pcre
Security Risk Profile
66
/100
highSecurity Risk Score
Comprehensive risk assessment based on 72 vulnerabilities, EPSS scores, exploitation status, and remediation availability.
📅 Data spans from August 22, 2005 to present
72
Total CVEs
47
Critical+High
0
Exploited
17
Unpatched
Threat Assessment
Avg CVSS
7.1
Base severity
Avg EPSS
0%
Exploit probability
Unpatched
17
Critical/High
Risk Level
66/100
high
Severity Distribution
Critical
15High
32Medium
19Low
3Exploit Likelihood
>50% chance
020-50%
05-20%
0<5%
0Age Distribution
Common Weaknesses (CWE)
1
Buffer Overflow
38
2
Integer Overflow
14
3
Input Validation
3
4
Infoleak
2
5
Double Free
1
Most Affected Products
1. PCRE PCRE49
2. PHP PHP43
3. pcre pcre28
4. redhat/pcre23
5. Fedoraproject Fedora20
Recent Vulnerabilities
See more →CVE-2025-58050
CVSS 9.1critical
PCRE2: heap-buffer-overflow read in match_ref due to missing boundary restoration in SCS
8/27/2025
CVE-2022-41409
CVSS 7.5high
Update pcre2 to 10.42
7/18/2023
CVE-2022-1587
CVSS 9.1critical
4/22/2022
CVE-2022-1586
CVSS 9.1critical
4/22/2022
CVE-2019-20838
CVSS 7.5high
6/15/2020
CVE-2020-14155
CVSS 7.3high
6/15/2020
CVE-2015-2326
CVSS 5.5medium
1/14/2020🔧 No Patch
CVE-2015-2325
CVSS 7.8high
1/14/2020🔧 No Patch
CVE-2019-20454
CVSS 7.5high
7/28/2019
CVE-2017-16231
CVSS 5.5medium
3/17/2019🔧 No Patch
Monitor pcre in Real-Time
Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.