CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

104 matches found

Cvelist•added 2026/05/15 2:42 a.m.•37 views

CVE-2025-66660

Insufficient parameter sanitization in TEE SOC Driver could allow an attacker to issue a malformed DRVSOCCMDIDSRIOVCHECKTACOMPAT to cause incorrect shared memory mapping, potentially resulting in unexpected behavior...

1.8CVSS0.00101EPSS

Exploits0References1

AstraLinux•added 2026/05/03 11:59 p.m.•0 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: ASoC: soc-pcm: do not use socpcmret on the .prepare callback. The commit 1f5664351410 states, “ASoC: lower the log severity when no backend DAIs are enabled for …”. This commit ignores the -EINVAL error message when using soc PCM...

5.5CVSS5.7AI score0.00167EPSS

Exploits0References2

RustSec•added 2026/03/09 12:0 p.m.•5 views

Denial of service in Quinn endpoints

Receiving QUIC transport parameters containing invalid values could lead to a panic. Unfortunately the maintainers did not properly assess usage of unwrap calls in the transport parameters parsing code, and we did not have sufficient fuzzing coverage to find this issue. We have since added a...

8.7CVSS5.8AI score0.0047EPSS

Exploits0Affected Software1

VulnCheck KEV•added 2026/02/09 12:0 a.m.•5 views

VulnCheck KEV: CVE-2010-1173

The sctpprocessunkparam function in net/sctp/smmakechunk.c in the Linux kernel 2.6.33.3 and earlier, when SCTP is enabled, allows remote attackers to cause a denial of service system crash via an SCTPChunkInit packet containing multiple invalid parameters that require a large amount of error data...

7.1CVSS5.9AI score0.21312EPSS

In wildExploits7References2

EUVD•added 2026/02/02 3:20 p.m.•3 views

EUVD-2025-206611

Memory Corruption while processing IOCTL call to update sensor property settings with invalid input parameters...

7.8CVSS5.3AI score0.00092EPSS

Exploits0References1

RedhatCVE•added 2025/12/19 5:30 a.m.•5 views

CVE-2025-47325

Information disclosure while processing system calls with invalid parameters...

6.5CVSS6.7AI score0.00068EPSS

Exploits0References1

NVD•added 2025/12/18 6:15 a.m.•2 views

CVE-2025-47325

Information disclosure while processing system calls with invalid parameters...

6.5CVSS0.00068EPSS

Exploits0References1

EUVD•added 2025/12/18 5:29 a.m.•2 views

EUVD-2025-204027

Information disclosure while processing system calls with invalid parameters...

6.5CVSS6.2AI score0.00068EPSS

Exploits0References2

Veracode•added 2025/12/13 5:2 a.m.•4 views

Deserialization Of Untrusted Data

Dataease is vulnerable to Deserialization Of Untrusted Data. The vulnerability is due to improper validation of JDBC connection parameters in the MysqlConfiguration class, which allows an attacker to connect to a malicious MySQL server and execute arbitrary system commands through deserialization...

9.8CVSS8.8AI score0.01473EPSS

Exploits1References5Affected Software1

RedHat Linux•added 2025/11/11 9:13 a.m.•2 views

kernel: ASoC: soc-pcm: don't use soc_pcm_ret() on .prepare callback

In the Linux kernel, the following vulnerability has been resolved: ASoC: soc-pcm: don't use socpcmret on .prepare callback commit 1f5664351410 "ASoC: lower "no backend DAIs enabled for ... Port" log severity" ignores -EINVAL error message on common socpcmret. It is used from many functions,...

5.5CVSS6.8AI score0.00167EPSS

Exploits0References5

RedHat Linux•added 2025/11/11 8:21 a.m.•2 views

kernel: ASoC: soc-pcm: don't use soc_pcm_ret() on .prepare callback

5.5CVSS6.8AI score0.00167EPSS

Exploits0References5

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2007-0606

Malware in sbrugna...

7.1CVSS6.4AI score0.01828EPSS

Exploits0References11

EUVD•added 2025/10/07 12:30 a.m.•3 views