Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

169 matches found

OSV
OSVadded 2026/02/24 6:43 p.m.6 views

RLSA-2026:2786 Moderate: glibc security update

The glibc packages provide the standard C libraries libc, POSIX thread libraries libpthread, standard math libraries libm, and the name service cache daemon nscd used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Security Fixes: glibc:...

8.1CVSS5.7AI score0.00564EPSS
Exploits1References4
OSV
OSVadded 2026/02/17 12:0 a.m.6 views

ALSA-2026:2786 Moderate: glibc security update

The glibc packages provide the standard C libraries libc, POSIX thread libraries libpthread, standard math libraries libm, and the name service cache daemon nscd used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Security Fixes: glibc:...

8.4CVSS5.7AI score0.00564EPSS
Exploits1References8
AlmaLinux
AlmaLinuxadded 2026/02/17 12:0 a.m.6 views

Moderate: glibc security update

The glibc packages provide the standard C libraries libc, POSIX thread libraries libpthread, standard math libraries libm, and the name service cache daemon nscd used by multiple programs on the system. Without these libraries, the Linux system cannot function correctly. Security Fixes: glibc:...

8.4CVSS5.7AI score0.00564EPSS
Exploits1References8
OSV
OSVadded 2026/01/30 12:28 p.m.5 views

OESA-2026-1266 glibc security update

The GNU C Library project provides the core libraries for the GNU system and GNU/Linux systems, as well as many other systems that use Linux as the kernel. These libraries provide critical APIs including ISO C11, POSIX.1-2008, BSD, OS-specific APIs and more. These APIs include such foundational...

7.5CVSS5.8AI score0.00564EPSS
Exploits0References3
OSV
OSVadded 2026/01/30 12:28 p.m.5 views

OESA-2026-1265 glibc security update

The GNU C Library project provides the core libraries for the GNU system and GNU/Linux systems, as well as many other systems that use Linux as the kernel. These libraries provide critical APIs including ISO C11, POSIX.1-2008, BSD, OS-specific APIs and more. These APIs include such foundational...

7.5CVSS5.8AI score0.00286EPSS
Exploits0References2
OSV
OSVadded 2026/01/27 6:20 p.m.2 views

MGASA-2026-0022 Updated glibc packages fix security vulnerabilities

Integer overflow in memalign leads to heap corruption. CVE-2026-0861 getnetbyaddr and getnetbyaddrr leak stack contents to DNS resovler. CVE-2026-0915 wordexp with WRDEREUSE and WRDEAPPEND may return uninitialized memory. CVE-2025-15281...

8.4CVSS5.8AI score0.00564EPSS
Exploits1References5
Mageia
Mageiaadded 2026/01/27 6:20 p.m.6 views

Updated glibc packages fix security vulnerabilities

Integer overflow in memalign leads to heap corruption. CVE-2026-0861 getnetbyaddr and getnetbyaddrr leak stack contents to DNS resovler. CVE-2026-0915 wordexp with WRDEREUSE and WRDEAPPEND may return uninitialized memory. CVE-2025-15281...

8.4CVSS5.8AI score0.00564EPSS
Exploits1References4
Tenable Nessus
Tenable Nessusadded 2026/01/27 12:0 a.m.6 views

Fedora 42 : glibc (2026-a2f3af8a86)

The remote Fedora 42 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2026-a2f3af8a86 advisory. This update switches the currency symbol for Bulgaria to the Euro. Furthermore, it addresses several security vulnerabilities: A crash when wordexp ...

8.4CVSS5.5AI score0.00564EPSS
Exploits1References4
SUSE CVE
SUSE CVEadded 2026/01/22 12:38 a.m.4 views

SUSE CVE-2025-15281

Calling wordexp with WRDEREUSE in conjunction with WRDEAPPEND in the GNU C Library version 2.0 to version 2.42 may cause the interface to return uninitialized memory in the wewordv member, which on subsequent calls to wordfree may abort the process...

5.5CVSS5.4AI score0.00286EPSS
Exploits0References13
Tenable Nessus
Tenable Nessusadded 2026/01/21 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-15281

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Calling wordexp with WRDEREUSE in conjunction with WRDEAPPEND in the GNU C Library version 2.0 to version 2.42 may cause the interface to return uninitialized...

