CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3432 matches found

OSV•added 2025/10/18 10:4 a.m.•6 views

SUSE-SU-2025:03638-1 Security update for the Linux Kernel RT (Live Patch 5 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506001017 fixes several issues. The following security issues were fixed: - CVE-2025-38678: netfilter: nftables: reject duplicate device on updates bsc1249534. - CVE-2025-38499: cloneprivatemnt: make sure that caller has CAPSYSADMIN in the right userns...

7.8CVSS6.5AI score0.00528EPSS

Exploits1References19

OSV•added 2025/10/17 2:55 p.m.•6 views

OESA-2025-2467 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hciconn: Use disabledelayedworksync This makes use of disabledelayedworksync instead canceldelayedworksync as it not only cancel the ongoing work but...

7.8CVSS6.8AI score0.00185EPSS

Exploits0References25

OSV•added 2025/10/17 2:55 p.m.•5 views

OESA-2025-2466 kernel security update

7.8CVSS6.8AI score0.00185EPSS

Exploits0References25

OSV•added 2025/10/17 2:55 p.m.•8 views

OESA-2025-2465 kernel security update

7.8CVSS6.8AI score0.00185EPSS

Exploits0References25

EUVD•added 2025/10/14 9:30 p.m.•4 views

EUVD-2022-55140

In the Linux kernel, the following vulnerability has been resolved: cachefiles: unmark inode in use in error path Unmark inode in use if error encountered. If the in-use flag leakage occurs in cachefilesopenfile, Cachefiles will complain "Inode already in use" when later another cookie with the...

5.5CVSS5.3AI score0.00204EPSS

Exploits0References3

Oracle linux•added 2025/10/14 12:0 a.m.•11 views

Unbreakable Enterprise kernel security update

5.15.0-313.189.5.1 - afunix: Don't leave consecutive consumed OOB skbs. Kuniyuki Iwashima Orabug: 38528187 CVE-2025-38236 - fs: writeback: fix use-after-free in markinodedirty Jiufei Xue Orabug: 38528183 CVE-2025-39866 - rtnetlink: Fix L3 stats disable handling in rtnloffloadxstatsfill Vijayendra...

5.5CVSS8.8AI score0.00467EPSS

Exploits1

Tenable Nessus•added 2025/10/14 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2023-53683

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fs: hfsplus: remove WARNON from hfspluscatread,writeinode syzbot is hitting WARNON in hfspluscatread,writeinode, for crafted filesystem image can contain bogus...

5.5CVSS5.6AI score0.00132EPSS

Exploits0References2

Tenable Nessus•added 2025/10/09 12:0 a.m.•9 views

AlmaLinux 10 : kernel (ALSA-2025:16904)

The remote AlmaLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:16904 advisory. kernel: fs: export anoninodemakesecureinode and fix secretmem LSM bypass CVE-2025-38396 kernel: smb: client: fix use-after-free in cifsoplockbreak...

8.8CVSS7.2AI score0.00179EPSS

Exploits1References8

SUSE CVE•added 2025/10/08 11:38 p.m.•1 views

SUSE CVE-2022-50546

In the Linux kernel, the following vulnerability has been resolved: ext4: fix uninititialized value in 'ext4evictinode' Syzbot found the following issue: ===================================================== BUG: KMSAN: uninit-value in ext4evictinode+0xdd/0x26b0 fs/ext4/inode.c:180...

5.5CVSS6.4AI score0.00197EPSS

Exploits0References9

EUVD•added 2025/10/08 10:2 a.m.•4 views

EUVD-2025-31824

A security vulnerability has been detected in SourceCodester Hotel and Lodge Management System up to 1.0. The impacted element is an unknown function of the file /managewebsite.php. The manipulation of the argument websiteimage/backloginimage leads to unrestricted upload. The attack is possible t...

7.2CVSS4.7AI score0.00417EPSS

Exploits1References7

Tenable Nessus•added 2025/10/08 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2022-50435

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ext4: avoid crash when inline data creation follows DIO write When inode is created and written to using direct IO, there is nothing to clear the...

5.5CVSS5.7AI score0.00146EPSS

Exploits0References3

Tenable Nessus•added 2025/10/08 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2022-50485

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ext4: add EXT4IGETBAD flag to prevent unexpected bad inode There are many places that will get unhappy and crash when ext4iget returns a bad inode. However, if...

5.5CVSS6.2AI score0.00155EPSS

Exploits0References3

SUSE CVE•added 2025/10/07 11:49 p.m.•2 views

SUSE CVE-2022-50485

In the Linux kernel, the following vulnerability has been resolved: ext4: add EXT4IGETBAD flag to prevent unexpected bad inode There are many places that will get unhappy and crash when ext4iget returns a bad inode. However, if iget the boot loader inode, allows a bad inode to be returned, becaus...

6.6CVSS6.6AI score0.00155EPSS

Exploits0References8

SUSE CVE•added 2025/10/07 11:46 p.m.•2 views

SUSE CVE-2023-53683

In the Linux kernel, the following vulnerability has been resolved: fs: hfsplus: remove WARNON from hfspluscatread,writeinode syzbot is hitting WARNON in hfspluscatread,writeinode, for crafted filesystem image can contain bogus length. There conditions are not kernel bugs that can justify kernel ...

3.3CVSS6.4AI score0.00132EPSS

Exploits0References8

OSV•added 2025/10/07 5:25 p.m.•4 views

RLSA-2025:16904 Moderate: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: fs: export anoninodemakesecureinode and fix secretmem LSM bypass CVE-2025-38396 kernel: smb: client: fix use-after-free in cifsoplockbreak CVE-2025-38527 kernel: cifs: Fix the smbdrespons...

7.3CVSS6.7AI score0.00179EPSS

Exploits1References7