CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

84 matches found

NVD•added 2026/06/17 8:17 p.m.•7 views

CVE-2026-48817

Starlette is a lightweight ASGI framework/toolkit. In versions 1.0.1 and below, when dispatching a request, HTTPEndpoint selects the handler by lowercasing the HTTP method and looking it up as an attribute with getattr, without restricting the lookup to a known set of HTTP verbs. When an...

5.3CVSS0.00213EPSS

Exploits0References2

EUVD•added 2026/05/27 3:33 p.m.•10 views

EUVD-2026-32322

In the Linux kernel, the following vulnerability has been resolved: RDMA/uverbs: Validate wqesize before using it in ibuverbspostsend ibuverbspostsend uses cmd.wqesize from userspace without any validation before passing it to kmalloc and using the allocated buffer as struct ibuverbssendwr. If a...

5.8AI score0.00164EPSS

Exploits0References9

NVD•added 2026/05/27 2:16 p.m.•10 views

CVE-2026-45856

7.1CVSS0.00164EPSS

Exploits0References8

Debian CVE•added 2026/05/27 12:15 p.m.•9 views

CVE-2026-45856

7.1CVSS5.8AI score0.00164EPSS

Exploits0

CNNVD•added 2026/05/27 12:0 a.m.•10 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the RDMA uverbs module not verifying the wqesize value in the ibuverbspostsend function. This cou...

7.1CVSS5.8AI score0.00164EPSS

Exploits0References8

AstraLinux•added 2026/05/20 5:53 a.m.•7 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Fixed a deadlock that occurred during netdev reset with active connections. This issue was addressed by preventing the deadlock that occurs when the netdev function is executed during a device reset while RDMA...

5.5CVSS5.8AI score0.00095EPSS

Exploits0References1

Github Security Blog•added 2026/05/06 9:38 p.m.•10 views

Flight: HTTP method override enabled by default, facilitating CSRF escalation and middleware bypass

Summary Request::getMethod unconditionally honors the X-HTTP-Method-Override header and the $REQUEST'method' parameter on any HTTP verb including safe verbs such as GET, with no opt-in and no whitelist of permitted target methods. A GET request can silently become a DELETE or PUT, enabling CSRF...

7.5CVSS5.8AI score0.0031EPSS

Exploits0References5Affected Software1

UbuntuCve•added 2026/04/24 3:16 p.m.•5 views

CVE-2026-31565

In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Fix deadlock during netdev reset with active connections Resolve deadlock that occurs when user executes netdev reset while RDMA applications e.g., rping are active. The netdev reset causes ice driver to remove irdma...

5.5CVSS5.4AI score0.00095EPSS

Exploits0References9

Positive Technologies•added 2026/04/24 12:0 a.m.•8 views

PT-2026-34917

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A deadlock occurs in the RDMA/irdma component when a netdev reset is executed while RDMA applications are active. The netdev reset leads the ice driver to remove the irdma auxiliary...

5.5CVSS5.5AI score0.00095EPSS

Exploits0References18

Ubuntu•added 2025/11/25 12:54 p.m.•7 views

USN-7887-2: Linux kernel (Raspberry Pi) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - ACPI drivers; - Ublk userspace block driver; -...

8.8CVSS7AI score0.00571EPSS

Exploits1

Ubuntu•added 2025/11/24 5:27 p.m.•8 views

USN-7887-1: Linux kernel (Raspberry Pi Real-time) vulnerabilities

8.8CVSS7AI score0.00571EPSS

Exploits1

OSV•added 2025/11/12 5:30 p.m.•8 views

USN-7835-6 linux-aws-6.8 vulnerabilities

8.8CVSS6.7AI score0.00571EPSS

Exploits1References60

Ubuntu•added 2025/11/12 5:30 p.m.•7 views

USN-7835-6: Linux kernel (AWS) vulnerabilities

8.8CVSS7AI score0.00571EPSS

Exploits1

Ubuntu•added 2025/11/06 11:12 a.m.•7 views

USN-7835-5: Linux kernel (Oracle) vulnerabilities

8.8CVSS7AI score0.00571EPSS

Exploits1

OSV•added 2025/11/06 11:12 a.m.•5 views

USN-7835-5 linux-oracle-6.8 vulnerabilities

8.8CVSS6.3AI score0.00571EPSS

Exploits1References60

OSV•added 2025/10/31 5:33 p.m.•7 views

USN-7835-4 linux-hwe-6.8 vulnerabilities

8.8CVSS6.7AI score0.00571EPSS

Exploits1References60

Ubuntu•added 2025/10/31 5:33 p.m.•11 views

USN-7835-4: Linux kernel (HWE) vulnerabilities

8.8CVSS7AI score0.00571EPSS

Exploits1

Tenable Nessus•added 2025/10/23 12:0 a.m.•6 views

Ubuntu 22.04 LTS / 24.04 LTS : Linux kernel vulnerabilities (USN-7835-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7835-1 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update...

8.8CVSS6.8AI score0.00571EPSS

Exploits1References60

Ubuntu•added 2025/10/22 6:4 p.m.•10 views

USN-7835-3: Linux kernel vulnerabilities

8.8CVSS7AI score0.00571EPSS

Exploits1

OSV•added 2025/10/22 4:31 p.m.•6 views

USN-7835-2 linux-realtime, linux-realtime-6.8 vulnerabilities

8.8CVSS6.7AI score0.00571EPSS

Exploits1References60

Rows per page