CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

4.7CVSS6.2AI score0.00013EPSS

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: scsi: qla2xxx: Fixed a deletion race condition A system crash occurred when using the debug kernel due to corruption of the link list. The cause of the link list corruption was that session deletion was allowed to be queued...

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-5.10, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: scs: A wrong parameter was fixed in scsmagic. The scsmagic function requires a void variable, but a struct taskstruct is provided instead. taskscstsk represents the starting address of the task’s shadow call stack, and...

5.5CVSS5.8AI score0.00033EPSS

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: PCI/DOE: Fixed a memory leak when CONFIGDEBUGOBJECTS=y is enabled. After a pcidoetask completes, its workstruct needs to be destroyed to avoid a memory leak when CONFIGDEBUGOBJECTS=y is set...

5.7AI score0.00027EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: mptcp: handles DDS corruption consistently. The buggy peer implementation can send corrupted DSS options, consistently causing several warnings in the data path. Use DEBUGNET assertions to avoid errors on some builds and to handl...

5.5CVSS6.2AI score0.00007EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в etcd

An authentication vulnerability has been discovered in Etcd-io v.3.4.10. This vulnerability allows remote attackers to escalate privileges through the debug function...

9.8CVSS6.7AI score0.00338EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-5.10, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: mm: slub: Avoid waking up kswapd in settrackprepare settrackprepare may cause lock recursion. The issue arises when it is called from hrtimerstartrangens, which holds percpuhrtimerbasesn.lock. However, when CONFIGDEBUGOBJECTSTIME...

5.5CVSS6.5AI score0.00015EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: scsi: scsidebug: Sanity check block descriptor length in respmodeselect In respmodeselect sanity check the block descriptor len to avoid UAF. BUG: KASAN: use-after-free in respmodeselect+0xa4c/0xb40 drivers/scsi/scsidebug.c:2509...

7.8CVSS6.3AI score0.00013EPSS

5.5CVSS5.9AI score0.00016EPSS

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: UM: cpuinfo: Fixed a warning for CONFIGCPUMASKOFFSTACK When CONFIGCPUMASKOFFSTACK and CONFIGDEBUGPERCPUMAPS are selected, cpumaxbitswarn generates a runtime warning similar to the following, while we display /proc/cpuinfo. This...

7.8CVSS6.7AI score0.00024EPSS

Astra Linux - уязвимость в linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: mm/debugvmpgtable: Clear page table entries at destroyargs The mm/debugvmpagetable test manually allocates page table entries for the tests it runs, using its manually allocated mmstruct. This is fine on its own, but when it exit...

5.5CVSS6.1AI score0.00018EPSS

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Check debugtrapenable before writing dbgevfile. In an interrupt context, the write dbgevfile operation will be executed via a work queue. This causes the write dbgevfile operation to be executed after debugtrapdisable...

Positive Technologies•added 2026/05/20 12:0 a.m.•6 views

PT-2026-42261

Name of the Vulnerable Software and Affected Versions amazon-mq rabbitmq-aws versions prior to 0.2.1 Description Active debug code in the ARN resolver allows remote authenticated users to perform arbitrary file reads on any file accessible to the RabbitMQ process. This occurs because the 'PUT...

8.3CVSS6AI score0.00027EPSS

Exploits0References6

Tenable Nessus•added 2026/05/20 12:0 a.m.•5 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-021531)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-021531 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: set the right AMDGPU sg segment limitation The driver needs to set the correct...

5.5CVSS6AI score0.00008EPSS

Exploits0References4

Github Security Blog•added 2026/05/19 2:35 p.m.•8 views

Algernon: Single-file mode unconditionally enables debug mode

Summary When Algernon is invoked with a single file path instead of a directory — the documented "quick demo" workflow algernon foo.lua, algernon page.po2, algernon index.html, algernon mywebsite.alg — singleFileMode is set to true and debugMode is forcibly enabled with no opt-out: go //...

7.5CVSS5.8AI score0.00042EPSS

Exploits0References2Affected Software1

OSV•added 2026/05/19 2:35 p.m.•2 views

GHSA-FWQX-8365-9983 Algernon: Single-file mode unconditionally enables debug mode

7.5CVSS5.8AI score0.00042EPSS

OSV•added 2026/05/19 2:16 p.m.•1 views

ALPINE-CVE-2026-23557

Any guest can cause xenstored to crash by issuing a XSRESETWATCHES command within a transaction due to an assert triggering. In case xenstored was built with NDEBUG defined nothing bad will happen, as assert is doing nothing in this case. Note that the default is not to define NDEBUG for xenstore...

6.5CVSS5.8AI score0.00013EPSS

NVD•added 2026/05/19 2:16 p.m.•5 views

CVE-2026-23557

6.5CVSS0.00013EPSS

Exploits0References3

ATTACKERKB•added 2026/05/19 12:49 p.m.•4 views

CVE-2026-23557

6.5CVSS5.8AI score0.00013EPSS

EUVD•added 2026/05/19 12:49 p.m.•7 views

EUVD-2026-30925

6.5CVSS5.8AI score0.00013EPSS