CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3164 matches found

SUSE CVE•added 2025/12/17 12:26 a.m.•3 views

SUSE CVE-2025-67735

Netty is an asynchronous, event-driven network application framework. In versions prior to 4.1.129.Final and 4.2.8.Final, the io.netty.handler.codec.http.HttpRequestEncoder has a CRLF injection with the request URI when constructing a request. This leads to request smuggling when HttpRequestEncod...

6.5CVSS7.3AI score0.00024EPSS

Exploits1References4

SUSE CVE•added 2025/12/17 12:24 a.m.•1 views

SUSE CVE-2025-68258

In the Linux kernel, the following vulnerability has been resolved: comedi: multiq3: sanitize config options in multiq3attach Syzbot identified an issue 1 in multiq3attach that induces a task timeout due to open or COMEDIDEVCONFIG ioctl operations, specifically, in the case of multiq3 driver. Thi...

5.5CVSS6.4AI score0.00058EPSS

Exploits0References21

Tenable Nessus•added 2025/12/17 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2025-67735

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Netty is an asynchronous, event-driven network application framework. In versions prior to 4.1.129.Final and 4.2.8.Final, the...

6.5CVSS6.7AI score0.00024EPSS

Exploits1References2

EUVD•added 2025/12/16 3:30 p.m.•1 views

EUVD-2025-203743

5.9AI score0.00058EPSS

Exploits0References5

NVD•added 2025/12/16 3:15 p.m.•4 views

CVE-2025-68258

0.00058EPSS

Exploits0References8

UbuntuCve•added 2025/12/16 3:15 p.m.•1 views

CVE-2025-68258

5.7AI score0.00058EPSS

Exploits0References35

OSV•added 2025/12/16 3:15 p.m.•0 views

UBUNTU-CVE-2025-68258

5.7AI score0.00058EPSS

Exploits0References36

Cvelist•added 2025/12/16 2:45 p.m.•21 views

CVE-2025-68258 comedi: multiq3: sanitize config options in multiq3_attach()

0.00058EPSS

Exploits0References8

OSV•added 2025/12/16 2:45 p.m.•2 views

CVE-2025-68258 comedi: multiq3: sanitize config options in multiq3_attach()

6.3AI score0.00058EPSS

Exploits0References11

ATTACKERKB•added 2025/12/16 2:45 p.m.•2 views

CVE-2025-68258

5.2AI score0.00058EPSS

Exploits0References9Affected Software1

CVE•added 2025/12/16 2:45 p.m.•6 views

CVE-2025-68258

CVE-2025-68258 is a Linux kernel vulnerability in the comedi driver, specifically multiq3_attach(), where crafted config options could cause long task timeouts. Syzbot observed that setting s->n_chan via it->options[2] could trigger repeated multiq3_encoder_reset() calls, delaying processin...

6AI score0.00058EPSS

Exploits0References8

NVD•added 2025/12/16 2:15 p.m.•1 views

CVE-2025-40354

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: increase max link count and fix link-enc NULL pointer access why 1. dc-linksMAXLINKS array size smaller than actual requested. maxconnector + maxdpia + 4 virtual = 14. increase from 12 to 14. 2. hwinit access nul...

0.00024EPSS

Exploits0References3

UbuntuCve•added 2025/12/16 2:15 p.m.•1 views

CVE-2025-40354

5.7AI score0.00024EPSS

Exploits0References10

OSV•added 2025/12/16 1:30 p.m.•1 views

CVE-2025-40354 drm/amd/display: increase max link count and fix link->enc NULL pointer access

6.4AI score0.00024EPSS

Exploits0References6

CVE•added 2025/12/16 1:30 p.m.•7 views

CVE-2025-40354

CVE-2025-40354 affects the Linux kernel DRM/AMD display path. The fix increases the max link count (dc->links) from 12 to 14 to prevent an access overrun, and prevents a NULL pointer dereference to enc in link->enc for dpia non display_endpoint during hw_init. The vulnerability stemmed from...

6.1AI score0.00024EPSS

Exploits0References3

NVD•added 2025/12/16 1:15 a.m.•5 views

CVE-2025-67735

6.5CVSS0.00024EPSS

Exploits1References1

OSV•added 2025/12/16 1:15 a.m.•1 views

DEBIAN-CVE-2025-67735

6.5CVSS6.2AI score0.00024EPSS

Exploits1References1

UbuntuCve•added 2025/12/16 1:15 a.m.•1 views

CVE-2025-67735