CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

17 matches found

EUVD•added 2025/11/10 6:2 p.m.•0 views

EUVD-2025-49872

Malicious code in luckywormz3n npm...

6.6AI score

Exploits0

NVD•added 2025/06/17 3:15 p.m.•3 views

CVE-2025-49872

Missing Authorization vulnerability in Saad Iqbal myCred mycred allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects myCred: from n/a through = 2.9.4.2...

5.3CVSS0.00229EPSS

Exploits0References1

CVE•added 2025/06/17 3:1 p.m.•15 views

CVE-2025-49872

CVE-2025-49872 is a Missing Authorization (Broken Access Control) vulnerability affecting the WordPress plugin myCred (versions up to and including 2.9.4.2). The advisory states that functionality is accessible without proper ACL enforcement, enabling access to restricted features. The CVSS v3.1 ...

5.3CVSS5.9AI score0.00229EPSS

Exploits0References1

Vulnrichment•added 2025/06/17 3:1 p.m.•3 views

CVE-2025-49872 WordPress myCred plugin <= 2.9.4.2 - Broken Access Control Vulnerability

Missing Authorization vulnerability in WPExperts.io myCred allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects myCred: from n/a through 2.9.4.2...

5.3CVSS7.1AI score0.00229EPSS

Exploits0References1

SUSE CVE•added 2025/05/07 2:19 a.m.•1 views

SUSE CVE-2022-49872

In the Linux kernel, the following vulnerability has been resolved: net: gso: fix panic on fraglist with mixed head alloc types Since commit 3dcbdb134f32 "net: gso: Fix skbsegment splat when splitting gsosize mangled skb having linear-headed fraglist", it is allowed to change gsosize of a GRO...

5.5CVSS6.3AI score0.00063EPSS

Exploits0References4

UbuntuCve•added 2025/05/01 3:16 p.m.•5 views

CVE-2022-49872

5.5CVSS6.3AI score0.00063EPSS

Exploits0References10

Cvelist•added 2025/05/01 2:10 p.m.•9 views

CVE-2022-49872 net: gso: fix panic on frag_list with mixed head alloc types

0.00063EPSS

Exploits0References8

OSV•added 2025/05/01 2:10 p.m.•6 views

CVE-2022-49872 net: gso: fix panic on frag_list with mixed head alloc types

5.5CVSS5.8AI score0.00063EPSS

Exploits0References11

Debian CVE•added 2025/05/01 2:10 p.m.•7 views

CVE-2022-49872

5.5CVSS5.5AI score0.00063EPSS

Exploits0

CVE•added 2025/05/01 2:10 p.m.•131 views

CVE-2022-49872

The CVE-2022-49872 issue affects the Linux kernel’s net: gso path. A GRO packet can have its gso_size changed and the existing assumption that checking the first list_skb member is sufficient is violated when skbs on the frag_list have differing head_frag heads. This can trigger a BUG_ON in skb_s...

5.5CVSS6.5AI score0.00063EPSS

Exploits0References8Affected Software1

Tenable Nessus•added 2025/03/06 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2024-49872

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: mm/gup: fix memfdpinfolios alloc race panic If memfdpinfolios tries to create a hugetlb pag...

4.7CVSS5.6AI score0.00077EPSS

Exploits0References2

OSV•added 2024/10/23 5:56 a.m.•1 views

BELL-CVE-2024-49872

Bulletin has no description...

4.7CVSS7.2AI score0.00077EPSS

Exploits0References1

UbuntuCve•added 2024/10/21 6:15 p.m.•7 views

CVE-2024-49872

In the Linux kernel, the following vulnerability has been resolved: mm/gup: fix memfdpinfolios alloc race panic If memfdpinfolios tries to create a hugetlb page, but someone else already did, then folio gets the value -EEXIST here: folio = memfdallocfoliomemfd, startidx; if ISERRfolio ret =...

4.7CVSS5.8AI score0.00077EPSS

Exploits0References7

CVE•added 2024/10/21 6:1 p.m.•88 views

CVE-2024-49872

The CVE-2024-49872 issue affects the Linux kernel in mm/gup where memfd_pin_folios can race when creating a hugetlb folio and another actor has already done so, leading to a -EEXIST and a panicking folio_put call if the same folio is used in the next loop iteration. The patch fixes the race by cl...

4.7CVSS4.5AI score0.00077EPSS

Exploits0References2Affected Software1