Skip to main content

Unseen. Until SecMate.

Unknown vulnerabilities in critical software. Found. Reported.

+0
Findings reported
0
Organizations
0%
Responsibly disclosed

Disclosed.

obgm · libcoapStatic Buffer Overflow in Address Resolution
SECMATE-2025-0001·CVE-2025-34468
8.2
obgm · libcoapOut-of-Bounds Read in OSCORE Parsing
SECMATE-2025-0002·CVE-2025-59391
6.5
NASA · CryptoLibHeap Buffer Overflow in MariaDB SA Hexstring Conversion
SECMATE-2025-0003·CVE-2026-22027
5.7
NASA · CryptoLibUnbounded Memory Allocation in KMC HTTP Response Handler Allows Resource Exhaustion
SECMATE-2025-0004·CVE-2026-22026
8.2
NASA · CryptoLibMemory Leak on HTTP Error Response in KMC Client
SECMATE-2025-0005·CVE-2026-22025
6.3
NASA · CryptoLibMemory Leak in KMC Encrypt Function Leads to Resource Exhaustion
SECMATE-2025-0006·CVE-2026-22024
6.3
NASA · CryptoLibOut-of-Bounds Read in KMC AEAD Encrypt Metadata Parsing via Flawed strtok Pattern
SECMATE-2025-0007·CVE-2026-22023
8.2
NASA · CryptoLibOut-of-Bounds Read in KMC Encrypt Metadata Parsing via Flawed strtok Pattern
SECMATE-2025-0008·CVE-2026-21900
8.2
RustFS · RustFSRustFS gRPC GetMetrics deserialization panic enables remote DoS
SECMATE-2025-0009·CVE-2025-69255
5.5
RustFS · RustFSSourceIp bypass via spoofed X-Forwarded-For/Real-IP headers
SECMATE-2025-0010·CVE-2026-21862
7.7
LFEnergy - EVerest · everest-coreOut-of-bounds read in DZG_GSH01 SLIP CRC parser can crash powermeter driver
SECMATE-2025-0011·CVE-2025-68132
2.4
Arduino · ArduinoCore-avrStack-Based Buffer Overflow in Floating-Point to String Conversion
SECMATE-2025-0012·CVE-2025-69209
6.9
Espressif · ESP-IDFUse-After-Free in BLE Provisioning Transport
SECMATE-2025-0013·CVE-2026-25507
6.3
Espressif · ESP-IDFOut-of-Bounds Read in BLE ATT Prepare Write Handling
SECMATE-2025-0014·CVE-2026-25508
6.3
Golioth · Firmware SDKPayload Utils Stack-Based Buffer Overflow
SECMATE-2025-0015·CVE-2026-23747
6.3
Golioth · Firmware SDKLightDB State Out-of-Bounds Read via Integer Underflow
SECMATE-2025-0016·CVE-2026-23748
6.3
Golioth · Firmware SDKBlockwise Transfer Path Out-of-Bounds Read
SECMATE-2025-0017·CVE-2026-23749
2.1
Golioth · PouchBLE GATT Heap-Based Buffer Overflow in Certificate Handling
SECMATE-2025-0018·CVE-2026-23750
7.2
Renesas · FSPRSA Signature Verification Pointer Underflow
SECMATE-2025-0019
Renesas · FSPAES-XTS Buffer Overflow in MbedTLS Hardware Path
SECMATE-2025-0020
Renesas · FSPRMAC Read Buffer Overflow
SECMATE-2025-0021
Renesas · FSPGCM Tag Length Stack Buffer Overflow in MbedTLS
SECMATE-2025-0022
Renesas · FSPCCM Tag Length Stack Buffer Overflow in MbedTLS
SECMATE-2025-0023
Renesas · FSPCCM MAC Length Stack Buffer Overflow in MbedTLS
SECMATE-2025-0024
Renesas · MCUBootSerial Recovery Stack Buffer Overflow in MCUBoot
SECMATE-2025-0025

Under responsible disclosure.

Renesas
NASA
Espressif
Bosch
PX4
SiliconLabs
Golioth
Tianocore
Intel
Zephyr Project
Rustfs
libcoap
EVerest
TypeORM
Arduino

Vendors listed here have been privately notified of potential security issues under a coordinated disclosure process. No technical details are published, and inclusion does not imply confirmed vulnerabilities, severity, exploitability, or negligence.

What's hidden in yours?

Find out