CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2026/06/05 2:17 a.m.•15 views

CVE-2026-41567

7.2CVSS0.00137EPSS

OSV•added 2026/06/05 2:17 a.m.•7 views

DEBIAN-CVE-2026-41567

7.2CVSS6AI score0.00137EPSS

ATTACKERKB•added 2026/06/05 12:35 a.m.•4 views

CVE-2026-41567

7.2CVSS6.2AI score0.00137EPSS

Exploits0References2Affected Software3

Vulnrichment•added 2026/06/05 12:35 a.m.•5 views

CVE-2026-41567 Docker: `PUT /containers/{id}/archive` executes container binary on the host

7.2CVSS6.2AI score0.00137EPSS

EUVD•added 2026/06/05 12:35 a.m.•7 views

EUVD-2026-34779

7.2CVSS6.3AI score0.00137EPSS

CNNVD•added 2026/06/05 12:0 a.m.•4 views

Moby 代码问题漏洞

Moby is an open-source project developed by Moby. It aims to promote the containerization of software and help the ecosystem make container technology mainstream. Versions of Moby prior to v2.0.0-beta.14 contained code-related vulnerabilities. These vulnerabilities stemmed from incorrect order of...

7.2CVSS6.1AI score0.00137EPSS

OSSF Malicious Packages•added 2026/06/04 10:27 p.m.•10 views

Malicious code in weavedb-contracts (npm)

--- -= Per source details. Do not edit below this line.=- Source: google-open-source-security 146faaf0d97c6a533a969bc3f3f117811f9317dc865ed4ab37f1679842ddeaae This package was compromised as part of the IronWorm campaign. This campaign executes a malicious binary payload during installation via a...

OSV•added 2026/06/04 10:27 p.m.•8 views

MAL-2026-5193 Malicious code in javascript-yaml (npm)

--- -= Per source details. Do not edit below this line.=- Source: google-open-source-security d83c3b506a10b770a8c1f98d280262478cccc65708bb1066a72e0708dccaaf75 This malicious package is part the IronWorm campaign. This campaign executes a malicious binary payload during installation via a preinsta...

OSV•added 2026/06/04 10:27 p.m.•8 views

MAL-2026-5190 Malicious code in hbsig (npm)

Snyk•added 2026/06/02 9:0 p.m.•6 views

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code that hides inside binary executable files triggered by a postinstall script. IronWorm is a sophisticated, Rust-based infostealer that functions as a self-replicating supply-chain attack. Its primary characteristi...

Snyk•added 2026/06/02 9:0 p.m.•7 views

Embedded Malicious Code

Snyk•added 2026/06/02 9:0 p.m.•5 views

Embedded Malicious Code

Snyk•added 2026/06/02 9:0 p.m.•6 views

Embedded Malicious Code

Snyk•added 2026/06/02 9:0 p.m.•5 views

Embedded Malicious Code

Snyk•added 2026/06/02 9:0 p.m.•5 views

Embedded Malicious Code

HackRead•added 2026/05/27 6:8 p.m.•9 views

Iran’s Nimbus Manticore Used Trojanized Zoom Installers Against US Firms

Iran’s Nimbus Manticore hackers used trojanized Zoom installers to deploy malware against US firms during a wider IRGC linked cyber campaign...

The Hacker News•added 2026/05/27 11:48 a.m.•21 views

GlassWorm Malware Takedown Disrupts Developer Supply Chain Attack Infrastructure

CrowdStrike, in partnership with Google and the Shadowserver Foundation, has announced the simultaneous disruption of all command-and-control C2 channels associated with GlassWorm, a persistent software chain campaign targeting software developers through malicious packages and extensions. "Since...

6.2AI score

The Hacker News•added 2026/05/19 4:54 a.m.•15 views

Mini Shai-Hulud Pushes Malicious AntV npm Packages via Compromised Maintainer Account

Cybersecurity researchers have discovered a fresh software supply chain attack campaign that has compromised various npm packages associated with the @antv ecosystem as part of the ongoing Mini Shai-Hulud attack wave. "The attack affects packages tied to the npm maintainer account atool, includin...

6AI score