant B

EUVD•added 2026/05/06 3:32 p.m.•2 views

EUVD-2026-27828

NVD•added 2026/05/06 3:16 p.m.•4 views

Exploits0References2

CVE-2026-41287

7.1CVSS0.00213EPSS

OSV•added 2026/05/06 2:45 p.m.•3 views

BIT-JAVA-MIN-2025-6021 Libxml2: integer overflow in xmlbuildqname() leads to stack buffer overflow in libxml2

A flaw was found in libxml2's xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-based buffer overflow. This issue can result in memory corruption or a denial of service when processing crafted input...

7.5CVSS7.1AI score0.01067EPSS

Exploits1References29

CVE•added 2026/05/06 1:40 p.m.•8 views

CVE-2026-41287

CVE-2026-41287 is a stack-based buffer overflow in the WatchGuard Agent Discovery Service on Windows that allows an unauthenticated, adjacent attacker to crash the agent service, producing a Denial of Service. Documented impact is high (CVSS 4.0 base score 7.1) with availability as the primary co...

Exploits0References1Affected Software1

Vulnrichment•added 2026/05/06 1:40 p.m.•4 views

CVE-2026-41287 Stack-based Buffer Overflow in WatchGuard Agent Discovery Service on Windows Causes Denial of Service - Variant A

IBM Security Bulletins•added 2026/05/06 3:55 a.m.•6 views

Security Bulletin: IBM Watson Discovery Cartridge affected by vulnerability in underscore-1.13.7.tgz

Summary IBM Watson Discovery Cartridge affected by vulnerability in underscore-1.13.7.tgz Vulnerability Details CVEID:CVE-2026-27601 DESCRIPTION: Underscore.js is a utility-belt library for JavaScript. Prior to 1.13.8, the .flatten and .isEqual functions use recursion without a depth limit. Under...

8.2CVSS6.8AI score0.00612EPSS

Exploits1Affected Software1

SUSE CVE•added 2026/05/06 1:41 a.m.•5 views

SUSE CVE-2026-43020

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: validate LTK encsize on load Load Long Term Keys stores the user-provided encsize and later uses it to size fixed-size stack operations when replying to LE LTK requests. An encsize larger than the 16-byte key...

5.9AI score0.00129EPSS

SUSE CVE•added 2026/05/06 1:40 a.m.•4 views

SUSE CVE-2026-44028

An issue was discovered in Nix before 2.34.7 and Lix before 2.95.2. Unbounded recursion in the NAR Nix Archive parser could lead to a stack-to-heap overflow when the parser is run on a coroutine stack. The stack is allocated without a guard page, which means that a stack overflow could overwrite...

7.5CVSS6.4AI score0.00164EPSS