CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

84 matches found

ATTACKERKB•added 2026/05/06 11:28 a.m.•6 views

CVE-2026-43254

In the Linux kernel, the following vulnerability has been resolved: ovpn: tcp - fix packet extraction from stream When processing TCP stream data in ovpntcprecv, we receive large cloned skbs from strprcv that may contain multiple coalesced packets. The current implementation has two bugs: 1...

5.8AI score0.00451EPSS

Exploits0References4Affected Software1

CVE•added 2026/05/06 11:28 a.m.•19 views

CVE-2026-43254

CVE-2026-43254: Linux kernel openvpn TCP stream handling corrected. Ovpn_tcp_recv now allocates a separate skb per packet and uses skb_copy_bits to copy only the packet payload, skipping the 2-byte length prefix; length checks guard allocation to prevent invalid skbs. This resolves header offset ...

7.5CVSS5.7AI score0.00451EPSS

Exploits0References3Affected Software1

Positive Technologies•added 2026/05/06 12:0 a.m.•7 views

PT-2026-37594

In the Linux kernel, the following vulnerability has been resolved: ovpn: tcp - fix packet extraction from stream When processing TCP stream data in ovpn tcp recv, we receive large cloned skbs from strp rcv that may contain multiple coalesced packets. The current implementation has two bugs: 1...

5.7AI score0.00451EPSS

Exploits0References4

AstraLinux•added 2026/05/03 11:59 p.m.•3 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: nvme-tcp: fixed UAF Use-after-Free issues when detecting digest errors. We should also exit the iowork loop when setting rdenabled to true, so that we do not attempt to read data from the socket when the TCP stream is already...

7.8CVSS5.7AI score0.0025EPSS

Exploits0References2

Fedora•added 2026/03/26 2:31 a.m.•5 views

[SECURITY] Fedora 44 Update: wireshark-4.6.4-2.fc44

Wireshark allows you to examine protocol data stored in files or as it is captured from wired or wireless WiFi or Bluetooth networks, USB devices, and many other sources. It supports dozens of protocol capture file formats and understands more than a thousand protocols. It has many powerful...

7.5CVSS5.9AI score0.00184EPSS

Exploits3

Fedora•added 2025/10/23 1:3 a.m.•12 views

[SECURITY] Fedora 42 Update: wireshark-4.6.0-1.fc42

5.5CVSS6.8AI score0.0011EPSS

Exploits0

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2005-4459

Malware in sbrugna...

7.8CVSS6.4AI score0.01893EPSS

Exploits0References5

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2018-6477

Malware in sbrugna...

7.5CVSS7.5AI score0.01999EPSS

Exploits1References6

Tenable Nessus•added 2025/08/30 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2018-6794

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Suricata before 4.0.4 is prone to an HTTP detection bypass vulnerability in detect.c and stream-tcp.c. If a malicious server breaks a normal TCP flow and sends...

5.3CVSS6.1AI score0.29534EPSS

Exploits4References2

Fedora•added 2025/06/15 1:49 a.m.•4 views

[SECURITY] Fedora 42 Update: wireshark-4.4.7-1.fc42

7.8CVSS7AI score0.00299EPSS

Exploits1

Fedora•added 2025/06/15 1:7 a.m.•7 views

[SECURITY] Fedora 41 Update: wireshark-4.4.7-1.fc41

7.8CVSS7AI score0.00299EPSS

Exploits1

Tenable Nessus•added 2025/03/06 12:0 a.m.•8 views

Linux Distros Unpatched Vulnerability : CVE-2024-55629

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.8, TCP streams with TCP urgen...

7.5CVSS7.3AI score0.00524EPSS

Exploits0References3

Tenable Nessus•added 2025/03/05 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2021-47544

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - tcp: fix page frag corruption on page fault Steffen reported a TCP stream corruption for HTTP requests served by the apache web-server using a cifs mount-point...

5.9CVSS7AI score0.00744EPSS

Exploits0References2

Fedora•added 2025/03/01 1:40 a.m.•10 views

[SECURITY] Fedora 40 Update: wireshark-4.2.11-1.fc40

7.8CVSS7AI score0.0028EPSS

Exploits0

Fedora•added 2025/03/01 1:24 a.m.•9 views

[SECURITY] Fedora 41 Update: wireshark-4.4.4-1.fc41

7.8CVSS7.7AI score0.0028EPSS

Exploits0

Tenable Nessus•added 2025/01/16 12:0 a.m.•32 views

Suricata < 7.0.8 Multiple Vulnerabilities

The version of OISF Suricata installed on the remote host is prior to 6.0.19 or 7.x prior to 7.0.5. It is, therefore, affected by multiple vulnerabilities: - A large input buffer to one of the following transforms can lead to a stack overflow causing Suricata to crash in the following transforms:...

7.5CVSS7.6AI score0.00984EPSS

Exploits0References11

OSV•added 2025/01/06 6:15 p.m.•2 views

DEBIAN-CVE-2024-55627

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. Prior to 7.0.8, a specially crafted TCP stream can lead to a very large buffer overflow while being zero-filled during initialization with memset due to an unsigned integer...

7.5CVSS8.6AI score0.00984EPSS

Exploits0References1