CVE search

363,367 results
CVE-2026-7839CRITICALUltraVNC repeater ships hardcoded default admin password allowing unauthenticated admin accessEPSS 0.3%CVE-2026-7838HIGHUltraVNC viewer heap buffer overflow via integer overflow in RFB connection-failure reason lengthEPSS 1.2%CVE-2026-7831HIGHUltraVNC viewer off-by-one stack overflow in ServerInit desktop name parsingEPSS 0.4%CVE-2026-7830HIGHUltraVNC MS-Logon II uses 64-bit Diffie-Hellman and seeded libc rand() enabling credential interceptionEPSS 0.2%CVE-2026-7829HIGHUltraVNC repeater authenticated out-of-bounds write in rule parser via oversized tokenEPSS 0.5%CVE-2026-7828MEDIUMUltraVNC repeater integer overflow in win_log malloc leading to heap overflowEPSS 0.8%CVE-2026-44040MEDIUMUltraVNC vncauth.c uses time-seeded libc rand() to generate VNC authentication challenge bytesEPSS 0.2%CVE-2026-44041MEDIUMUltraVNC vncWc2Mb calls wcslen() before validating that the wide string is NUL-terminatedEPSS 0.3%CVE-2026-44042LOWUltraVNC repeater wi_uudecode off-by-one in base64 decode boundary checkEPSS 0.3%CVE-2026-20463MEDIUMIn Modem, there is a possible escalation of privilege due to a permissions bypass. This could lead to local escalation of privilege if a malEPSS 0.1%CVE-2026-20462MEDIUMIn Telephony, there is a possible memory corruption due to a heap buffer overflow. This could lead to local escalation of privilege if a malEPSS 0.1%CVE-2026-20461MEDIUMIn Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote denial of service, if a UE has coEPSS 0.2%CVE-2026-20460MEDIUMIn Modem, there is a possible information disclosure due to improper input validation. This could lead to remote information disclosure, if EPSS 0.2%CVE-2026-20459MEDIUMIn Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connecEPSS 0.2%CVE-2026-20458HIGHIn Modem, there is a possible memory corruption due to a missing bounds check. This could lead to remote escalation of privilege, if a UE haEPSS 0.2%CVE-2026-20457MEDIUMIn Modem, there is a possible system crash due to improper input validation. This could lead to remote denial of service, if a UE has connecEPSS 0.2%CVE-2026-14191HIGHWinRAR / UnRAR RAR5 recovery-volume (.rev) out-of-bounds heap write in RecVolumes5::ReadHeaderEPSS 0.3%CVE-2026-57963MEDIUMChat UI manipulation by injectionEPSS 0.2%CVE-2026-57962MEDIUMDenial-of-service via malicious LDAP address-book serverEPSS 0.2%CVE-2026-53488CRITICALcontainerd CRI plugin: — image-config `LABEL` flows to restart-monitor `binary://` logger: host-root command execution from an image pullEPSS 0.2%