CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4482 matches found

OSV•added 2025/11/12 11:15 a.m.•1 views

AZL-69998 CVE-2025-40139 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: smc: Use skdstget and dstdevrcu in in smcclcprfxset. smcclcprfxset is called during connect and not under RCU nor RTNL. Using skdstgetsk-dev could trigger UAF. Let's use skdstget and devdstrcu under rcureadlock after...

5.6AI score0.00162EPSS

Exploits0References1

OSV•added 2025/11/12 11:15 a.m.•5 views

UBUNTU-CVE-2025-40149

In the Linux kernel, the following vulnerability has been resolved: tls: Use skdstget and dstdevrcu in getnetdevforsock. getnetdevforsock is called during setsockopt, so not under RCU. Using skdstgetsk-dev could trigger UAF. Let's use skdstget and dstdevrcu. Note that the only -ndoskgetlowerdev...

7.8CVSS6.5AI score0.00139EPSS

Exploits0References31

Debian CVE•added 2025/11/12 10:46 a.m.•6 views

CVE-2025-40170

In the Linux kernel, the following vulnerability has been resolved: net: use dstdevrcu in sksetupcaps Use RCU to protect accesses to dst-dev from sksetupcaps and skdstgsomaxsize. Also use dstdevrcu in ip6dstmtumaybeforward, and ipdstmtumaybeforward. ip4dsthoplimit can use dstdevnetrcu...

5.3AI score0.00167EPSS

Exploits0

OSV•added 2025/11/12 10:46 a.m.•5 views

CVE-2025-40168 smc: Use __sk_dst_get() and dst_dev_rcu() in smc_clc_prfx_match().

In the Linux kernel, the following vulnerability has been resolved: smc: Use skdstget and dstdevrcu in smcclcprfxmatch. smcclcprfxmatch is called from smclistenwork and not under RCU nor RTNL. Using skdstgetsk-dev could trigger UAF. Let's use skdstget and dstdevrcu. Note that the returned value o...

6.1AI score0.0015EPSS

Exploits0References5

Debian CVE•added 2025/11/12 10:23 a.m.•5 views

CVE-2025-40156

In the Linux kernel, the following vulnerability has been resolved: PM / devfreq: mtk-cci: Fix potential error pointer dereference in probe The drv-sramreg pointer could be set to ERRPTR-EPROBEDEFER which would lead to a error pointer dereference. Use ISERRORNULL to check that the pointer is vali...

5.1AI score0.00162EPSS

Exploits0

OSV•added 2025/11/12 10:23 a.m.•7 views

CVE-2025-40135 ipv6: use RCU in ip6_xmit()

In the Linux kernel, the following vulnerability has been resolved: ipv6: use RCU in ip6xmit Use RCU in ip6xmit in order to use dstdevrcu to prevent possible UAF...

6.1AI score0.00174EPSS

Exploits0References8

CVE•added 2025/11/12 10:23 a.m.•23 views

CVE-2025-40135

CVE-2025-40135 : In the Linux kernel, the IPv6 transmit path (ip6_xmit) was fixed to use RCU, switching to dst_dev_rcu() to prevent a potential use-after-free. The vulnerability is addressed by the kernel patch referenced in multiple vendor advisories (e.g., Rocky Linux/RHSA/ELSA/NASL entries) wh...

5.8AI score0.00174EPSS

Exploits0References5

CNNVD•added 2025/11/12 12:0 a.m.•5 views

Linux kernel 安全漏洞

Linux kernel is a product of the United States, etc. are products of the United States Linux Foundation. Linux kernel is the kernel used by the open source operating system Linux. nate long p4, etc. are products of the Nate Long Individual Developers. p4 is a small library of utilities for workin...

6.1AI score0.00167EPSS

Exploits0References3

CNNVD•added 2025/11/12 12:0 a.m.•1 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from ip6output not using RCU to protect dstdevrcu access, which could lead to reuse after release...

6.1AI score0.00188EPSS

Exploits0References3

Tenable Nessus•added 2025/11/12 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2025-40170

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: use dstdevrcu in sksetupcaps Use RCU to protect accesses to dst-dev from sksetupcaps and skdstgsomaxsize. Also use dstdevrcu in ip6dstmtumaybeforward, and...

6.1AI score0.00167EPSS

Exploits0References4

RedHat Linux•added 2025/11/11 3:7 p.m.•3 views

runc: container escape via 'masked path' abuse due to mount race conditions

A flaw was found in runc. This flaw exploits an issue with how masked paths are implementedin runc. When masking files, runc will bind-mount the container's /dev/null inode on top of the file. However, if an attacker can replace /dev/null with a symlink to some other procfs file, runc will instea...

7.8CVSS5.8AI score0.00673EPSS

Exploits2References5

RedHat Linux•added 2025/11/11 9:13 a.m.•2 views

kernel: net: let net.core.dev_weight always be non-zero

In the Linux kernel, the following vulnerability has been resolved: net: let net.core.devweight always be non-zero The following problem was encountered during stability test: NULL netdevice: NAPI poll function processbacklog+0x0/0x530 \ returned 1, exceeding its budget of 0. ------------ cut her...

5.5CVSS6.7AI score0.00187EPSS

Exploits0References5

RedHat Linux•added 2025/11/11 8:21 a.m.•5 views

kernel: wifi: cfg80211: init wiphy_work before allocating rfkill fails

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: init wiphywork before allocating rfkill fails syzbort reported a uninitialize wiphyworklock in cfg80211devfree. 1 After rfkill allocation fails, the wiphy release process will be performed, which will cause...

5.5CVSS6.8AI score0.00157EPSS

Exploits0References5

RedHat Linux•added 2025/11/11 8:21 a.m.•9 views

kernel: openvswitch: use RCU protection in ovs_vport_cmd_fill_info()

In the Linux kernel, the following vulnerability has been resolved: openvswitch: use RCU protection in ovsvportcmdfillinfo ovsvportcmdfillinfo can be called without RTNL or RCU. Use RCU protection and devnetrcu to avoid potential UAF...

7.8CVSS5.7AI score0.00228EPSS

Exploits0References5