CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been resolved. The issue is related to the initialization of jump labels on 64-bit systems. Specifically, calling jump label init in setup featu...

7.8CVSS5.6AI score0.02746EPSS

Exploits16References587

CVE•added 2025/03/27 4:37 p.m.•117 views

CVE-2023-52933

CVE-2023-52933 affects the Linux kernel Squashfs xattr_ids handling. Two overflow flaws were exposed by a corrupted filesystem: on 64‑bit systems, sign extension of xattr_ids when multiplied by sizeof(struct squashfs_xattr_id) can overflow and yield an incorrect len; on 32‑bit systems, the unsign...

5.5CVSS7AI score0.00009EPSS

Exploits0References7Affected Software1

Github Security Blog•added 2024/05/02 9:30 p.m.•37 views

libxmljs2 type confusion vulnerability when parsing specially crafted XML

libxmljs2 is vulnerable to type confusion when parsing a specially crafted XML while invoking a function on the result of attrs that was called on a parsed node. This vulnerability might lead to denial of service on both 32-bit systems and 64-bit systems, data leak, infinite loop and remote code...

8.1CVSS8AI score0.02979EPSS

Exploits0References4Affected Software1

Github Security Blog•added 2024/05/02 9:30 p.m.•27 views

libxmljs vulnerable to type confusion when parsing specially crafted XML

libxmljs is vulnerable to a type confusion vulnerability when parsing a specially crafted XML while invoking a function on the result of attrs that was called on a parsed node. This vulnerability might lead to denial of service on both 32-bit systems and 64-bit systems, data leak, infinite loop a...

9.8CVSS8AI score0.04115EPSS

Exploits1References4Affected Software1

CVE•added 2024/05/02 6:56 p.m.•57 views

CVE-2024-34393

Libxmljs2 contains a type confusion vulnerability related to parsing specially crafted XML and then calling attrs() on the result of a parsed node. Affected component is the libxmljs2 XML parsing path; the underlying issue is a type confusion when attrs() is invoked on the grandchild node or resu...

8.1CVSS8.2AI score0.02979EPSS

Exploits0References2

Kaspersky•added 2023/04/11 12:0 a.m.•130 views

KLA48842 Multiple vulnerabilities in Microsoft Products (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to gain privileges, execute arbitrary code, cause denial of service, obtain sensitive information, spoof user interface, bypass security restrictions. Below is a...

9.8CVSS9.9AI score0.91896EPSS

Exploits22References85

F5 Networks•added 2023/02/21 6:44 p.m.•54 views

K17244: Linux kernel vulnerability CVE-2015-1593

Security Advisory Description The stack randomization feature in the Linux kernel before 3.19.1 on 64-bit platforms uses incorrect data types for the results of bitwise left-shift operations, which makes it easier for attackers to bypass the ASLR protection mechanism by predicting the address of...

5CVSS6.2AI score0.01966EPSS

Exploits1Affected Software20

SUSE CVE•added 2023/02/15 5:24 a.m.•3 views

SUSE CVE-2014-9495

Heap-based buffer overflow in the pngcombinerow function in libpng before 1.5.21 and 1.6.x before 1.6.16, when running on 64-bit systems, might allow context-dependent attackers to execute arbitrary code via a "very wide interlaced" PNG image...

10CVSS8.3AI score0.03487EPSS

Exploits0References8

Tenable Nessus•added 2022/04/18 12:0 a.m.•47 views

Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS : klibc vulnerabilities (USN-5379-1)

The remote Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5379-1 advisory. It was discovered that klibc did not properly perform some mathematical operations, leading to an integer overflow. An attacker...

9.8CVSS8.6AI score0.0189EPSS

Exploits0References5

Positive Technologies•added 2022/04/07 12:0 a.m.•2 views

PT-2025-7995 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been identified, specifically related to the virt addr valid function on 64-bit Book3E and 32-bit systems. The issue arises because pa returns 0...

4.6CVSS5.2AI score0.00016EPSS

Exploits0References19

CNVD•added 2021/06/11 12:0 a.m.•22 views

klibc input validation error vulnerability (CNVD-2021-54001)

klibc is an application program. Provides the ability to work with as many early starts from kernel space as possible. klibc versions prior to 2.0.9 are vulnerable to an input validation error that stems from an integer overflow in the cpio command that could lead to dereferencing NULL pointers o...

7.5CVSS4.4AI score0.0189EPSS

Exploits0References1