Skip to main content
SecMate

Unseen. Until SecMate.

Unknown vulnerabilities in critical software. Found. Reported.

+0
Findings reported
0
Organizations
0%
Responsibly disclosed

Disclosed.

44 published · 100+ reported
LFEnergy - EVerest · everest-core
ISO15118 Energy Transfer Modes Overflow Corrupts EVSE State
CVE-2026-27816
5.5
LFEnergy - EVerest · everest-core
ISO15118 Session Setup Payment Options Overflow Corrupts EVSE State
CVE-2026-27815
5.5
LFEnergy - EVerest · everest-core
ISO15118 Session Setup Use-After-Free Crashes EVSE Process
CVE-2026-27828
5.5
Siemens · SICAM SIAPP SDK
Arbitrary File Deletion via Unvalidated Path
CVE-2026-25605
6.7
Siemens · SICAM SIAPP SDK
Command Injection via Shell Command Construction
CVE-2026-25573
7.4
Siemens · SICAM SIAPP SDK
Server Stack Overflow via Oversized Input
CVE-2026-25572
5.1
Siemens · SICAM SIAPP SDK
Client Stack Overflow via Oversized Input
CVE-2026-25571
5.1
Siemens · SICAM SIAPP SDK
Stack Overflow via Unchecked Input Values
CVE-2026-25570
7.4
Siemens · SICAM SIAPP SDK
Out-of-Bounds Write in SICAM SIAPP SDK
CVE-2026-25569
7.4
Tuya · arduino-TuyaOpen
WiFiMulti Single-Byte Heap Overflow in addAP
CVE-2026-28520
7.1
Tuya · arduino-TuyaOpen
WiFiUDP Null Pointer Dereference via Malicious Packets
CVE-2026-28522
6.5
Tuya · arduino-TuyaOpen
TuyaIoT Out-of-Bounds Read in DP Event Handling
CVE-2026-28521
6.5
Tuya · arduino-TuyaOpen
DnsServer Heap Overflow via QNAME Parsing
CVE-2026-28519
8.1
Zephyr Project · Zephyr
eswifi Socket Send Buffer Overflow via Unbounded Payload
CVE-2026-1679
7.3
SiliconLabs · Gecko SDK
Integer Underflow in PSA Crypto EC-JPAKE ZKP Parsing
CVE-2025-14547
2.3
Zephyr Project · Zephyr
ATAES132A Response Length Allows Stack Buffer Overflow
CVE-2026-0849
3.8
PX4 · PX4-Autopilot
Zenoh uORB Subscriber Allows Arbitrary Stack Allocation
CVE-2026-32708
7.8
PX4 · PX4-Autopilot
BST Device Name Length Can Overflow Driver Buffer
CVE-2026-32705
6.8
SiliconLabs · Gecko SDK
Integer Underflow Leading to Buffer Overread in Secure NCP Host
CVE-2025-14055
2.4
Renesas · MCUBoot
Serial Recovery Stack Buffer Overflow in MCUBoot
SECMATE-2025-0025
Renesas · FSP
CCM MAC Length Stack Buffer Overflow in MbedTLS
SECMATE-2025-0024
Renesas · FSP
CCM Tag Length Stack Buffer Overflow in MbedTLS
SECMATE-2025-0023
Renesas · FSP
GCM Tag Length Stack Buffer Overflow in MbedTLS
SECMATE-2025-0022
Renesas · FSP
RMAC Read Buffer Overflow
SECMATE-2025-0021
Renesas · FSP
AES-XTS Buffer Overflow in MbedTLS Hardware Path
SECMATE-2025-0020
Renesas · FSP
RSA Signature Verification Pointer Underflow
SECMATE-2025-0019
Golioth · Pouch
BLE GATT Heap-Based Buffer Overflow in Certificate Handling
CVE-2026-23750
7.2
Golioth · Firmware SDK
Blockwise Transfer Path Out-of-Bounds Read
CVE-2026-23749
2.1
Golioth · Firmware SDK
LightDB State Out-of-Bounds Read via Integer Underflow
CVE-2026-23748
6.3
Golioth · Firmware SDK
Payload Utils Stack-Based Buffer Overflow
CVE-2026-23747
6.3
Espressif · ESP-IDF
Out-of-Bounds Read in BLE ATT Prepare Write Handling
CVE-2026-25508
6.3
Espressif · ESP-IDF
Use-After-Free in BLE Provisioning Transport
CVE-2026-25507
6.3
Arduino · ArduinoCore-avr
Stack-Based Buffer Overflow in Floating-Point to String Conversion
CVE-2025-69209
6.9
LFEnergy - EVerest · everest-core
Out-of-bounds read in DZG_GSH01 SLIP CRC parser can crash powermeter driver
CVE-2025-68132
2.4
RustFS · RustFS
SourceIp bypass via spoofed X-Forwarded-For/Real-IP headers
CVE-2026-21862
7.7
RustFS · RustFS
RustFS gRPC GetMetrics deserialization panic enables remote DoS
CVE-2025-69255
5.5
NASA · CryptoLib
Out-of-Bounds Read in KMC Encrypt Metadata Parsing via Flawed strtok Pattern
CVE-2026-21900
8.2
NASA · CryptoLib
Out-of-Bounds Read in KMC AEAD Encrypt Metadata Parsing via Flawed strtok Pattern
CVE-2026-22023
8.2
NASA · CryptoLib
Memory Leak in KMC Encrypt Function Leads to Resource Exhaustion
CVE-2026-22024
6.3
NASA · CryptoLib
Memory Leak on HTTP Error Response in KMC Client
CVE-2026-22025
6.3
NASA · CryptoLib
Unbounded Memory Allocation in KMC HTTP Response Handler Allows Resource Exhaustion
CVE-2026-22026
8.2
NASA · CryptoLib
Heap Buffer Overflow in MariaDB SA Hexstring Conversion
CVE-2026-22027
5.7
obgm · libcoap
Out-of-Bounds Read in OSCORE Parsing
CVE-2025-59391
6.5
obgm · libcoap
Static Buffer Overflow in Address Resolution
CVE-2025-34468
8.2

Under responsible disclosure.

Bosch
PX4
SiliconLabs
Tianocore
Intel
EVerest

Vendors listed here have been privately notified of potential security issues under a coordinated disclosure process. No technical details are published, and inclusion does not imply confirmed vulnerabilities, severity, exploitability, or negligence.

What's hidden in yours?

Find out