c-c
c-c
- CVE-2026-54919 - cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library
- CVE-2026-11404 - Cesanta Mongoose before 7.22 contains an out-of-bounds read in the built-in TLS server function mg_tls_server_
- CVE-2026-31985 - When the upstream Guardian or CMC was configured in the Remote Collector via n2os-tui, the generated configura
- CVE-2026-47828 - During bosh create-env and bosh delete-env, the CLI uploads compiled CPI packages and rendered job templates t
- CVE-2026-47840 - A network attacker positioned between UAA and its LDAP directory can impersonate the directory using any certi
- CVE-2026-59692 - A stack buffer overflow vulnerability was found in GStreamer's DTLS plugin
- CVE-2026-13698 - A memory leak in OpenVPN version 2.5.0 through 2.5.11, 2.6.0 through 2.6.20 and 2.7_alpha1 through 2.7.4 allow
- CVE-2026-55952 - The Erlang/OTP ssl application does not validate that the PSK identity list and binder list carried in a TLS 1
- CVE-2026-7830 - UltraVNC through 1.8.2.2 uses inadequate cryptography in the MS-Logon II authentication scheme (rfbUltraVNC_Ms
- CVE-2026-8023 - Zephyr's HTTP server (subsys/net/lib/http) provides a static-filesystem resource type (HTTP_RESOURCE_TYPE_STAT
- CVE-2026-10097 - wolfSSL's AVX2-optimized ML-KEM implementation (mlkem_cmp_avx2) compares only 1536 of the 1568 ciphertext byte
- CVE-2026-10512 - The X25519 x86_64 assembly implementation fails to clear the most significant bit during the final modular red
- CVE-2026-11310 - X.509 trust-chain bypass in the OpenSSL compatibility certificate verifier (wolfSSL_X509_verify_cert())
- CVE-2026-11999 - X.509 trust-chain bypass (path-depth exhaustion) in the OpenSSL compatibility certificate verifier (wolfSSL_X5
- CVE-2026-12245 - NSD from version 4.13.0 has a heap use-after-free bug in logging errors on TLS connections, causing a crash of
- CVE-2026-12340 - Out-of-bounds heap read during SM2/SM3 certificate signature verification
- CVE-2026-12490 - When a provide-xfr is given with a tls-auth-name, a secondary requesting a transfer should provide a client ce
- CVE-2026-53192 - In the Linux kernel, the following vulnerability has been resolved: ALSA: timer: Fix UAF at snd_timer_user_par
- CVE-2026-53262 - In the Linux kernel, the following vulnerability has been resolved: l2tp: pppol2tp: hold reference to session
- CVE-2026-53268 - In the Linux kernel, the following vulnerability has been resolved: netfilter: conntrack_irc: fix possible out
- CVE-2026-55958 - Out-of-bounds write in the Renesas TSIP TLS 1.3 transcript buffer
- CVE-2026-55961 - wolfSSL_PKCS7_verify() returning success for a degenerate (certs-only) PKCS#7 object that contains no signer
- CVE-2026-6331 - HMAC zero-length tag forgery in EVP_DigestVerifyFinal, where a zero-length tag could be accepted as valid duri
- CVE-2026-7531 - Use-after-free in PQC hybrid key-share handling
- CVE-2026-7532 - iPAddress name constraints bypass when WOLFSSL_IP_ALT_NAME is not defined
- CVE-2026-8720 - wc_Blake2bHmacFinal and wc_Blake2sHmacFinal discard the message when the key length exceeds the block size, pr
- CVE-2026-48491 - Traefik is an HTTP reverse proxy and load balancer
- CVE-2026-52844 - Caddy is an extensible server platform that uses TLS by default
- CVE-2026-53622 - Traefik is an HTTP reverse proxy and load balancer
- CVE-2026-9697 - Impact: undici's ProxyAgent silently drops the requestTls option when configured with a SOCKS5 proxy URI (sock
- CVE-2026-45416 - Netty is a network application framework for development of protocol servers and clients
- CVE-2026-45447 - Issue summary: A specially crafted PKCS#7 or S/MIME signed message could trigger a use-after-free during PKCS#
