CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в chromium

Type Confusion in V8 in Google Chrome prior to 130.0.6723.69 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7AI score0.00218EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•5 views

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: mtd: spinand: fix memory leak of ECC engine conf The memory allocated for the ECC engine conf is not released during the spinand cleanup process. The following kmemleak trace illustrates this memory leak: Unreferenced object...

5.5CVSS6.2AI score0.00054EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в chromium

Insufficient data validation in V8 in Google Chrome prior to 87.0.4280.88 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

6.5CVSS7.1AI score0.74065EPSS

Exploits14References2

9.8CVSS5.9AI score0.00409EPSS

Astra Linux - уязвимость в firefox

There was an integer overflow issue in the OrderedHashTable used by the JavaScript engine. This vulnerability was fixed in Firefox 139.0.4...

8.8CVSS8.9AI score0.00701EPSS

Astra Linux - уязвимость в chromium

Inappropriate implementation in V8 in Google Chrome prior to 119.0.6045.105 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS7.1AI score0.00189EPSS

Astra Linux - уязвимость в chromium

Type confusion in V8 in Google Chrome prior to 98.0.4758.80 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.2AI score0.15009EPSS

Astra Linux - уязвимость в chromium

“Type Confusion in V8” in Google Chrome before version 129.0.6668.70 allowed a remote attacker to perform out-of-bounds memory access through a crafted HTML page. Chromium security severity: High...

8.8CVSS7.1AI score0.00631EPSS

Astra Linux - уязвимость в chromium

Inappropriate implementation in V8 in Google Chrome prior to 128.0.6613.84 allowed a remote attacker to potentially perform out-of-bounds memory access via a crafted HTML page. Chromium security severity: Medium...

6.3CVSS6.7AI score0.00039EPSS

Astra Linux - уязвимость в docker.io

Moby is an open-source project created by Docker to enable software containerization. A bug was discovered in Moby Docker Engine where supplementary groups are not set up properly. If an attacker has direct access to a container and manipulates the supplementary group permissions, they may be abl...

5.5CVSS6.8AI score0.00036EPSS

Astra Linux - уязвимость в mariadb-10.3

In MariaDB version 10.5.9, an application can crash due to certain long SELECT DISTINCT statements that improperly interact with storage-engine resource limitations related to temporary data structures...

8.8CVSS6.8AI score0.00681EPSS

Astra Linux - уязвимость в chromium

A heap buffer overflow in ANGLE in Google Chrome prior to version 123.0.6312.122 allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page. Chromium security severity: High...

AstraLinux•added 2026/05/20 5:53 a.m.•8 views

Astra Linux - уязвимость в ansible

In Ansible, all Ansible Engine versions up to ansible-engine 2.8.5, ansible-engine 2.7.13, and ansible-engine 2.6.19 were logging at the DEBUG level. This led to the disclosure of credentials if a plugin used a library that logged credentials at the DEBUG level. This flaw does not affect Ansible...

7.8CVSS6.7AI score0.00117EPSS

Exploits0References1

AstraLinux•added 2026/05/20 5:53 a.m.•13 views

Astra Linux - уязвимость в chromium

In Google Chrome, using "after free" in V8 before version 96.0.4664.110 allowed a remote attacker to potentially exploit heap corruption through a crafted HTML page...

8.8CVSS7.5AI score0.05459EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•10 views

Astra Linux - уязвимость в chromium

Type confusion in V8 in Google Chrome prior to 95.0.4638.69 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS8.7AI score0.18965EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•7 views

Astra Linux - уязвимость в docker.io

Moby is an open-source project created by Docker to enable software containerization. A bug was discovered in Moby Docker Engine where attempting to copy files using docker cp into a specially crafted container can result in changes to Unix file permissions for existing files in the host’s...

6.3CVSS6.3AI score0.00031EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•9 views

Astra Linux – Vulnerability in docker.io

Moby is an open-source project created by Docker to enable software containerization. A bug was discovered in Moby Docker Engine, where the data directory /var/lib/docker, contained subdirectories with insufficiently restricted permissions. This allowed unprivileged Linux users to access and...

6.3CVSS6.6AI score0.04746EPSS

Exploits3References2

5.5CVSS5.7AI score0.0002EPSS

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: spi: spi-qpic-snand: Unregisters the ECC engine upon probe error and device removal. The on-host hardware ECC engine remains registered both when the spiregistercontroller function returns an error, and also upon device removal...

Exploits0References1

9.8CVSS5.8AI score0.00072EPSS

Astra Linux - уязвимость в firefox, thunderbird

JIT compilation errors in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 146, Firefox ESR 115.31, Firefox ESR 140.6, Thunderbird 146, and Thunderbird 140.6...