CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNNVD•added 2025/07/25 12:0 a.m.•1 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from the fact that the use of mutually exclusive locks in an atomic context may result in a warning...

5.5CVSS7AI score0.00155EPSS

Exploits0References4

CNNVD•added 2025/07/25 12:0 a.m.•2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the use of mutex locks in an atomic context that could lead to sleep...

5.5CVSS7.9AI score0.00117EPSS

Exploits0References4

OSV•added 2025/07/10 9:15 a.m.•7 views

DEBIAN-CVE-2025-38335

In the Linux kernel, the following vulnerability has been resolved: Input: gpio-keys - fix a sleep while atomic with PREEMPTRT When enabling PREEMPTRT, the gpiokeysirqtimer callback runs in hard irq context, but the inputevent takes a spinlock, which isn't allowed there as it is converted to a...

5.5CVSS5.4AI score0.00114EPSS

SUSE CVE•added 2025/06/30 11:31 p.m.•2 views

SUSE CVE-2025-38084

In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: unshare page tables during VMA split, not before Currently, splitvma triggers hugetlb page table unsharing through vmops-maysplit. This happens before the VMA lock and rmap locks are taken - which is too early, it...

5.8CVSS6.4AI score0.00152EPSS

Exploits0References25

CVE•added 2025/06/28 7:44 a.m.•98 views

CVE-2025-38084

CVE-2025-38084 concerns the Linux kernel. A race was introduced where hugetlb page-table unsharing could occur before the VMA/rmap locks are held during VMA split. The fix explicitly moves the hugetlb unshare logic into __split_vma(), at the point THP splitting occurs, ensuring both the VMA and r...

5.5CVSS6.5AI score0.00152EPSS

Exploits0References10Affected Software1

OSV•added 2025/06/28 7:44 a.m.•3 views

CVE-2025-38084 mm/hugetlb: unshare page tables during VMA split, not before

5.5CVSS6.3AI score0.00152EPSS

Exploits0References13

RedHat Linux•added 2025/06/25 12:40 a.m.•9 views

kernel: ndisc: use RCU protection in ndisc_alloc_skb()

A vulnerability was found in the Linux kernel's IPv6 Neighbor Discovery NDISC subsystem, which manages network neighbor information. The issue arises from improper synchronization mechanisms when allocating socket buffers skbuff in the ndiscallocskb function. Specifically, the function can be...

RedHat Linux•added 2025/06/24 6:19 a.m.•4 views

kernel: ndisc: use RCU protection in ndisc_alloc_skb()

RedHat Linux•added 2025/06/24 5:8 a.m.•11 views

kernel: ndisc: use RCU protection in ndisc_alloc_skb()

RedHat Linux•added 2025/06/24 4:48 a.m.•3 views

kernel: ndisc: use RCU protection in ndisc_alloc_skb()

OSV•added 2025/06/18 10:15 a.m.•5 views

DEBIAN-CVE-2025-38073

In the Linux kernel, the following vulnerability has been resolved: block: fix race between setblocksize and read paths With the new large sector size support, it's now the case that setblocksize can change iblksize and the folio order in a manner that conflicts with a concurrent reader and cause...

4.7CVSS5.9AI score0.00011EPSS

Metasploit•added 2025/06/06 6:53 p.m.•599 views

Maldoc in PDF Polyglot converter

A malicious MHT file created can be opened in Microsoft Word even though it has magic numbers and file structure of PDF. If the file has configured macro, by opening it in Microsoft Word, VBS runs and performs malicious behaviors. The attack does not bypass configured macro locks. And the malicio...

5.7AI score

Exploits0

Positive Technologies•added 2025/06/06 12:0 a.m.•3 views

PT-2025-27290

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to the version containing the fix for this issue Description: The issue is related to the Linux kernel's handling of huge page tables during VMA split. The problem arises because the split vma function triggers...

5.5CVSS6.6AI score0.00152EPSS

Exploits0

RedhatCVE•added 2025/05/23 2:13 a.m.•10 views

CVE-2023-7009

Some Sciener-based locks support plaintext message processing over Bluetooth Low Energy, allowing unencrypted malicious commands to be passed to the lock. These malicious commands, less then 16 bytes in length, will be processed by the lock as if they were encrypted communications. This can be...

8.2CVSS7.1AI score0.00248EPSS

RedhatCVE•added 2025/05/22 11:40 p.m.•6 views

CVE-2022-40633

A malicious actor can clone access cards used to open control cabinets secured with Rittal CMC III locks...

4.6CVSS5.1AI score0.00261EPSS

RedhatCVE•added 2025/05/22 3:45 p.m.•6 views

CVE-2020-15530

An issue was discovered in Valve Steam Client 2.10.91.91. The installer allows local users to gain NT AUTHORITY\SYSTEM privileges because some parts of %PROGRAMFILESX86%\Steam and/or %COMMONPROGRAMFILESX86%\Steam have weak permissions during a critical time window. An attacker can make this time...

7.8CVSS6.8AI score0.00524EPSS

Exploits1

RedhatCVE•added 2025/05/22 1:29 a.m.•8 views

CVE-2013-3220

bitcoind and Bitcoin-Qt before 0.4.9rc2, 0.5.x before 0.5.8rc2, 0.6.x before 0.6.5rc2, and 0.7.x before 0.7.3rc2, and wxBitcoin, do not properly consider whether a block's size could require an excessive number of database locks, which allows remote attackers to cause a denial of service split an...

6.4CVSS6.9AI score0.02378EPSS