- CVE-2026-46294 - In the Linux kernel, the following vulnerability has been resolved: dm: fix a buffer overflow in ioctl process
- CVE-2026-44393 - An issue was discovered in OpenStack oslo.messaging 1.0.0 through 17.3.0
- CVE-2026-46250 - In the Linux kernel, the following vulnerability has been resolved: MIPS: Work around LLVM bug when gp is used
- CVE-2026-46579 - A flaw was found in the OpenShift Router
- CVE-2026-42790 - Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_cert and public_key modules) al
- CVE-2026-42012 - A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially craft
- CVE-2026-42013 - A flaw was found in gnutls. When validating certificates, an oversized Subject Alternative Name (SAN) could ca
- CVE-2026-5260 - A flaw was found in libgnutls. A remote attacker, by sending an extremely short premaster secret during an RSA
- CVE-2026-42009 - A flaw was found in gnutls. A remote attacker could exploit an issue in the Datagram Transport Layer Security
- CVE-2026-42246 - Net::IMAP implements Internet Message Access Protocol (IMAP) client functionality in Ruby
- CVE-2026-42010 - A flaw was found in gnutls. Servers configured with RSA-PSK (Rivest–Shamir–Adleman – Pre-Shared Key) wrongfull
- CVE-2026-42011 - A flaw was found in gnutls. This vulnerability occurs because permitted name constraints were incorrectly igno
- CVE-2026-33846 - A heap buffer overflow vulnerability exists in the DTLS handshake fragment reassembly logic of GnuTLS
- CVE-2026-33845 - A flaw in GnuTLS DTLS handshake parsing allows malformed fragments with zero length and non-zero offset, leadi
- CVE-2026-5402 - TLS protocol dissector heap overflow in Wireshark 4.6.0 to 4.6.4 allows denial of service and possible code ex
- CVE-2026-33453 - Improperly Controlled Modification of Dynamically-Determined Object Attributes vulnerability in Apache Camel C
- CVE-2026-31533 - In the Linux kernel, the following vulnerability has been resolved: net/tls: fix use-after-free in -EBUSY erro
- CVE-2026-39304 - Denial of Service via Out of Memory vulnerability in Apache ActiveMQ Client, Apache ActiveMQ Broker, Apache Ac
- CVE-2026-1584 - A flaw was found in gnutls. A remote, unauthenticated attacker can exploit this vulnerability by sending a spe
- CVE-2026-32280 - During chain building, the amount of work that is done is not correctly limited when a large number of interme
- CVE-2026-32283 - If one side of the TLS connection sends multiple key update messages post-handshake in a single record, the co
- CVE-2026-32144 - Improper Certificate Validation vulnerability in Erlang OTP public_key (pubkey_ocsp module) allows OCSP design
- CVE-2026-34582 - Botan is a C++ cryptography library. Prior to version 3.11.1, the TLS 1.3 implementation allowed ApplicationDa
- CVE-2026-26999 - Traefik is an HTTP reverse proxy and load balancer
- CVE-2026-27134 - Strimzi provides a way to run an Apache Kafka cluster on Kubernetes or OpenShift in various deployment configu
- CVE-2026-25949 - Traefik is an HTTP reverse proxy and load balancer
- CVE-2026-1709 - A flaw was found in Keylime. The Keylime registrar, since version 7.12.0, does not enforce client-side Transpo
- CVE-2025-15467 - Issue summary: Parsing CMS AuthEnvelopedData or EnvelopedData message with maliciously crafted AEAD parameters
- CVE-2026-22771 - Envoy Gateway is an open source project for managing Envoy Proxy as a standalone or Kubernetes-based applicati
- CVE-2025-5987 - A flaw was found in libssh when using the ChaCha20 cipher with the OpenSSL library
- CVE-2025-6032 - A flaw was found in Podman. The podman machine init command fails to verify the TLS certificate when downloadi