CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 6 days ago•7 views

CVE-2026-20454

5.8AI score0.00011EPSS

CVE•added 6 days ago•13 views

CVE-2026-20453

CVE-2026-20453 affects geniezone with a possible out-of-bounds write caused by a missing bounds check. The issue could enable local privilege escalation for an actor who already has System privileges, with no user interaction required. Patch ALPS10886526 (MSV-6791) is referenced as a fix. Exploit...

6.7CVSS5.8AI score0.00013EPSS

Exploits0References1Affected Software1

Cvelist•added 6 days ago•35 views

CVE-2026-20453

In geniezone, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10886526; Issue ID: MSV-6791...

0.00013EPSS

EUVD•added 6 days ago•9 views

EUVD-2026-33542

6.7CVSS5.8AI score0.00013EPSS

Vulnrichment•added 6 days ago•7 views

CVE-2026-10219 nextlevelbuilder GoClaw write_file Tool fsbridge.go FsBridge.WriteFile os command injection

A vulnerability was found in nextlevelbuilder GoClaw up to 3.11.3. This impacts the function FsBridge.WriteFile of the file internal/sandbox/fsbridge.go of the component writefile Tool. Performing a manipulation results in os command injection. The attack is possible to be carried out remotely. T...

7.5CVSS6.7AI score0.01054EPSS

CVE•added 6 days ago•14 views

CVE-2026-10219

CVE-2026-10219 affects NextLevelBuilder GoClaw up to version 3.11.3. The vulnerability lies in the function FsBridge.WriteFile (internal/sandbox/fsbridge.go) where manipulation can cause an OS command injection. The issue is exploitable remotely and an exploit has been made public. A patch is not...

7.5CVSS6.7AI score0.01054EPSS

SUSE Linux•added 6 days ago•7 views

Security update for the Linux Kernel (Live Patch 9 for SUSE Linux Enterprise 15 SP7)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.53.31 fixes various security issues The following security issues were fixed: CVE-2025-54518: AMD-SN-7052: CPU OP Cache Corruption bsc1264096. CVE-2026-23243: RDMA/umad: Reject negative datalen in ibumadwrite bsc1259798. CVE-2026-23274...

8.8CVSS6.4AI score0.00254EPSS

Exploits12References24

EUVD•added 6 days ago•7 views

EUVD-2026-33532

A vulnerability was determined in AstrBotDevs AstrBot 4.23.6. Affected by this issue is the function normalizerwpath of the file astrbot/core/tools/computertools/fs.py. This manipulation causes incorrect authorization. It is possible to initiate the attack remotely. The exploit has been publicly...

6.5CVSS6.3AI score0.00036EPSS

Exploits0References5

Positive Technologies•added 6 days ago•10 views

PT-2026-45643

Cryptographic Issue while processing a specific partition which allows unauthorized write access to load a customized bootloader...

8.2CVSS5.8AI score0.00008EPSS

Tenable Nessus•added 6 days ago•11 views

SUSE SLES15 Security Update : docker-stable (SUSE-SU-2026:2120-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:2120-1 advisory. This update for docker-stable fixes the following issues - CVE-2026-33747: github.com/moby/buildkit: malicious frontends can craft...

9.8CVSS5.8AI score0.00063EPSS

OSV•added 6 days ago•2 views

PUB-A-480123693

In multiple functions of VideoRtpPayloadDecoderNode.cpp, there is a possible out of bounds write due to an integer overflow. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation...

6.5AI score

Positive Technologies•added 6 days ago•8 views

PT-2026-45255

5.8AI score0.00013EPSS

CNNVD•added 6 days ago•6 views

goclaw operating system command injection vulnerability

Goclaw is an open-source multi-tenant AI agent platform developed by Next Level Builder. Goclaw versions 3.11.3 and earlier contained a vulnerability related to operating system command injection. This vulnerability originated from the FsBridge.WriteFile function in the internal/sandbox/fsbridge....

7.5CVSS7.4AI score0.01054EPSS

CNNVD•added 6 days ago•6 views

F5-TTS path traversal vulnerability

F5-TTS is a voice synthesis tool based on stream matching, developed by Yushen CHEN. Versions of F5-TTS prior to 1.1.20 contained a path traversal vulnerability. This vulnerability stemmed from path traversal within theGradio processing program, allowing unauthenticated attackers to write arbitra...

8.8CVSS5.9AI score0.00085EPSS

Exploits0References4

OSV•added 6 days ago•5 views

PUB-A-477021934

In mfccoregetdecmetadataseinal of mfccoreregapi.c, there is a possible out of bounds write due to a missing bounds check. This could lead to remote code execution with no additional execution privileges needed. User interaction is not needed for exploitation...

6.4AI score

OSV•added 6 days ago•4 views

ASB-A-484973621

In Load of LoadedArsc.cpp, there is a possible out of bounds write due to a heap buffer overflow. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS6.2AI score0.00005EPSS

OSV•added 6 days ago•3 views

PUB-A-486024286

In lwisiobufferwrite of lwisiobuffer.c, there is a possible out of bounds write due to memory corruption. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation...

5.9AI score

Positive Technologies•added 6 days ago•10 views

PT-2026-45257

5.8AI score0.0001EPSS