CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

145 matches found

RedhatCVE•added 2025/05/23 3:6 a.m.•4 views

CVE-2023-20849

In imgsyscmdq, there is a possible use after free due to a missing valid range checking. This could lead to local escalation of privilege with System execution privileges needed. User interaction is needed for exploitation. Patch ID: ALPS07340433; Issue ID: ALPS07340350...

6.5CVSS6.6AI score0.00025EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 3:5 a.m.•2 views

CVE-2023-20759

In cmdq, there is a possible memory corruption due to a missing bounds check. This could lead to local denial of service with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07636133; Issue ID: ALPS07634601...

4.4CVSS5.8AI score0.00014EPSS

Exploits0References1

SUSE CVE•added 2025/05/10 2:53 a.m.•1 views

SUSE CVE-2025-37837

In the Linux kernel, the following vulnerability has been resolved: iommu/tegra241-cmdqv: Fix warnings due to dmamfreecoherent Two WARNINGs are observed when SMMU driver rolls back upon failure: arm-smmu-v3.9.auto: Failed to register iommu arm-smmu-v3.9.auto: probe with driver arm-smmu-v3 failed...

5.5CVSS6.6AI score0.00065EPSS

Exploits0References6

OSV•added 2025/05/09 7:16 a.m.•1 views

DEBIAN-CVE-2025-37837

5.5CVSS5.5AI score0.00065EPSS

Exploits0References1

OSV•added 2025/05/09 7:16 a.m.•1 views

UBUNTU-CVE-2025-37837

5.5CVSS6.2AI score0.00065EPSS

Exploits0References10

OSV•added 2025/05/09 6:41 a.m.•7 views

CVE-2025-37837 iommu/tegra241-cmdqv: Fix warnings due to dmam_free_coherent()

5.5CVSS6AI score0.00065EPSS

Exploits0References7

SUSE CVE•added 2025/03/28 3:37 a.m.•1 views

SUSE CVE-2023-53017

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisync: fix memory leak in hciupdateadvdata When hcicmdsyncqueue failed in hciupdateadvdata, instptr is not freed, which will cause memory leak, convert to use ERRPTR/PTRERR to pass the instance to callback so no memo...

5.5CVSS5.8AI score0.00099EPSS

Exploits0References3

SUSE CVE•added 2025/02/28 2:22 a.m.•1 views

SUSE CVE-2024-58018

In the Linux kernel, the following vulnerability has been resolved: nvkm: correctly calculate the available space of the GSP cmdq buffer r535gspcmdqpush waits for the available page in the GSP cmdq buffer when handling a large RPC request. When it sees at least one available page in the cmdq, it...

5.5CVSS7.8AI score0.00012EPSS

Exploits0References15

OSV•added 2025/02/27 3:15 a.m.•1 views

DEBIAN-CVE-2024-58018

5.5CVSS5.9AI score0.00012EPSS

Exploits0References1

OSV•added 2025/02/27 3:15 a.m.•0 views

UBUNTU-CVE-2024-58018

5.5CVSS6.6AI score0.00012EPSS

Exploits0References18

Debian CVE•added 2025/02/27 2:12 a.m.•7 views

CVE-2024-58018

5.5CVSS5.9AI score0.00012EPSS

Exploits0

OSV•added 2025/02/27 2:12 a.m.•4 views

CVE-2024-58018 nvkm: correctly calculate the available space of the GSP cmdq buffer

5.5CVSS6.2AI score0.00012EPSS

Exploits0References6

CNNVD•added 2025/02/27 12:0 a.m.•2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the miscalculation of the space available in the GSP cmdq buffer in nvkm...

5.5CVSS6.7AI score0.00012EPSS

Exploits0References5

OSV•added 2024/12/27 2:15 p.m.•1 views

DEBIAN-CVE-2024-53225

In the Linux kernel, the following vulnerability has been resolved: iommu/tegra241-cmdqv: Fix alignment failure at maxnshift When configuring a kernel with PAGESIZE=4KB, depending on its setting of CONFIGCMAALIGNMENT, VCMDQLOG2SIZEMAX=19 could fail the alignment test and trigger a WARNON: WARNING...

5.5CVSS5.7AI score0.00015EPSS

Exploits0References1

Vulnrichment•added 2024/12/27 1:50 p.m.•1 views

CVE-2024-53225 iommu/tegra241-cmdqv: Fix alignment failure at max_n_shift

6AI score0.00015EPSS

Exploits0References2

BDU FSTEC•added 2024/12/03 12:0 a.m.•1 views

The vulnerability of AdvaBuild software for designing and managing construction projects lies in the insufficient protection of command queues, allowing attackers to open arbitrary files.

The vulnerability of AdvaBuild software for designing and managing construction projects is related to insufficient protection of the command queue. Exploiting this vulnerability could allow a malicious actor to open arbitrary files...

9CVSS5.6AI score0.0046EPSS

Exploits0References3

CNNVD•added 2024/12/02 12:0 a.m.•3 views

MediaTek Chipsets 安全漏洞

MediaTek Chipsets are a variety of chips from China's MediaTek Corporation MediaTek. A security vulnerability exists in MediaTek Chipsets, which stems from a lack of boundary checking in cmdq, which could lead to out-of-bounds reads...

4.4CVSS6.7AI score0.00033EPSS

Exploits0References1

Positive Technologies•added 2024/10/23 12:0 a.m.•3 views

PT-2024-35522

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A potential NULL dereference issue has been identified in the Linux kernel, specifically in the mtk crtc destroy function. This issue arises when the mbox request channel call fails in m...

5.5CVSS5.4AI score0.00015EPSS

Exploits0

RedHat Linux•added 2024/10/16 1:8 a.m.•3 views

kernel: net/mlx5: Add a timeout to acquire the command queue semaphore

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Add a timeout to acquire the command queue semaphore Prevent forced completion handling on an entry that has not yet been assigned an index, causing an out of bounds access on idx = -22. Instead of waiting indefinitely...

7.8CVSS6.8AI score0.00031EPSS

Exploits0References5

RedHat Linux•added 2024/08/14 1:27 a.m.•0 views

kernel: net/mlx5: Add a timeout to acquire the command queue semaphore

7.8CVSS6.8AI score0.00031EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by