CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

NVD•added 2026/06/15 6:16 a.m.•10 views

CVE-2026-12220

A vulnerability has been found in Yealink SIP-T46U 108.86.0.118. This affects the function modupgrade.SparePartsUpload of the file /api/upgrade/accupgradebychunk of the component Firmware Chunk Upload handler. Such manipulation of the argument uid leads to stack-based buffer overflow. The attack...

8.6CVSS0.00371EPSS

Exploits0References5

EUVD•added 2026/04/24 2:42 p.m.•3 views

EUVD-2026-25515

In the Linux kernel, the following vulnerability has been resolved: NFC: digital: Bounds check NFC-A cascade depth in SDD response handler The NFC-A anti-collision cascade in digitalinrecvsddres appends 3 or 4 bytes to target-nfcid1 on each round, but the number of cascade rounds is controlled...

5.4AI score0.00281EPSS

Exploits0References4

CVE•added 2026/04/24 2:42 p.m.•17 views

CVE-2026-31622

Summary (CVE-2026-31622): In the Linux kernel NFC digital subsystem, the NFC‑A cascade depth handling in digital_in_recv_sdd_res() could allow a malicious peer to keep sending cascade responses, causing writes past the allocated nfc_target buffer (heap overflow) by exceeding the cascade depth. Th...

8.8CVSS5.4AI score0.00281EPSS

Exploits0References9Affected Software1

RedhatCVE•added 2026/02/22 1:28 a.m.•5 views

CVE-2019-25437

Foscam Video Management System 1.1.6.6 contains a buffer overflow vulnerability in the UID field that allows local attackers to crash the application by supplying an excessively long string. Attackers can input a 5000-character buffer into the UID parameter during device addition to trigger an...

6.7CVSS6AI score0.00136EPSS

Exploits0References1

NVD•added 2026/02/20 11:16 p.m.•5 views

CVE-2019-25437

6.7CVSS0.00136EPSS

Exploits0References3

Tenable Nessus•added 2026/01/16 12:0 a.m.•4 views

MiracleLinux 7 : polkit-0.112-22.el7 (AXSA:2019-4123:04)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2019-4123:04 advisory. polkit: Improper handling of user with uid INTMAX leading to authentication bypass CVE-2018-19788 Tenable has extracted the preceding description block...

9CVSS7.1AI score0.11483EPSS

Exploits1References2

Amazon•added 2025/06/11 12:0 a.m.•6 views

Medium: ecs-init

Issue Overview: containerd is an open-source container runtime. A bug was found in containerd prior to versions 1.6.38, 1.7.27, and 2.0.4 where containers launched with a User set as a UID:GID larger than the maximum 32-bit signed integer can cause an overflow condition where the container...

7.8CVSS7.1AI score0.00275EPSS

Exploits1

Amazon•added 2025/06/10 12:0 a.m.•2 views

Medium: ecs-init

7.8CVSS7.7AI score0.00275EPSS

Exploits1

Amazon•added 2025/04/01 12:0 a.m.•5 views

Medium: containerd

7.8CVSS7.1AI score0.00275EPSS

Exploits1

Amazon•added 2025/04/01 12:0 a.m.•4 views

Medium: containerd

7.8CVSS7AI score0.00275EPSS

Exploits1

OSV•added 2025/03/17 10:15 p.m.•2 views

DEBIAN-CVE-2024-40635

containerd is an open-source container runtime. A bug was found in containerd prior to versions 1.6.38, 1.7.27, and 2.0.4 where containers launched with a User set as a UID:GID larger than the maximum 32-bit signed integer can cause an overflow condition where the container ultimately runs as roo...

7.8CVSS5AI score0.00275EPSS

Exploits1References1

OSV•added 2025/03/17 10:15 p.m.•3 views

AZL-58844 CVE-2024-40635 affecting package moby-containerd for versions less than 1.6.26-11

7.8CVSS6.6AI score0.00275EPSS

Exploits1References1

Snyk•added 2025/03/17 9:24 p.m.•2 views

Integer Overflow or Wraparound

Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound in the WithUser function, when handling large User ID values. If a UID:GID value provided is larger than MaxInt32, it can overflow to 0 and be treated as root. This allows a user to escalate privileges on...

7.8CVSS7.8AI score0.00275EPSS

Exploits1References2