CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1738 matches found

GithubExploit•added 2026/02/19 3:28 p.m.•122 views

exploit-surge-radar

Exploit Surge Radar Detect exploit-active vulnerability surge...

5.5AI score

Exploits0

RedhatCVE•added 2026/02/14 1:28 a.m.•5 views

CVE-2025-70955

A Stack Overflow vulnerability was discovered in the TON Virtual Machine TVM before v2024.10. The vulnerability stems from the improper handling of vmstate and continuation jump instructions, which allow for continuous dynamic tail calls. An attacker can exploit this by crafting a smart contract...

7.5CVSS5.9AI score0.00604EPSS

Exploits0References1

RedhatCVE•added 2026/02/14 1:28 a.m.•4 views

CVE-2025-70954

A Null Pointer Dereference vulnerability exists in the TON Virtual Machine TVM within the TON Blockchain before v2025.06. The issue is located in the execution logic of the INMSGPARAM instruction, where the program fails to validate if a specific pointer is null before accessing it. By sending a...

7.5CVSS5.8AI score0.00554EPSS

Exploits0References1

NVD•added 2026/02/13 10:16 p.m.•9 views

CVE-2025-70954

7.5CVSS0.00554EPSS

Exploits0References5

NVD•added 2026/02/13 10:16 p.m.•5 views

CVE-2025-70955

7.5CVSS0.00604EPSS

Exploits0References4

OSV•added 2026/02/13 10:16 p.m.•3 views

CVE-2025-70954

7.5CVSS5.8AI score

Exploits0References5

OSV•added 2026/02/13 10:16 p.m.•6 views

CVE-2025-70955

7.5CVSS5.9AI score

Exploits0References4

Chainguard•added 2026/02/13 7:17 p.m.•1 views

GHSA-W4GW-W5JQ-G9JH vulnerabilities

Vulnerabilities for packages: gendesk, gitness, wuzz, backup-restore-operator, terraform, nvidia-gpu-operator-validator, cilium-envoy, rke2-runtime, k8s-device-plugin, localstack, k3s, runc, rke2-runtime-fips, gitlab-rails-ce, aws-load-balancer-controller, fuse-overlayfs-snapshotter,...

5.8AI score

Exploits0

CVE•added 2026/02/13 12:0 a.m.•9 views

CVE-2025-70955

The TON Virtual Machine (TVM) vulnerability CVE-2025-70955 affects TVM versions prior to 2024.10. Root cause: improper handling of vmstate and continuation jump instructions, allowing continuous dynamic tail calls. An attacker can craft a smart contract with deeply nested jump logic, leading to n...

7.5CVSS5.9AI score0.00604EPSS

Exploits0References4

Cvelist•added 2026/02/13 12:0 a.m.•19 views

CVE-2025-70954

0.00554EPSS

Exploits0References4

ATTACKERKB•added 2026/02/13 12:0 a.m.•4 views

CVE-2025-70955

5.9AI score0.00604EPSS

Exploits0References5

Vulnrichment•added 2026/02/13 12:0 a.m.•3 views

CVE-2025-70954

5.8AI score0.00554EPSS

Exploits0References4

Positive Technologies•added 2026/02/13 12:0 a.m.•5 views

PT-2026-8036

Name of the Vulnerable Software and Affected Versions TON Virtual Machine versions prior to 2024.10 Description A Stack Overflow issue exists in the TON Virtual Machine TVM. The root cause is the improper handling of vmstate and continuation jump instructions, leading to continuous dynamic tail...

5.8AI score0.00604EPSS

Exploits0References7

Vulnrichment•added 2026/02/13 12:0 a.m.•3 views

CVE-2025-70955

5.8AI score0.00604EPSS

Exploits0References4

CVE•added 2026/02/13 12:0 a.m.•12 views

CVE-2025-70954

The CVE-2025-70954 affects the TON Blockchain’s TVM, specifically the INMSGPARAM instruction. The vulnerability is a Null Pointer Dereference in the execution path, where a pointer is not checked for null before access, allowing a malicious transaction or smart contract to crash a validator node ...

7.5CVSS5.8AI score0.00554EPSS

Exploits0References5

Positive Technologies•added 2026/02/13 12:0 a.m.•3 views

PT-2026-8035

Name of the Vulnerable Software and Affected Versions TON Blockchain versions prior to 2025.06 Description A flaw exists in the TON Virtual Machine TVM within the TON Blockchain. The issue resides in the execution logic of the INMSGPARAM instruction, where the program does not validate if a point...

5.8AI score0.00554EPSS

Exploits0References7

Tenable Nessus•added 2026/02/12 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2025-69873

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ajv Another JSON Schema Validator before 8.18.0 is vulnerable to Regular Expression Denial of Service ReDoS when the $data option is enabled. The pattern keywor...

7.5CVSS6.4AI score0.00407EPSS

Exploits1References3

Github Security Blog•added 2026/02/11 9:30 p.m.•9 views

ajv has ReDoS when using `$data` option

ajv Another JSON Schema Validator through version 8.17.1 is vulnerable to Regular Expression Denial of Service ReDoS when the $data option is enabled. The pattern keyword accepts runtime data via JSON Pointer syntax $data reference, which is passed directly to the JavaScript RegExp constructor...

7.5CVSS5.9AI score0.00407EPSS

Exploits1References10Affected Software1

OSV•added 2026/02/11 9:30 p.m.•5 views

GHSA-2G4F-4PWH-QVX6 ajv has ReDoS when using `$data` option

6.9CVSS5.8AI score0.00407EPSS

Exploits1References11

vulnersOsv•added 2026/02/11 9:30 p.m.•4 views

0.edsql (>=1.0.49 <=1.0.50), 4itech-schematics (>=10.0.2-0 <=11.7.0-5) +9674 more potentially affected by CVE-2025-69873 via ajv (>=7.0.0-beta.0 <=8.17.1)

ajv NPM version =7.0.0-beta.0, =1.0.49, =10.0.2-0, =4.11.2, =0.1.0, =0.1.1, =0.0.1-251008.90016, =1.0.0, =1.4.0, =0.0.2, =2.0.0, =11.7.0, =0.1.0, =0.6.111, =15.0.0, =20.0.0-renovate-fd1892-me5sbqz0 and more Source cves: CVE-2025-69873 Source advisory: OSV:GHSA-2G4F-4PWH-QVX6...

7.5CVSS6.2AI score0.00407EPSS

Exploits1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by