Latest CVE Feed

  1. Home
  2. Vulnerabilities
  3. Latest
CVE Intelligence

Vulnerabilities published in the last 30 days. Filter by severity, exploit status, or attack vector.

All Critical Actively Exploited Remotely Exploitable
Last Updated Published CVSS Score
Score
Vulnerability
Published
7.8 HIGH
CVE-2026-39457 — Stack overflow via select() file descriptor set overflow

When exchanging data over a socket, libnv uses select(2) to wait for data to arrive. However, it does not verify whether the provided socket descriptor fits in select(2)'s file descriptor set size l…

freebsd | Memory Corruption
Apr 30, 2026 Apr 30, 2026
Apr 30, 2026
Apr 30, 2026
9.1 CRITICAL
CVE-2026-35547 — Heap overflow in libnv

When processing the header of an incoming message, libnv failed to properly validate the message size. The lack of validation allows a malicious program to write outside the bounds of a heap allocat…

freebsd | Remote | Memory Corruption
Apr 30, 2026 Apr 30, 2026
Apr 30, 2026
Apr 30, 2026
7.1 HIGH
CVE-2026-22070 — ColorOS Assistant Path Traversal Vulnerability

ColorOS Assistant has an unauthenticated start-download channel, leading to file path traversal.

| Path Traversal
Apr 30, 2026 Apr 30, 2026
Apr 30, 2026
Apr 30, 2026
7.5 HIGH
CVE-2026-7164 — pf can overflow the stack parsing crafted SCTP packets

Incorrect packet validation allowed unbounded recursion parsing SCTP chunk parameters. This can eventually result in a stack overflow and panic. Remote attackers can craft packets which cause affec…

freebsd | Remote | Denial of Service
Apr 30, 2026 Apr 30, 2026
Apr 30, 2026
Apr 30, 2026
7.3 HIGH
CVE-2026-7270 — Local privilege escalation via execve()

An operator precedence bug in the kernel results in a scenario where a buffer overflow causes attacker-controlled data to overwrite adjacent execve(2) argument buffers. The bug may be exploitable by…

freebsd | Remote | Memory Corruption
Apr 30, 2026 Apr 30, 2026
Apr 30, 2026
Apr 30, 2026
5.5 MEDIUM
CVE-2026-6870 — Access of Uninitialized Pointer in Wireshark

GSM RP protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service

wireshark | Denial of Service
Apr 30, 2026 Apr 30, 2026
Apr 30, 2026
Apr 30, 2026
5.5 MEDIUM
CVE-2026-6869 — Improperly Controlled Sequential Memory Allocation in Wireshark

WebSocket protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service

wireshark | Denial of Service
Apr 30, 2026 Apr 30, 2026
Apr 30, 2026
Apr 30, 2026
5.5 MEDIUM
CVE-2026-6867 — Improperly Controlled Sequential Memory Allocation in Wireshark

SMB2 protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service

wireshark | Denial of Service
Apr 30, 2026 Apr 30, 2026
Apr 30, 2026
Apr 30, 2026
5.5 MEDIUM
CVE-2026-6538 — Stack-based Buffer Overflow in Wireshark

BEEP protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service

wireshark | Denial of Service
Apr 30, 2026 Apr 30, 2026
Apr 30, 2026
Apr 30, 2026
5.5 MEDIUM
CVE-2026-6537 — Stack-based Buffer Overflow in Wireshark

ZigBee protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service

wireshark | Denial of Service
Apr 30, 2026 Apr 30, 2026
Apr 30, 2026
Apr 30, 2026
5.5 MEDIUM
CVE-2026-6536 — Loop with Unreachable Exit Condition ('Infinite Loop') in Wireshark

DLMS/COSEM protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4

wireshark | Denial of Service
Apr 30, 2026 Apr 30, 2026
Apr 30, 2026
Apr 30, 2026
5.5 MEDIUM
CVE-2026-6535 — Improperly Controlled Sequential Memory Allocation in Wireshark

Dissection engine zlib decompression crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service

wireshark | Denial of Service
Apr 30, 2026 Apr 30, 2026
Apr 30, 2026
Apr 30, 2026
5.5 MEDIUM
CVE-2026-6534 — Loop with Unreachable Exit Condition ('Infinite Loop') in Wireshark

USB HID protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service

wireshark | Denial of Service
Apr 30, 2026 Apr 30, 2026
Apr 30, 2026
Apr 30, 2026
5.5 MEDIUM
CVE-2026-6533 — Improperly Controlled Sequential Memory Allocation in Wireshark

Dissection engine LZ77 decompression crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service

wireshark | Denial of Service
Apr 30, 2026 Apr 30, 2026
Apr 30, 2026
Apr 30, 2026
5.5 MEDIUM
CVE-2026-6532 — Buffer Over-read in Wireshark

Kismet protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service

wireshark | Denial of Service
Apr 30, 2026 Apr 30, 2026
Apr 30, 2026
Apr 30, 2026
5.5 MEDIUM
CVE-2026-6531 — Loop with Unreachable Exit Condition ('Infinite Loop') in Wireshark

SANE protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service

wireshark | Denial of Service
Apr 30, 2026 Apr 30, 2026
Apr 30, 2026
Apr 30, 2026
5.5 MEDIUM
CVE-2026-6530 — Heap-based Buffer Overflow in Wireshark

DCP-ETSI protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service

wireshark | Denial of Service
Apr 30, 2026 Apr 30, 2026
Apr 30, 2026
Apr 30, 2026
5.5 MEDIUM
CVE-2026-6529 — Heap-based Buffer Overflow in Wireshark

iLBC audio codec crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service

wireshark | Denial of Service
Apr 30, 2026 Apr 30, 2026
Apr 30, 2026
Apr 30, 2026
5.5 MEDIUM
CVE-2026-6528 — Loop with Unreachable Exit Condition ('Infinite Loop') in Wireshark

TLS protocol dissector infinite loop in Wireshark 4.6.0 to 4.6.4 allows denial of service

wireshark | Denial of Service
Apr 30, 2026 Apr 30, 2026
Apr 30, 2026
Apr 30, 2026
5.5 MEDIUM
CVE-2026-6527 — Uncontrolled Recursion in Wireshark

ASN.1 PER protocol dissector crash in Wireshark 4.6.0 to 4.6.4 and 4.4.0 to 4.4.14 allows denial of service

wireshark | Denial of Service
Apr 30, 2026 Apr 30, 2026
Apr 30, 2026
Apr 30, 2026
Showing 20 of 5910 Results