CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Snyk•added 2026/05/22 6:28 p.m.•6 views

Integer Overflow or Wraparound

Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound in the NewNTUnicodeString function. An attacker can cause a truncated string rather than an error to be returned by convincing a user to access a filename of excessive length. Remediation Upgrade...

4.8CVSS5.8AI score0.00013EPSS

Exploits0References3

Fedora•added 2026/04/25 1:52 a.m.•2 views

[SECURITY] Fedora 44 Update: mingw-libpng-1.6.56-1.fc44

MinGW Windows Libpng library...

7.6CVSS5.8AI score0.00051EPSS

Fedora•added 2026/04/18 12:54 a.m.•3 views

[SECURITY] Fedora 43 Update: mingw-LibRaw-0.21.5-3.fc43

MinGW Windows LibRaw library...

9.8CVSS6AI score0.00078EPSS

Exploits5

Fedora•added 2026/04/05 12:55 a.m.•3 views

[SECURITY] Fedora 43 Update: mingw-libpng-1.6.56-1.fc43

MinGW Windows Libpng library...

7.6CVSS5.9AI score0.00051EPSS

Fedora•added 2026/03/30 12:17 a.m.•2 views

[SECURITY] Fedora 44 Update: mingw-freetype-2.14.2-1.fc44

MinGW Windows Freetype library...

5.3CVSS5.8AI score0.00017EPSS

Fedora•added 2026/02/18 4:26 a.m.•6 views

[SECURITY] Fedora 43 Update: mingw-libpng-1.6.55-1.fc43

MinGW Windows Libpng library...

8.3CVSS5.4AI score0.00081EPSS

Fedora•added 2026/02/08 1:12 a.m.•5 views

[SECURITY] Fedora 43 Update: mingw-glib2-2.86.3-3.fc43

MinGW Windows Glib2 library...

5.4CVSS5.1AI score0.0002EPSS

Fedora•added 2026/01/26 1:8 a.m.•2 views

[SECURITY] Fedora 42 Update: mingw-glib2-2.84.4-2.fc42

MinGW Windows Glib2 library...

3.7CVSS5.9AI score0.00029EPSS

RedHat Linux•added 2026/01/06 11:25 a.m.•6 views

Important: Red Hat Security Advisory: mingw-libpng security update

An update for mingw-libpng is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability...

7.1CVSS6.6AI score0.00137EPSS

Exploits6References4

Fedora•added 2025/12/22 1:6 a.m.•6 views

[SECURITY] Fedora 42 Update: mingw-libpng-1.6.53-1.fc42

MinGW Windows Libpng library...

7.1CVSS7AI score0.00137EPSS

Exploits4

Fedora•added 2025/12/19 4:21 a.m.•5 views

[SECURITY] Fedora 43 Update: mingw-libpng-1.6.53-1.fc43

MinGW Windows Libpng library...

7.1CVSS7AI score0.00137EPSS

Exploits4

NVD•added 2025/12/09 6:16 p.m.•1 views

CVE-2025-64680

Heap-based buffer overflow in Windows DWM Core Library allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00075EPSS

Securelist•added 2025/10/17 10:0 a.m.•1 views

Post-exploitation framework now also delivered via npm

Incident description The first version of the AdaptixC2 post-exploitation framework, which can be considered an alternative to the well-known Cobalt Strike, was made publicly available in early 2025. In spring of 2025, the framework was first observed being used for malicious means. In October...

7.4AI score

Fedora•added 2025/10/15 1:1 a.m.•4 views

[SECURITY] Fedora 42 Update: mingw-exiv2-0.28.7-1.fc42

MinGW Windows exiv2 library...

5.5CVSS7AI score0.00024EPSS

Fedora•added 2025/10/13 12:42 a.m.•7 views

[SECURITY] Fedora 42 Update: mingw-poppler-24.08.0-6.fc42

MinGW Windows Poppler library...

2.9CVSS7AI score0.00009EPSS

EUVD•added 2025/10/03 8:7 p.m.•0 views

EUVD-2024-23448

Malicious code in bioql PyPI...

5.5CVSS8.7AI score0.00247EPSS

OSV•added 2025/08/12 6:15 p.m.•0 views

CVE-2025-50153

Use after free in Desktop Windows Manager allows an authorized attacker to elevate privileges locally...

7.8CVSS5.8AI score0.00484EPSS

OSV•added 2025/06/10 5:24 p.m.•1 views

CVE-2025-47962

Improper access control in Windows SDK allows an authorized attacker to elevate privileges locally...

7.8CVSS5.7AI score0.00552EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 9:50 a.m.•6 views

CVE-2024-7263

Improper path validation in promecefpluginhost.exe in Kingsoft WPS Office version ranging from 12.2.0.13110 to 12.2.0.17115 exclusive on Windows allows an attacker to load an arbitrary Windows library. The patch released in version 12.1.0.17119 to mitigate CVE-2024-7262 was not restrictive enough...

9.3CVSS7.7AI score0.10287EPSS