CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

101 matches found

Tenable Nessus•added 2026/05/15 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2026-43996

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenImageIO is a toolset for reading, writing, and manipulating image files of any image file format relevant to VFX / animation. Prior to 3.0.18.0 and 3.1.13.0...

5.5CVSS5.9AI score0.00013EPSS

Exploits1References3

NVD•added 2026/05/06 12:16 p.m.•1 views

CVE-2025-71292

In the Linux kernel, the following vulnerability has been resolved: jfs: nlink overflow in jfsrename If nlink is maximal for a directory -1 and inside that directory you perform a rename for some child directory not moving from the parent, then the nlink of the first directory is first incremente...

5.5CVSS0.00013EPSS

Exploits0References8

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux - уязвимость в linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: padata: Use integer wrap-around to prevent deadlock in cases of seqnr overflow. When submitting more than 2^32 padata objects to padatadoserial, the current sorting implementation incorrectly sorts padata objects with overflowed...

5.5CVSS6.3AI score0.00008EPSS

Exploits0References2

CNNVD•added 2026/04/17 12:0 a.m.•5 views

libcoap 安全漏洞

Libcoap is a lightweight application protocol implementation developed by ObgM. Libcoap has a security vulnerability, which stems from out-of-bounds read operations during the CBOR decapsulation processing in OSCORE Appendix B.2. This vulnerability may lead to a heap buffer overflow attack throug...

8.8CVSS5.9AI score0.00058EPSS

Exploits0References2

OSV•added 2026/03/03 11:15 p.m.•2 views

UBUNTU-CVE-2026-27622

OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In CompositeDeepScanLine::readPixels, per-pixel totals are accumulated in vector totalsizes for attacker-controlled large counts across many parts,...

8.4CVSS5.8AI score0.00023EPSS

Exploits2References4

CNNVD•added 2026/02/10 12:0 a.m.•3 views

Adobe After Effects 输入验证错误漏洞

Adobe After Effects is a set of visual effects and motion graphics production software from the American company Audobee Adobe. The software is mainly used for 2D and 3D synthesis, animation and visual effects production. An input validation error vulnerability exists in Adobe After Effects, whic...

7.8CVSS6.3AI score0.00011EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:53 a.m.•4 views

CVE-2021-27427

RIOT OS version 2020.01.1 is vulnerable to integer wrap-around in its implementation of calloc function, which can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution...

9.8CVSS7.6AI score0.02114EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:53 a.m.•4 views

CVE-2021-27425

Cesanta Software Mongoose-OS v2.17.0 is vulnerable to integer wrap-around in function mmmalloc. This improper memory assignment can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution...

9.8CVSS7.6AI score0.01981EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:53 a.m.•9 views

CVE-2021-27439

TencentOS-tiny version 3.1.0 is vulnerable to integer wrap-around in function 'tosmmheapalloc incorrect calculation of effective memory allocation size. This improper memory assignment can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code...

9.8CVSS7.6AI score0.0107EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:53 a.m.•6 views

CVE-2021-27431

ARM CMSIS RTOS2 versions prior to 2.1.3 are vulnerable to integer wrap-around inosRtxMemoryAlloc local malloc equivalent function, which can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or injected code execution...

9.8CVSS7.1AI score0.00517EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:53 a.m.•4 views

CVE-2021-27435

ARM mbed product Version 6.3.0 is vulnerable to integer wrap-around in mallocwrapper function, which can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution...

9.8CVSS7.6AI score0.03522EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 8:53 a.m.•4 views

CVE-2021-27419

uClibc-ng versions prior to 1.0.37 are vulnerable to integer wrap-around in functions malloc-simple. This improper memory assignment can lead to arbitrary memory allocation, resulting in unexpected behavior such as a crash or a remote code injection/execution...

9.8CVSS7.5AI score0.02554EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:9 a.m.•3 views

CVE-2024-2452

In Eclipse ThreadX NetX Duo before 6.4.0, if an attacker can control parameters of portablealignedalloc could cause an integer wrap-around and an allocation smaller than expected. This could cause subsequent heap buffer overflows...

9.8CVSS7AI score0.00141EPSS

Exploits1References1

CNNVD•added 2025/12/09 12:0 a.m.•1 views

Adobe DNG SDK 输入验证错误漏洞

Adobe DNG Software Development Kit SDK is a software development kit from the American company Audobee Adobe. An input validation error vulnerability exists in Adobe DNG Software Development Kit SDK, which can be exploited by an attacker to execute arbitrary code on a system or cause an applicati...

7.8CVSS6.2AI score0.00027EPSS

Exploits4References1