CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

17694 matches found

kernel: xfs: fix freemap adjustments when adding xattrs to leaf blocks

A flaw was found in the Linux kernel's XFS filesystem. When adding extended attributes xattrs, which are metadata associated with files, to leaf blocks, incorrect adjustments to the freemap can occur. This inconsistency allows the entries array and free space to overlap, leading to an assertion...

8.8CVSS5.3AI score0.00469EPSS

Exploits0References5

RedHat Linux•added last week•3 views

kernel: Linux kernel: smb: client: reject userspace cifs.spnego descriptions

A privilege escalation vulnerability was found in the Linux kernel's CIFS client implementation. This could allow a local attacker to impersonate other users, bypass authentication in SMB mount operations, and potentially gain unauthorized access to network file shares or escalate privileges...

7.8CVSS5.3AI score0.00145EPSS

Exploits4References7

Debian CVE•added last week•6 views

CVE-2026-12460

Insufficient policy enforcement in File System Access in Google Chrome prior to 149.0.7827.155 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted PDF file. Chromium security severity: High...

4.2CVSS5.3AI score0.00149EPSS

Exploits0

Positive Technologies•added 2026/06/17 12:0 a.m.•13 views

PT-2026-50210

Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 149.0.7827.155 Description Insufficient policy enforcement in File System Access allows a remote attacker who has compromised the renderer process to bypass site isolation by using a crafted PDF file. Site...

9.6CVSS5.9AI score0.00522EPSS

Exploits0References40

Tenable Nessus•added 2026/06/17 12:0 a.m.•8 views

Ubuntu 20.04 LTS : Linux kernel (Oracle) vulnerabilities (USN-8439-1)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-8439-1 advisory. Stonejiajia, Shir Tamari and Sagi Tzadik discovered that the OverlayFS implementation in the Ubuntu Linux kernel did not properly perform permission chec...

9.8CVSS7.2AI score0.15783EPSS

Exploits14References9

OSV•added 2026/06/12 12:27 p.m.•6 views

OESA-2026-2670 gvfs security update

Gvfs is a userspace virtual filesystem implementation for GIO a library available in GLib. It comes with a set of backends, including trash support, SFTP, SMB, HTTP, DAV, and many others. Gvfs also contains modules for GIO that implement volume monitors and persistent metadata storage. Security...

4.3CVSS8.8AI score0.0036EPSS

Exploits2References2

Ubuntu•added 2026/06/11 9:57 p.m.•13 views

USN-8426-1: Linux kernel (Azure) vulnerabilities

It was discovered that the Linux kernel algifaead module did not properly handle in-place cryptographic operations. This flaw is known as Copy Fail. A local attacker could use this to escalate privileges, or possibly escape a container. CVE-2026-31431 It was discovered that the Linux kernel did n...

9.8CVSS6.4AI score0.94016EPSS

Exploits270

OSV•added 2026/06/11 9:57 p.m.•11 views

USN-8426-1 linux-azure-5.15, linux-azure-fips vulnerabilities

9.8CVSS5.2AI score0.94016EPSS

Exploits270References19

Tenable Nessus•added 2026/06/11 12:0 a.m.•10 views

Ubuntu 20.04 LTS : Linux kernel (FIPS) vulnerabilities (USN-7922-2)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7922-2 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in...

7.8CVSS5.8AI score0.00255EPSS

Exploits0References16

Tenable Nessus•added 2026/06/11 12:0 a.m.•8 views

Ubuntu 20.04 LTS : Linux kernel (FIPS) vulnerabilities (USN-7495-2)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7495-2 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in...

7.8CVSS6.6AI score0.00294EPSS

Exploits2References4

Tenable Nessus•added 2026/06/11 12:0 a.m.•6 views

Ubuntu 20.04 LTS : Linux kernel (FIPS) vulnerabilities (USN-7795-2)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7795-2 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in...

7.8CVSS7.9AI score0.00288EPSS

Exploits0References6

Tenable Nessus•added 2026/06/11 12:0 a.m.•9 views

Ubuntu 20.04 LTS : Linux kernel (Azure FIPS) vulnerabilities (USN-8098-8)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-8098-8 advisory. Qualys discovered that several vulnerabilities existed in the AppArmor Linux kernel Security Module LSM. An unprivileged local attacker could use these...

7.8CVSS6.8AI score0.00248EPSS

Exploits0References8

Tenable Nessus•added 2026/06/11 12:0 a.m.•6 views

Ubuntu 20.04 LTS : Linux kernel (Azure FIPS) vulnerabilities (USN-7939-2)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7939-2 advisory. Jean-Claude Graf, Sandro Regge, Ali Hajiabadi, and Kaveh Razavi discovered that the Linux kernel contained insufficient branch predictor isolation betwee...

7.8CVSS8.1AI score0.01345EPSS

Exploits8References24

Tenable Nessus•added 2026/06/11 12:0 a.m.•6 views

Ubuntu 20.04 LTS : Linux kernel (FIPS) vulnerabilities (USN-7408-2)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7408-2 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in...

7.8CVSS5.7AI score0.00276EPSS

Exploits0References4

FreeBSD•added 2026/06/11 12:0 a.m.•7 views

chromium -- security fixes

Chrome Releases reports: This update includes 33 security fixes: 516496659 Critical CVE-2026-12437: Use after free in WebShare. 516947912 Critical CVE-2026-12438: Inappropriate implementation in WebView. 519728275 Critical CVE-2026-12439: Use after free in Digital Credentials. 519731619 Critical...

9.6CVSS5.5AI score0.00522EPSS

Exploits0References1

Tenable Nessus•added 2026/06/11 12:0 a.m.•9 views

Ubuntu 20.04 LTS : Linux kernel (FIPS) vulnerabilities (USN-7461-2)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7461-2 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in...

7.8CVSS6.9AI score0.00274EPSS

Exploits0References12

Cvelist•added 2026/06/10 9:55 p.m.•25 views

CVE-2026-42305 Dulwich has an arbitrary file write via NTFS-hostile tree entries on Windows

Dulwich is a pure-Python implementation of the Git file formats and protocols. Versions starting with 0.10.0 and prior to 1.2.5 have an arbitrary file write leading to remote code execution when cloning or checking out a malicious Git repository on Windows. Dulwich's path-element validator accept...

8.8CVSS0.00854EPSS

Exploits0References4

CVE•added 2026/06/10 9:55 p.m.•39 views

CVE-2026-42305

Dulwich (pure-Python Git implementation) versions before 1.2.5 on Windows are vulnerable to an arbitrary file write via NTFS-hostile tree entries, causing remote code execution when cloning or checking out a malicious repository. Root cause: path-element validation allowed filenames that Windows ...

8.8CVSS6.5AI score0.00854EPSS

Exploits0References4