CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

372 matches found

OSV•added 2026/05/07 5:36 p.m.•4 views

JLSEC-2026-479

MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip464 via a long filename, comment, or extra field. NOTE: MiniZip is not a supported part of the zlib product. NOTE: pyminizip through 0.2.6 is also vulnerable because it bundles an...

9.8CVSS6.1AI score0.02918EPSS

Exploits0References22

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Reject index allocation if $BITMAP is empty but index blocks exist. Index allocation requires at least one bit in the $BITMAP attribute to track the usage of index entries. If the bitmap is empty while index blocks are...

5.1AI score0.00166EPSS

Exploits0References2

Tenable Nessus•added 2026/04/17 12:0 a.m.•1 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007469)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007469 advisory. In the Linux kernel, the following vulnerability has been resolved: hfs: fix OOB Read in hfsbrecfind Syzbot reported a OOB read bug:...

5.9AI score0.00237EPSS

Exploits0References4

Cvelist•added 2026/03/22 1:38 p.m.•25 views

CVE-2019-25607 Axessh 4.2 Local Stack-based Buffer Overflow via Log File Name

Axessh 4.2 contains a stack-based buffer overflow vulnerability in the log file name field that allows local attackers to execute arbitrary code by supplying an excessively long filename. Attackers can overflow the buffer at offset 214 bytes to overwrite the instruction pointer and execute...

8.6CVSS0.00151EPSS

Exploits0References6

Broadcom•added 2026/01/27 12:0 a.m.•15 views

MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_64

9.8CVSS7.6AI score0.02918EPSS

Exploits0

Cvelist•added 2025/10/28 11:48 a.m.•5 views

CVE-2025-40067 fs/ntfs3: reject index allocation if $BITMAP is empty but blocks exist

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: reject index allocation if $BITMAP is empty but blocks exist Index allocation requires at least one bit in the $BITMAP attribute to track usage of index entries. If the bitmap is empty while index blocks are already...

0.00166EPSS

Exploits0References4

CVE•added 2025/10/28 11:48 a.m.•15 views

CVE-2025-40067

CVE-2025-40067 affects the Linux kernel’s ntfs3 filesystem. It describes a condition where index allocations can occur with an empty $BITMAP bitmap while index blocks exist, causing on-disk corruption. Triggered by a malformed NTFS image during a long filename rename, where the empty bitmap allow...

6.1AI score0.00166EPSS

Exploits0References4

Tenable Nessus•added 2025/10/28 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2025-40067

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fs/ntfs3: reject index allocation if $BITMAP is empty but blocks exist Index allocation requires at least one bit in the $BITMAP attribute to track usage of ind...

5.8AI score0.00166EPSS

Exploits0References2