Where
-Infinity
0

Trending

Last week
Last month
Last year

redhat Enterprise LinuxLibsoup: libsoup: information disclosure via cleartext transmission of cookies during https tunnel establishment

Risk 38
Severity
8.2
EPSS
0.01%
First published (updated )
CVE-2026-5119

Gnome libsoupCleartext Transmission of Sensitive Information has been reported in libsoup’s HTTP CONNECT handling…

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2452932

redhat Enterprise LinuxLibsoup: libsoup: denial of service via use-after-free in http/2 server

Risk 31
Severity
7.5
EPSS
1.17%
First published (updated )
CVE-2026-4271

redhat Enterprise LinuxLibsoup: libsoup: http header injection and response splitting via crlf injection in content-type header

Risk 28
Severity
6.5
EPSS
0.03%
First published (updated )
CVE-2026-3634

redhat Enterprise LinuxLibsoup: libsoup: header and http request injection via crlf injection

Risk 28
Severity
6.5
EPSS
0.03%
First published (updated )
CVE-2026-3633
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

redhat Enterprise LinuxLibsoup: libsoup: http smuggling and server-side request forgery via malformed hostnames

Risk 24
Severity
5.5
EPSS
0.10%
First published (updated )
CVE-2026-3632

redhat Enterprise LinuxLibsoup: libsoup: denial of service via use-after-free in soupserver during tls handshake

Risk 54
Severity
8.2
First published (updated )
CVE-2026-2436

Gnome libsoupUse After Free

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2442909

redhat Enterprise LinuxLibsoup: libsoup: authentication bypass via digest authentication replay attack

Risk 36
Severity
7.3
EPSS
0.11%
First published (updated )
CVE-2026-3099

redhat Enterprise LinuxLibsoup: libsoup: http request smuggling via duplicate content-length headers

Risk 27
Severity
5.3
First published (updated )
CVE-2026-2708
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

redhat Enterprise LinuxLibsoup: out-of-bounds read in libsoup handle_partial_get() leading to heap information disclosure

Risk 19
Severity
5.3
EPSS
0.04%
First published (updated )
CVE-2026-2443

Gnome libsoupLibsoup: libsoup: buffer overread due to integer underflow when handling zero-length resources

Risk 40
Severity
6.5
First published (updated )
CVE-2026-2369

Gnome libsoupInteger underflow in CVE-2025-32052 fix when resource_length=0 The fix for CVE-2025-32052 (commit a…

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2439091

redhat Enterprise LinuxLibsoup: libsoup: http request smuggling via malformed chunk headers

Risk 40
Severity
6.5
First published (updated )
CVE-2026-1801

redhat Enterprise LinuxLibsoup: libsoup: credential leakage via http redirects

Risk 30
Severity
5.8
First published (updated )
CVE-2026-1539
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

redhat Enterprise LinuxLibsoup: libsoup: http header injection or response splitting via crlf injection in content-disposition header

Risk 30
Severity
5.8
First published (updated )
CVE-2026-1536

redhat Enterprise LinuxLibsoup: libsoup: http header injection via specially crafted urls when an http proxy is configured

Risk 30
Severity
5.8
First published (updated )
CVE-2026-1467

Gnome libsoupLibsoup: heap use-after-free in libsoup message queue handling during http/2 read completion

Risk 43
Severity
7.5
First published (updated )
CVE-2025-12105

Gnome libsoupUse After Free

Risk 19
Severity
4
First published (updated )
REDHAT-BUG-2405992

Gnome libsoupLibsoup: out-of-bounds read in cookie date handling of libsoup http library

Risk 43
Severity
7.5
First published (updated )
CVE-2025-11021
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Gnome libsoupOut-of-Bounds Read vulnerability in the cookie date handling code of the libsoup HTTP library. The f…

Risk 33
Severity
7
First published (updated )
REDHAT-BUG-2399627

Gnome libsoupLibsoup: improper handling of http vary header in libsoup caching

Risk 26
Severity
5.9
EPSS
0.08%
First published (updated )
CVE-2025-9901

Gnome libsoupLibsoup: integer underflow in soup_multipart_new_from_message() leading to denial of service in libsoup

Risk 31
Severity
7.5
EPSS
0.07%
First published (updated )
CVE-2025-4948

Gnome libsoupInteger Overflow

Risk 5
Severity
1
First published (updated )
REDHAT-BUG-2367175

Gnome libsoupLibsoup: memory leak on soup_header_parse_quality_list() via soup-headers.c

Risk 27
Severity
6.5
EPSS
0.09%
First published (updated )
CVE-2025-46420
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Gnome libsoupLibsoup: information disclosure may leads libsoup client sends authorization header to a different host when being redirected by a server

Risk 38
Severity
6.8
EPSS
0.05%
First published (updated )
CVE-2025-46421

Gnome libsoupLibsoup: oob read on libsoup through function "soup_multipart_new_from_message" in soup-multipart.c leads to crash or exit of process

Risk 43
Severity
7.4
EPSS
0.06%
First published (updated )
CVE-2025-32914

Gnome libsoupLibsoup: null pointer dereference in soup_message_headers_get_content_disposition when "filename" parameter is present, but has no value in content-disposition header

Risk 32
Severity
7.5
EPSS
0.05%
First published (updated )
CVE-2025-32913

Gnome libsoupLibsoup: null pointer deference on libsoup via /auth/soup-auth-digest.c through "soup_auth_digest_authenticate" on client when server omits the "realm" parameter in an unauthorized response with digest authentication

Risk 28
Severity
6.5
EPSS
0.04%
First published (updated )
CVE-2025-32910

Gnome libsoupLibsoup: null pointer dereference on libsoup through function "sniff_mp4" in soup-content-sniffer.c

Risk 20
Severity
5.3
EPSS
0.05%
First published (updated )
CVE-2025-32909
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203