CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

131 matches found

SUSE Linux•added 2026/04/14 10:47 a.m.•1 views

Security update for freerdp2

This update for freerdp2 fixes the following issues: Fix the CVE-2026-24684 patch, as the previous version wrongly deleted a check for an error condition bsc1257991. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper...

7.3CVSS5.8AI score0.00018EPSS

Exploits0References4

Snyk•added 2026/04/07 9:10 p.m.•3 views

Missing Report of Error Condition

Overview github.com/sigstore/cosign/cmd/cosign/cli/verify is a package that aims to make signatures invisible infrastructure. Affected versions of this package are vulnerable to Missing Report of Error Condition in the verify-blob-attestation module when used without --check-claims flag. An...

6.9CVSS5.8AI score0.00042EPSS

Exploits0References2

SUSE CVE•added 2026/03/28 12:25 a.m.•1 views

SUSE CVE-2026-33481

Syft is a a CLI tool and Go library for generating a Software Bill of Materials SBOM from container images and filesystems. Syft versions before v1.42.3 would not properly cleanup temporary storage if the temporary storage was exhausted during a scan. When scanning archives Syft will unpack those...

5.3CVSS5.8AI score0.00017EPSS

Exploits0References4

CVE•added 2026/03/26 5:10 p.m.•6 views

CVE-2026-33481

Syft contains a vulnerability (affecting versions before v1.42.3) where temporary storage is not properly cleaned up when an error occurs during scanning. If scanning archives leads to exhausted temporary storage (e.g., large artifacts or zipbombs), Syft may exit without removing temporary files,...

5.3CVSS5.7AI score0.00017EPSS

Exploits0References4Affected Software1

CNNVD•added 2026/01/23 12:0 a.m.•1 views

Linux Kernel Security Vulnerabilities

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the ibdelsubdeviceandput function not releasing the device’s reference count when an error occurs...

7.8CVSS6.3AI score0.00022EPSS

Exploits0References4

Debian CVE•added 2025/12/30 12:3 p.m.•3 views

CVE-2022-50786

In the Linux kernel, the following vulnerability has been resolved: media: s5p-mfc: Clear workbit to handle error condition During error on CLOSEINSTANCE command, ctxworkbits was not getting cleared. During consequent mfc execution NULL pointer dereferencing of this context led to kernel panic...

5.6AI score0.00028EPSS

Exploits0

CNNVD•added 2025/12/30 12:0 a.m.•2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure to clear a working bit under an error condition, which could lead to null pointer dereferencing an...

6.1AI score0.00028EPSS

Exploits0References8

Packet Storm News•added 2025/12/16 12:0 a.m.•3 views

FreeBSD Security Advisory - FreeBSD-SA-25:11.ipfw

FreeBSD Security Advisory - In some cases, the 'tcp-setmss' handler may free the packet data and throw an error without halting the rule processing engine. A subsequent rule can then allow the traffic after the packet data is gone, resulting in a NULL pointer dereference...

6.9AI score0.00008EPSS

Exploits0

OSV•added 2025/11/13 8:15 p.m.•3 views

CVE-2025-46367

Dell Alienware Command Center 6.x AWCC, versions prior to 6.10.15.0, contain a Detection of Error Condition Without Action vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Arbitrary Code Execution...

7.8CVSS5.8AI score

Exploits0References1

CVE•added 2025/11/13 7:23 p.m.•6 views

CVE-2025-46367

Dell Alienware Command Center (AWCC) 6.x, before 6.10.15.0, has a Detection of Error Condition Without Action vulnerability. Local, low-privileged attackers could trigger Arbitrary Code Execution via the no-action error-detection path. CVSS 3.1 indicates high impact on confidentiality, integrity,...

7.8CVSS6.2AI score0.00017EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2025/11/13 12:0 a.m.•5 views

PT-2025-46896

7.8CVSS6.5AI score0.00017EPSS

Exploits0References2

Vulnrichment•added 2025/10/09 3:17 a.m.•2 views

CVE-2025-27039 Detection of Error Condition Without Action in Computer Vision

Memory corruption may occur while processing IOCTL call for DMM/WARPNCC CONFIG request...

6.6CVSS6.7AI score0.00019EPSS

Exploits0References1

CVE•added 2025/10/07 3:21 p.m.•7 views

CVE-2023-53658

CVE-2023-53658 affects the Linux kernel BCM-QSPI SPI driver (spi/bcm-qspi). If neither hif_mspi nor mspi resources exist, probe may succeed while doing nothing, then removal dereferences a NULL drvdata pointer. The fix unconditionally calls devm_ioremap_resource(), which handles NULL resources an...

5.5CVSS6AI score0.00017EPSS

Exploits0References8Affected Software1