CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

48 matches found

SUSE CVE-2026-46611

Glances is an open-source system cross-platform monitoring tool. Prior to 4.5.5, the Glances XML-RPC server glances -s, implemented in glances/server.py does not validate the HTTP Host header, leaving it vulnerable to DNS rebinding attacks. An attacker can exploit DNS rebinding to exfiltrate the...

5.3CVSS5.9AI score0.00156EPSS

Exploits0References3

SUSE CVE•added 6 days ago•7 views

SUSE CVE-2026-53489

unknown...

5.5CVSS5.8AI score

Exploits0References3

SUSE CVE•added 2026/06/20 2:28 a.m.•9 views

SUSE CVE-2026-54280

AIOHTTP is an asynchronous HTTP client/server framework for asyncio and Python. Prior to 3.14.1, payload resources are not closed correctly when a client disconnects in the middle of a write. If a payload is using an open file or similar limited resource, then an attacker may be able to cause...

6.3CVSS5.8AI score0.00281EPSS

Exploits0References3

SUSE CVE•added 2026/06/17 2:16 a.m.•6 views

SUSE CVE-2026-46680

unknown...

7CVSS5.1AI score0.00019EPSS

Exploits1References3

SUSE CVE•added 2026/06/17 2:16 a.m.•6 views

SUSE CVE-2026-47183

unknown...

6.5CVSS5.2AI score0.0002EPSS

Exploits0References3

SUSE CVE•added 2026/06/16 2:19 a.m.•7 views

SUSE CVE-2026-50012

unknown...

5.2AI score

Exploits0References4

SUSE CVE•added 2026/06/12 2:26 a.m.•6 views

SUSE CVE-2026-44932

Passing of unsanitized strings from DHCP replies into the wicked dhcp client before wicked 0.6.79 could be used by attackers operating a malicious DHCP server to execute code on the local machine...

8.8CVSS5.6AI score0.00297EPSS

Exploits0References7

SUSE CVE•added 2026/06/12 2:26 a.m.•4 views

SUSE CVE-2026-45591

unknown...

7.5CVSS5.2AI score0.01176EPSS

Exploits0References11

SUSE CVE•added 2026/05/29 1:22 a.m.•11 views

SUSE CVE-2026-25707

unknown...

7.4CVSS5.8AI score

Exploits0References11

SUSE CVE•added 2026/05/21 1:11 p.m.•10 views

SUSE CVE-2026-44054

Netatalk 2.0.0 through 4.4.2 generates AFP session tokens derived from predictable process IDs, which allows a remote authenticated attacker to cause a denial of service by exploiting the reconnect mechanism...

6.5CVSS5.8AI score0.0028EPSS

Exploits0References3

SUSE CVE•added 2026/05/21 1:11 p.m.•11 views

SUSE CVE-2026-44055

A logic error involving bitwise OR operations in Netatalk 3.1.4 through 4.4.2 allows a remote authenticated attacker to inject OS commands and execute arbitrary code...

7.5CVSS6.1AI score0.0036EPSS

Exploits0References3

SUSE CVE•added 2026/04/28 1:35 a.m.•6 views

SUSE CVE-2026-35330

unknown...

8.1CVSS5.2AI score

Exploits3References9

SUSE CVE•added 2026/04/23 1:29 a.m.•9 views

SUSE CVE-2026-5265

When generating an ICMP Destination Unreachable or Packet Too Big response, the handler copies a portion of the original packet into the ICMP error body using the IP header's self-declared total length iptotlen for IPv4, ip6plen for IPv6 without validating it against the actual packet buffer size...

7.5CVSS5.6AI score0.00629EPSS

Exploits0References10

SUSE CVE•added 2026/02/12 12:27 a.m.•1 views

SUSE CVE-2026-21936

unknown...

4.9CVSS5.4AI score0.00337EPSS

Exploits0References8

SUSE CVE•added 2026/01/22 12:25 a.m.•4 views

SUSE CVE-2026-1220

Race in V8 in Google Chrome prior to 144.0.7559.99 allowed a remote attacker to potentially exploit type confusion via a crafted HTML page. Chromium security severity: High...

7.5CVSS5.8AI score0.00297EPSS

Exploits1References3

SUSE CVE•added 2026/01/22 12:25 a.m.•3 views

SUSE CVE-2026-21933

unknown...

6.1CVSS5.4AI score0.00261EPSS

Exploits1References22

SUSE CVE•added 2025/07/16 11:22 p.m.•2 views

SUSE CVE-2025-50106

unknown...

8.1CVSS7AI score0.00611EPSS

Exploits0References17