CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

118 matches found

Linux Distros Unpatched Vulnerability : CVE-2026-56211

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A remote code execution vulnerability was found in libaom, the reference AV1 codec implementation. Insufficient bounds validation in the AV1 encoder's SVC...

7.1CVSS6.7AI score0.00385EPSS

Exploits0References4

Tenable Nessus•added 5 days ago•6 views

Linux Distros Unpatched Vulnerability : CVE-2026-56209

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An arbitrary address write vulnerability was found in libaom, the reference AV1 codec implementation. A missing bounds check in the SVC Scalable Video Coding...

7.1CVSS6.1AI score0.00266EPSS

Exploits0References4

NVD•added 6 days ago•10 views

CVE-2026-56211

A remote code execution vulnerability was found in libaom, the reference AV1 codec implementation. Insufficient bounds validation in the AV1 encoder's SVC Scalable Video Coding layer ID control allows an attacker to supply crafted video frame pixels that overlap with internal encoder layer contex...

7.1CVSS0.00385EPSS

Exploits0References4

NVD•added 6 days ago•9 views

CVE-2026-56209

An arbitrary address write vulnerability was found in libaom, the reference AV1 codec implementation. A missing bounds check in the SVC Scalable Video Coding layer ID control function allows an attacker to inject an arbitrary pointer into the cyclic refresh map field via crafted image pixel value...

7.1CVSS0.00266EPSS

Exploits0References4

NVD•added 6 days ago•9 views

CVE-2026-56210

A heap-buffer-overflow read vulnerability was found in libaom, the reference AV1 codec implementation. A missing bounds check in the SVC Scalable Video Coding layer ID control function allows setting a spatiallayerid exceeding the configured number of layers. This causes an out-of-bounds heap rea...

7.1CVSS0.00228EPSS

Exploits0References4

EUVD•added 6 days ago•5 views

EUVD-2026-38047

7.1CVSS6.7AI score0.00385EPSS

Exploits0References4

CVE•added 6 days ago•19 views

CVE-2026-56210

CVE-2026-56210 (libaom) : A heap-buffer-overflow in the SVC layer ID control function allows a spatial_layer_id exceeding the configured number of layers, causing an out-of-bounds read (~40,728 bytes) during layer context index computation. This can enable information disclosure or denial of serv...

7.1CVSS5.8AI score0.00228EPSS

Exploits0References4

Cvelist•added 6 days ago•28 views

CVE-2026-56211 Libaom: libaom: remote code execution via svc layer context handling with attacker-controlled frames

7.1CVSS0.00385EPSS

Exploits0References4

EUVD•added 6 days ago•5 views

EUVD-2026-38046

7.1CVSS5.8AI score0.00228EPSS

Exploits0References4

CVE•added 6 days ago•15 views

CVE-2026-56211

CVE-2026-56211 concerns libaom, the reference AV1 codec. The vulnerability stems from insufficient bounds validation in the AV1 encoder’s SVC layer ID control, enabling an attacker-provided frame to overlap internal encoder layer context structures. In fork-based video processing services, this c...

7.1CVSS6.7AI score0.00385EPSS

Exploits0References4

RedhatCVE•added 6 days ago•8 views

CVE-2026-56211

7.1CVSS6.7AI score0.00385EPSS

Exploits0References5

RedhatCVE•added 6 days ago•8 views

CVE-2026-56210

7.1CVSS5.8AI score0.00228EPSS

Exploits0References5

EUVD•added 6 days ago•5 views

EUVD-2026-38044

7.1CVSS6AI score0.00266EPSS

Exploits0References4

ATTACKERKB•added 6 days ago•6 views

CVE-2026-56209

7.1CVSS6AI score0.00266EPSS

Exploits0References5

Cvelist•added 6 days ago•30 views

CVE-2026-56209 Libaom: libaom: arbitrary address write via svc layer context oob and cyclic refresh map pointer hijack

7.1CVSS0.00266EPSS

Exploits0References4

RedhatCVE•added 6 days ago•14 views

CVE-2026-56209

7.1CVSS6AI score0.00266EPSS

Exploits0References5

CVE•added 6 days ago•20 views

CVE-2026-56209

CVE-2026-56209 concerns libaom’s SVC layer: a missing bounds check in the SVC layer ID control function lets an attacker inject an arbitrary pointer into the cyclic refresh map when processing frames, enabling an encoder to write about 1,200 bytes to attacker-controlled memory. This vulnerability...

7.1CVSS6AI score0.00266EPSS

Exploits0References4

NVD•added 2026/06/11 7:16 p.m.•8 views

CVE-2026-53701

An out-of-bounds write vulnerability was found in GStreamer's H.266/VVC PPS picture partition parser in gst-plugins-bad. In the multi-slice-in-tile processing of gsth266parserparsepicturepartition gsth266parser.c, the loop iterates without checking that the slice index stays within bounds, writin...

6.5CVSS0.00206EPSS

Exploits0References2

Vulnrichment•added 2026/06/11 6:15 p.m.•6 views

CVE-2026-53702 Gstreamer1-plugins-bad-free: gstreamer: stack buffer overflow in h.265 buffering period sei parser

A stack buffer overflow flaw was found in the GStreamer H.265 codec parser library gst-plugins-bad. When parsing a buffering period SEI message, the parser uses an incorrect loop bound derived from cpbcntminus1i the loop index instead of the sub-layer 0 CPB count cpbcntminus10 from the referenced...

6.5CVSS5.7AI score0.00228EPSS

Exploits0References2

CVE•added 2026/06/11 6:15 p.m.•10 views

CVE-2026-53702

The issue CVE-2026-53702 affects the GStreamer H.265 codec parser library (gst-plugins-bad). During buffering period SEI parsing, the loop bound is derived from cpb_cnt_minus1[i] instead of cpb_cnt_minus1[0] from the referenced Sequence Parameter Set, causing writes beyond stack-allocated CPB del...

6.5CVSS5.8AI score0.00228EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by