CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

242277 matches found

CVE-2026-53160

A flaw was found in the Linux kernel's fastrpc component. A race condition in the fastrpcmapcreate function allows for a use-after-free vulnerability. This could enable an attacker to cause system instability, disclose sensitive information, or potentially execute unauthorized code...

5.7AI score0.00172EPSS

Exploits0References4

RedhatCVE•added yesterday•4 views

CVE-2026-53203

A flaw was found in the Linux kernel's accel/ivpu component. This vulnerability, a buffer overflow, occurs when the firmware returns a size larger than the allocated buffer during a metric stream information query. This can lead to an incorrect buffer copy, potentially causing system instability ...

7CVSS6AI score0.00193EPSS

Exploits0References4

EUVD•added yesterday•4 views

EUVD-2020-31260

Grav before 1.6.30 contains a cross-site scripting vulnerability in the Admin plugin page editor default security configuration. Privileged users with page editing capabilities can inject malicious scripts to execute arbitrary code and install malicious plugins for system access...

5.4CVSS6.1AI score0.00163EPSS

Exploits0References3

RedhatCVE•added yesterday•5 views

CVE-2026-53244

A flaw was found in the Linux kernel's Network File System Daemon NFSD component. When NFSD exports a filesystem utilizing atomiccreate, an error during atomiccreate processing can result in nfsd4createfile failing to unlock the parent directory. This resource management issue may lead to resourc...

7CVSS5.8AI score0.00162EPSS

Exploits0References4

OSV•added yesterday•2 views

UBUNTU-CVE-2026-46608

Glances is an open-source system cross-platform monitoring tool. Prior...

7.4CVSS5.8AI score0.00401EPSS

Exploits0References3

CVE•added 2 days ago•13 views

CVE-2025-71327

Flowise has an authentication bypass in the unprotected /api/v1/account/register endpoint. Unauthenticated attackers can register arbitrary accounts and gain full API access without credentials. CVSS metrics are provided (v3.1: 9.1; v4.0: 9.3), indicating a critical impact on confidentiality and ...

9.3CVSS6AI score0.00476EPSS

Exploits0References2

NVD•added 2 days ago•4 views

CVE-2026-6731

X.509 name constraint bypass via the Subject Common Name when treated as a DNS-type name. A certificate whose Subject CN violates an issuing CA's DNS name constraints could be accepted...

7.5CVSS0.00154EPSS

Exploits0References2

CVE•added 2 days ago•8 views

CVE-2026-40702

CVE-2026-40702 involves WebSocket endpoints in EVoke Systems EVoke CSMS that lack authentication, allowing attackers to impersonate charging stations and gain unauthorized access or perform actions. The underlying issue is no authentication for the WebSocket interface, enabling privilege escalati...

9.4CVSS5.9AI score0.00378EPSS

Exploits0References3

Wolfi•added 2 days ago•5 views

GHSA-XX3P-5M4J-RHW8 vulnerabilities

Vulnerabilities for packages: qemu...

5.8AI score

Exploits0

Wolfi•added 2 days ago•5 views

GHSA-V9PM-V9P5-H96X vulnerabilities

Vulnerabilities for packages: qemu...

5.8AI score

Exploits0

Wolfi•added 2 days ago•8 views

CVE-2026-56412 vulnerabilities

Vulnerabilities for packages: expat...

5.9CVSS5.8AI score0.00105EPSS

Exploits0

Wolfi•added 2 days ago•8 views

CVE-2026-56411 vulnerabilities

Vulnerabilities for packages: expat...

6.9CVSS5.8AI score0.0011EPSS

Exploits0

Wolfi•added 2 days ago•7 views

CVE-2026-56403 vulnerabilities

Vulnerabilities for packages: expat...

6.9CVSS5.8AI score0.00102EPSS

Exploits0

Chainguard•added 2 days ago•3 views

GHSA-V3CW-2F3G-F38X vulnerabilities

Vulnerabilities for packages: expat...

5.8AI score

Exploits0

IBM Security Bulletins•added 2 days ago•8 views

Security Bulletin: IBM Cloud Pak System is vulnerable to an Improper Access Control due to use of Apache Commons BeanUtils [CVE-2025-48734]

Summary Due to use of Apache Commons BeanUtils IBM Cloud Pak System is vulnerable to an Improper Access Control. IBM Cloud Pak System addressed vulnerability. Vulnerability Details CVEID:CVE-2025-48734 DESCRIPTION: Improper Access Control vulnerability in Apache Commons. A special BeanIntrospecto...

8.8CVSS6.9AI score0.01495EPSS

Exploits1Affected Software1

IBM Security Bulletins•added 2 days ago•10 views

Security Bulletin: Multiple vulnerabilities in IBM® SDK Java™ affect IBM Cloud Pak System

Summary Multiple vulnerabilities in the IBM® SDK, Java™ Technology Edition were addressed in IBM Cloud Pak System version 2.3.6.1. Vulnerability Details CVEID:CVE-2024-21235 DESCRIPTION: Vulnerability in Java SE component: Hotspot. Difficult to exploit vulnerability allows unauthenticated attacke...

8.1CVSS6.9AI score0.01157EPSS

Exploits0Affected Software1

IBM Security Bulletins•added 2 days ago•10 views

Security Bulletin: Due to the use of IBM Db2, IBM Cloud Pak System is affected by multiple vulnerabilities

Summary Vulnerabilities found in IBM Db2 LUW that affect Foundation and IBM Tivoli Monitoring ITM pattern Types pTypes shipped with IBM Cloud Pak System. Vulnerabilities were addressed in IBM Cloud Pak System. IBM Cloud Pak System v2.3.6.0 has updated Foundation and ITM pTypes to Foundation versi...

7.5CVSS6AI score0.00383EPSS

Exploits0Affected Software3

IBM Security Bulletins•added 2 days ago•13 views

Security Bulletin: Due to IBM Db2, IBM Cloud Pak System is affected by multiple vulnerabilities.

Summary IBM Db2 vulnerabilities have been found in IBM Cloud Pak System DB2 pattern type db2 pType shipped with Cloud Pak System. Vulnerabilities were addressed in IBM Cloud Pak System. Vulnerability Details CVEID:CVE-2024-45663 DESCRIPTION: IBM Db2 for Linux, UNIX and Windows includes Db2 Connec...

7.5CVSS6AI score0.00696EPSS

Exploits0Affected Software1

RedhatCVE•added 2 days ago•4 views

CVE-2026-53007

A flaw was found in the Linux kernel's ice driver. This vulnerability occurs due to a potential NULL pointer dereference in the icesetringparam function. When tstampring of temporary txrings is nullified without clearing the ICETXRINGFLAGSTXTIME bit, and a subsequent icesetuptxring call fails, it...

5.5CVSS5.8AI score0.00155EPSS

Exploits0References4

RedhatCVE•added 2 days ago•6 views

CVE-2026-53039

A flaw was found in the OCFS2 Oracle Cluster File System 2 component of the Linux kernel. A local user could exploit an input validation vulnerability in the OCFS2IOCGROUPADD ioctl. This flaw allows an attacker to trigger a kernel panic, resulting in a denial of service DoS for the affected syste...

5.8AI score0.00176EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by