CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

407 matches found

CVE-2026-53250

In the Linux kernel, the following vulnerability has been resolved: xsk: cache csumstart/csumoffset to fix TOCTOU in xskskbmetadata The TX metadata area resides in the UMEM buffer which is memory-mapped and concurrently writable by userspace. In xskskbmetadata, csumstart and csumoffset are read...

7.8CVSS5.8AI score0.00145EPSS

Exploits0References4

Positive Technologies•added 4 days ago•16 views

PT-2026-52933

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the mailbox-test component where a double-free occurs during the process of freeing channels. This happens because the RX channel can be aliased to the TX channel if i...

5.7AI score0.00177EPSS

Exploits0References11

Cvelist•added 5 days ago•25 views

CVE-2026-53250 xsk: cache csum_start/csum_offset to fix TOCTOU in xsk_skb_metadata()

7.8CVSS0.00145EPSS

Exploits0References3

AstraLinux•added 2026/06/19 11:10 a.m.•3 views

Astra Linux – Vulnerability in Qemu

A reentrancy issue related to DMA was discovered in the Tulip device emulation in QEMU. When Tulip reads from or writes to the rx/tx descriptor, or copies a rx/tx frame, it does not check whether the destination address is its own MMIO address. This can cause the device to trigger MMIO handlers...

7.8CVSS6.9AI score0.00411EPSS

Exploits1References2

AstraLinux•added 2026/06/19 11:10 a.m.•4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: powerpc/pseries/iommu: The IOMMU incorrectly marks the MMIO range in DDW. The Power Hypervisor may allocate MMIO windows that intersect with the Dynamic DMA Window DDW range, which involves 32-bit addressing. These MMIO pages...

5.5CVSS6.2AI score0.00201EPSS

Exploits0References2

AstraLinux•added 2026/06/19 11:10 a.m.•4 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: RISC-V: Ensure that port I/O string accessors actually work properly. Fixed port I/O string accessors such as insb’, outsb’, etc., which use the physical PCI port I/O address instead of the corresponding memory mapping to acce...

6AI score0.00173EPSS

Exploits0References1

AstraLinux•added 2026/06/19 11:10 a.m.•2 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: x86/tdx: Fixed the “in-kernel MMIO” check TDX only supports MMIO operations initiated by the kernel. The handlemmio function checks whether the VE exception occurred in the kernel and rejects the operation if it did. However, the...

7.8CVSS6.3AI score0.00247EPSS

Exploits0References2

AstraLinux•added 2026/06/19 11:10 a.m.•3 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: x86/tdx: Fixed a data leak in the mmioread function. The mmioread function calls a TDVMCALL to retrieve MMIO data for a given address from the VMM. Sean noticed that mmioread inadvertently exposes the value of an initialized...

3.3CVSS5.9AI score0.00199EPSS

Exploits0References2

AstraLinux•added 2026/06/19 11:10 a.m.•1 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: Ring-Buffer: Do not trigger WARNON due to a commitoverrun. When reading a memory-mapped buffer, the reader page is simply swapped out with the last page written to the write buffer. If the reader page is the same as the commit...

7.8CVSS5.9AI score0.00172EPSS

Exploits0References2

AstraLinux•added 2026/06/19 11:10 a.m.•4 views

Astra Linux – Vulnerability found in Linux 5.15, Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Fixed the issue where immediate work requests were flushed to the completion queue. The opcode of the send queue element was correctly set during the flushing of immediate work requests in the post-sendqueue operation...

5.9AI score0.00206EPSS

Exploits0References1

AstraLinux•added 2026/06/19 11:10 a.m.•6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: drm/xe: Open-coded GGTT MMIO access protection. GGTT MMIO access is currently protected by hotplug drmdeventer, which works correctly when the driver loads successfully and is later unbound or unloaded. However, if the driver loa...

7.8CVSS4.6AI score0.00129EPSS

Exploits0References1

RedhatCVE•added 2026/06/05 6:48 p.m.•10 views

CVE-2024-36332

Improper isolation of GPU HW register space could allow a privileged attacker in malicious Guest Virtual Machine VM to perform unauthorized access to specific victim range of GPU MMIO register space, potentially causing the host OS to reboot and creating a Denial of Service DOS condition...

6.8CVSS5.5AI score0.00105EPSS

Exploits0References1

Microsoft CVE•added 2026/05/28 8:12 a.m.•6 views

misc: ibmasm: fix OOB MMIO read in ibmasm_handle_mouse_interrupt()

...

7.1CVSS5.4AI score0.00131EPSS

Exploits0

SUSE CVE•added 2026/05/28 3:54 a.m.•9 views

SUSE CVE-2026-46022

In the Linux kernel, the following vulnerability has been resolved: misc: ibmasm: fix OOB MMIO read in ibmasmhandlemouseinterrupt ibmasmhandlemouseinterrupt performs an out-of-bounds MMIO read when the queue reader or writer index from hardware exceeds REMOTEQUEUESIZE 60. A compromised service...

5.5CVSS5.8AI score0.00131EPSS

Exploits0References3

SUSE CVE•added 2026/05/28 3:53 a.m.•13 views

SUSE CVE-2026-46064

In the Linux kernel, the following vulnerability has been resolved: ibmasm: fix heap over-read in ibmasmsendi2omessage The ibmasmsendi2omessage function uses getdotcommandsize to compute the byte count for memcpytoio, but this value is derived from user-controlled fields in the dotcommandheader...

5.5CVSS5.8AI score0.00126EPSS

Exploits0References3