CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3432 matches found

OSV•added 2024/07/17 5:15 p.m.•3 views

CVE-2024-20323

A vulnerability in Cisco Intelligent Node iNode Software could allow an unauthenticated, remote attacker to hijack the TLS connection between Cisco iNode Manager and associated intelligent nodes and send arbitrary traffic to an affected device. This vulnerability is due to the presence of...

7.5CVSS5.9AI score0.00194EPSS

Exploits0References1

CVE•added 2024/07/17 4:28 p.m.•55 views

CVE-2024-20323

Cisco Intelligent Node (iNode) Software is affected by CVE-2024-20323 due to hard-coded cryptographic material in the TLS setup between iNode Manager and its nodes. A remote, unauthenticated attacker in a man-in-the-middle position could use the static key to generate a trusted certificate, imper...

7.5CVSS7.2AI score0.00194EPSS

Exploits0References1Affected Software2

Vulnrichment•added 2024/07/17 4:28 p.m.•8 views

CVE-2024-20323

7.5CVSS7.2AI score0.00194EPSS

Exploits0References1

Cisco•added 2024/07/17 4:0 p.m.•14 views

Cisco Intelligent Node Software Static Key Vulnerability

7.5CVSS7.6AI score0.00194EPSS

Exploits0References1

RedhatCVE•added 2024/07/16 5:26 p.m.•24 views

CVE-2024-40972

In the Linux kernel, the following vulnerability has been resolved: ext4: do not create EA inode under buffer lock ext4xattrsetentry creates new EA inodes while holding buffer lock on the external xattr block. This is problematic as it nests all the allocation locking which acquires locks on othe...

4.1CVSS8.9AI score0.00221EPSS

Exploits0References4

NVD•added 2024/07/12 1:15 p.m.•17 views

CVE-2024-40972

5.5CVSS0.00221EPSS

Exploits0References5

NVD•added 2024/07/12 1:15 p.m.•16 views

CVE-2024-40962

In the Linux kernel, the following vulnerability has been resolved: btrfs: zoned: allocate dummy checksums for zoned NODATASUM writes Shin'ichiro reported that when he's running fstests' test-case btrfs/167 on emulated zoned devices, he's seeing the following NULL pointer dereference in...

5.5CVSS0.00239EPSS

Exploits0References3

OSV•added 2024/07/12 1:15 p.m.•5 views

AZL-56270 CVE-2024-40972 affecting package kernel 5.15.200.1-1

5.5CVSS6.6AI score0.00221EPSS

Exploits0References1

UbuntuCve•added 2024/07/12 1:15 p.m.•17 views

CVE-2024-40972

5.5CVSS6.3AI score0.00221EPSS

Exploits0References11

OSV•added 2024/07/12 1:15 p.m.•2 views

UBUNTU-CVE-2024-40972

5.5CVSS6.1AI score0.00221EPSS

Exploits0References12

Debian CVE•added 2024/07/12 12:32 p.m.•19 views

CVE-2024-40972

5.5CVSS5.5AI score0.00221EPSS

Exploits0

CVE•added 2024/07/12 12:32 p.m.•71 views

CVE-2024-40962

CVE-2024-40962 affects the Linux kernel btrfs zoning code. The issue is a NULL pointer dereference in btrfs_zone_finish_endio() when handling zoned NODATASUM writes under zoned emulation for conventional zones. The fix, as described in the disclosure, is to allocate dummy checksums for zoned NODA...

5.5CVSS6.5AI score0.00239EPSS

Exploits0References3Affected Software1

Cvelist•added 2024/07/12 12:32 p.m.•29 views

CVE-2024-40962 btrfs: zoned: allocate dummy checksums for zoned NODATASUM writes

0.00239EPSS

Exploits0References3

CNNVD•added 2024/07/12 12:0 a.m.•1 views

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a potential deadlock issue in the ext4 file system when creating an EA inode...

5.5CVSS8.2AI score0.00221EPSS

Exploits0References6

RedHat Linux•added 2024/07/08 2:5 a.m.•6 views

kernel: Squashfs: check the inode number is not the invalid value of zero

A flaw was found in the squashfs module in the Linux kernel. A missing check of an inode number with an invalid value of zero can cause an out-of-bounds read and result in a denial of service...

7.1CVSS6.8AI score0.0028EPSS

Exploits0References5

RedHat Linux•added 2024/07/02 9:2 a.m.•4 views

kernel: Squashfs: check the inode number is not the invalid value of zero

A flaw was found in the squashfs module in the Linux kernel. A missing check of an inode number with an invalid value of zero can cause an out-of-bounds read and result in a denial of service...

7.1CVSS6.8AI score0.0028EPSS

Exploits0References5

SUSE CVE•added 2024/06/26 11:17 p.m.•3 views

SUSE CVE-2024-39463

In the Linux kernel, the following vulnerability has been resolved: 9p: add missing locking around taking dentry fid list Fix a use-after-free on dentry's dfsdata fid list when a thread looks up a fid through dentry while another thread unlinks it: UAF thread: refcountt: addition on 0;...

7CVSS6.2AI score0.00253EPSS

Exploits0References16

SUSE CVE•added 2024/06/26 11:17 p.m.•2 views

SUSE CVE-2024-39467

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on ixattrnid in sanitycheckinode syzbot reports a kernel bug as below: F2FS-fs loop0: Mounted with checkpoint version = 48b305e4 ================================================================== BUG:...

7.1CVSS6.6AI score0.00238EPSS

Exploits0References3

AstraLinux•added 2024/06/26 1:32 p.m.•4 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: btrfs: fixed a race condition between direct IO writes and fsync operations when using the same file descriptor. If we have two threads that use the same file descriptor, and one of them performs direct IO writes while the other...

4.7CVSS6.3AI score0.00177EPSS

Exploits0References3

UbuntuCve•added 2024/06/25 3:15 p.m.•25 views

CVE-2024-39463

7.8CVSS6.6AI score0.00253EPSS

Exploits0References20

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by