CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2025/08/09 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2014-5022

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site scripting XSS vulnerability in the Ajax system in Drupal 7.x before 7.29 allows remote attackers to inject arbitrary web script or HTML via vectors...

4.3CVSS6.2AI score0.00261EPSS

Tenable Nessus•added 2025/08/09 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2023-53111

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - loop: Fix use-after-free issues doreqfilebacked calls blkmqcompleterequest synchronously or asynchronously when using asynchronous I/O unless memory allocation...

7.8CVSS6.5AI score0.00067EPSS

Tenable Nessus•added 2025/08/08 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2021-46935

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: binder: fix asyncfreespace accounting for empty parcels In 4.13, commit 74310e06be4d android...

5.5CVSS5.9AI score0.00017EPSS

Tenable Nessus•added 2025/08/08 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2024-36894

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - usb: gadget: ffs: Fix race between aiocancel and AIO request complete FFS based applications can utilize the aiocancel callback to dequeue pending USB requests...

5.6CVSS6.7AI score0.00013EPSS

OSV•added 2025/08/07 7:44 a.m.•4 views

CLSA-2025-1754552669 kernel: Fix of 12 CVEs

net: ch9200: fix uninitialised access during miinwayrestart CVE-2025-38086 - idpf: fix null-ptr-deref in idpffeaturescheck CVE-2025-38053 - ftrace: Fix NULL pointer dereference in isftracetrampoline when ftrace is dead CVE-2022-49977 - sched/fair: Fix potential memory corruption in...

7.8CVSS7AI score0.00111EPSS

Microsoft CVE•added 2025/08/07 7:0 a.m.•2 views

net: atm: fix /proc/net/atm/lec handling

...

7.8CVSS7AI score0.00059EPSS

Exploits0

RedHat Linux•added 2025/08/06 5:19 a.m.•2 views

kernel: media: uvcvideo: Remove dangling pointers

A dangling pointer vulnerability was found in the Linux kernel. When an async control is written, a copy of a pointer is made in the file handle that started the operation. If the user closes that file descriptor, its structure will be freed and there will be one dangling pointer per pending asyn...

7.8CVSS7.2AI score0.00012EPSS

RedHat Linux•added 2025/08/04 3:19 p.m.•2 views

kernel: net: atm: fix use after free in lec_send()

In the Linux kernel, the following vulnerability has been resolved: net: atm: fix use after free in lecsend The -send operation frees skb so save the length before calling -send to avoid a use after free...

7.8CVSS6.8AI score0.00025EPSS

Fedora•added 2025/08/02 4:18 a.m.•6 views

[SECURITY] Fedora 42 Update: libsoup3-3.6.5-2.fc42

Libsoup is an HTTP library implementation in C. It was originally part of a SOAP Simple Object Access Protocol implementation called Soup, but the SOAP and non-SOAP parts have now been split into separate packages. libsoup uses the Glib main loop and is designed to work well with GTK applications...

7.5CVSS7.3AI score0.00986EPSS

Exploits1

OSV•added 2025/07/31 9:15 p.m.•1 views

DEBIAN-CVE-2023-32251

A vulnerability has been identified in the Linux kernel's ksmbd component kernel SMB/CIFS server. A security control designed to prevent dictionary attacks, which introduces a 5-second delay during session setup, can be bypassed through the use of asynchronous requests. This bypass negates the...

3.7CVSS4.9AI score0.00113EPSS

OSV•added 2025/07/31 9:15 p.m.•1 views

UBUNTU-CVE-2023-32251

3.7CVSS5.8AI score0.00113EPSS

Vulnrichment•added 2025/07/31 8:44 p.m.•1 views

CVE-2023-32251 Kernel: ksmbd brute force delay bypass via asynchronous requests

3.7CVSS7.5AI score0.00113EPSS

Cvelist•added 2025/07/31 8:44 p.m.•4 views

CVE-2023-32251 Kernel: ksmbd brute force delay bypass via asynchronous requests

3.7CVSS0.00113EPSS

CNNVD•added 2025/07/31 12:0 a.m.•2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an asynchronous request that can bypass antiviolate protections, potentially leading to a dictionary attack...

3.7CVSS4.5AI score0.00113EPSS

RedHat Linux•added 2025/07/30 6:8 a.m.•2 views

kernel: net: atm: fix use after free in lec_send()

7.8CVSS6.8AI score0.00025EPSS

SUSE CVE•added 2025/07/28 11:22 p.m.•1 views

SUSE CVE-2025-38492

In the Linux kernel, the following vulnerability has been resolved: netfs: Fix race between cache write completion and ALLQUEUED being set When netfslib is issuing subrequests, the subrequests start processing immediately and may complete before we reach the end of the issuing function. At the en...

4.7CVSS6.6AI score0.00043EPSS

Exploits0References3

OSV•added 2025/07/28 12:15 p.m.•2 views

AZL-73458 CVE-2025-38488 affecting package kernel for versions less than 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix use-after-free in cryptmessage when using async crypto The CVE-2024-50047 fix removed asynchronous crypto handling from cryptmessage, assuming all crypto operations are synchronous. However, when hardware crypto...

7.8CVSS5.8AI score0.0004EPSS

OSV•added 2025/07/28 12:15 p.m.•1 views

DEBIAN-CVE-2025-38488

7.8CVSS6.4AI score0.0004EPSS