7.5CVSS7.1AI score0.00286EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2026/01/20 5:50 p.m.1 views

CVE-2025-15281

A flaw was found in glibc. When the wordexp function is called with the flags WRDEREUSE and WRDEAPPEND, it may return uninitialized memory. If the caller inspects the wewordv array or calls the wordfree function to free the allocated memory, the process will abort, resulting in a denial of servic...

7.5CVSS5.3AI score0.00286EPSS
Exploits0References4
OSV
OSVadded 2026/01/20 2:16 p.m.3 views

AZL-75023 CVE-2025-15281 affecting package glibc for versions less than 2.35-10

Calling wordexp with WRDEREUSE in conjunction with WRDEAPPEND in the GNU C Library version 2.0 to version 2.42 may cause the interface to return uninitialized memory in the wewordv member, which on subsequent calls to wordfree may abort the process...

7.5CVSS5.6AI score0.00286EPSS
Exploits0References1
NVD
NVDadded 2026/01/20 2:16 p.m.5 views

CVE-2025-15281

Calling wordexp with WRDEREUSE in conjunction with WRDEAPPEND in the GNU C Library version 2.0 to version 2.42 may cause the interface to return uninitialized memory in the wewordv member, which on subsequent calls to wordfree may abort the process...

7.5CVSS0.00286EPSS
Exploits0References2
OSV
OSVadded 2026/01/20 2:16 p.m.3 views

AZL-74819 CVE-2025-15281 affecting package glibc for versions less than 2.38-18

Calling wordexp with WRDEREUSE in conjunction with WRDEAPPEND in the GNU C Library version 2.0 to version 2.42 may cause the interface to return uninitialized memory in the wewordv member, which on subsequent calls to wordfree may abort the process...

7.5CVSS6.9AI score0.00286EPSS
Exploits0References1
OSV
OSVadded 2026/01/20 2:16 p.m.2 views

CVE-2025-15281

Calling wordexp with WRDEREUSE in conjunction with WRDEAPPEND in the GNU C Library version 2.0 to version 2.42 may cause the interface to return uninitialized memory in the wewordv member, which on subsequent calls to wordfree may abort the process...

7.5CVSS5.2AI score
Exploits0References2
OSV
OSVadded 2026/01/20 2:16 p.m.0 views

UBUNTU-CVE-2025-15281

Calling wordexp with WRDEREUSE in conjunction with WRDEAPPEND in the GNU C Library version 2.0 to version 2.42 may cause the interface to return uninitialized memory in the wewordv member, which on subsequent calls to wordfree may abort the process...

7.5CVSS7AI score0.00286EPSS
Exploits0References4
UbuntuCve
UbuntuCveadded 2026/01/20 2:16 p.m.4 views

CVE-2025-15281

Calling wordexp with WRDEREUSE in conjunction with WRDEAPPEND in the GNU C Library version 2.0 to version 2.42 may cause the interface to return uninitialized memory in the wewordv member, which on subsequent calls to wordfree may abort the process...

7.5CVSS5.8AI score0.00286EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2026/01/20 1:22 p.m.3 views

CVE-2025-15281 wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory

Calling wordexp with WRDEREUSE in conjunction with WRDEAPPEND in the GNU C Library version 2.0 to version 2.42 may cause the interface to return uninitialized memory in the wewordv member, which on subsequent calls to wordfree may abort the process...

5.3AI score0.00286EPSS
Exploits0References1
CVE
CVEadded 2026/01/20 1:22 p.m.52 views

CVE-2025-15281

CVE-2025-15281 concerns the GNU C Library (glibc). The issue arises when wordexp is used with WRDE_REUSE together with WRDE_APPEND, which can cause we_wordv to be returned with uninitialized memory. On subsequent wordfree calls this memory state may trigger a process abort. The CVE is reflected i...

7.5CVSS5.3AI score0.00286EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2026/01/20 1:22 p.m.20 views

CVE-2025-15281 wordexp with WRDE_REUSE and WRDE_APPEND may return uninitialized memory

Calling wordexp with WRDEREUSE in conjunction with WRDEAPPEND in the GNU C Library version 2.0 to version 2.42 may cause the interface to return uninitialized memory in the wewordv member, which on subsequent calls to wordfree may abort the process...

0.00286EPSS
Exploits0References1
Rows per page
Query Builder