CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2827 matches found

Debian CVE•added 2025/09/16 8:11 a.m.•4 views

CVE-2023-53298

In the Linux kernel, the following vulnerability has been resolved: nfc: fix memory leak of seio context in nfcgenlseio The callback context for sending/receiving APDUs to/from the selected secure element is allocated inside nfcgenlseio and supposed to be eventually freed in seiocb callback...

5.5CVSS5.2AI score0.00136EPSS

Exploits0

Tenable Nessus•added 2025/09/14 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2025-39797

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xfrm: Duplicate SPI Handling The issue originates when Strongswan initiates an XFRMMSGALLOCSPI Netlink message, which triggers the kernel function xfrmallocspi...

7.8CVSS7.3AI score0.00147EPSS

Exploits0References4

OSV•added 2025/09/12 4:15 p.m.•6 views

AZL-70760 CVE-2025-39797 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: xfrm: Duplicate SPI Handling The issue originates when Strongswan initiates an XFRMMSGALLOCSPI Netlink message, which triggers the kernel function xfrmallocspi. This function is expected to ensure uniqueness of the Security...

7.8CVSS5.8AI score0.00147EPSS

Exploits0References1

NVD•added 2025/09/12 4:15 p.m.•7 views

CVE-2025-39797

7.8CVSS0.00147EPSS

Exploits0References5

OSV•added 2025/09/12 4:15 p.m.•1 views

UBUNTU-CVE-2025-39797

7.8CVSS5.9AI score0.00147EPSS

Exploits0References24

CVE•added 2025/09/12 3:59 p.m.•21 views

CVE-2025-39797

CVE-2025-39797 concerns the Linux kernel xfrm duplicate SPI handling. The vulnerability arises when Strongswan triggers an XFRM_NETLINK_ALLOC_SPI request, enabling xfrm_alloc_spi() to return success for an SPI already in use, causing multiple inbound SAs to share the same SPI (distinguished only ...

7.8CVSS6.3AI score0.00147EPSS

Exploits0References5Affected Software1

Cvelist•added 2025/09/12 3:59 p.m.•10 views

CVE-2025-39797 xfrm: Duplicate SPI Handling

0.00147EPSS

Exploits0References5

OSV•added 2025/09/12 3:59 p.m.•7 views

CVE-2025-39797 xfrm: Duplicate SPI Handling

7.8CVSS6.5AI score0.00147EPSS

Exploits0References8

Amazon•added 2025/09/08 12:0 a.m.•6 views

Important: kernel6.12

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: jfs: fix array-index-out-of-bounds read in addmissingindices CVE-2025-38204 In the Linux kernel, the following vulnerability has been resolved: exfat: fix double free in delayedfree CVE-2025-38206 In the Linux...

7.8CVSS6.6AI score0.00156EPSS

Exploits0

NVD•added 2025/09/07 4:15 p.m.•5 views

CVE-2025-39733

In the Linux kernel, the following vulnerability has been resolved: team: replace team lock with rtnl lock syszbot reports various ordering issues for lower instance locks and team lock. Switch to using rtnl lock for protecting team device, similar to bonding. Based on the patch by Tetsuo Handa...

5.5CVSS0.00134EPSS

Exploits0References3

OSV•added 2025/09/07 4:15 p.m.•2 views

UBUNTU-CVE-2025-39733

5.5CVSS5.7AI score0.00134EPSS

Exploits0References6

Positive Technologies•added 2025/09/07 12:0 a.m.•4 views

PT-2025-36414

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contained an issue where the team lock experienced ordering issues with lower instance locks. The team lock was replaced with an rtnl lock, similar to the bonding...

6.1AI score0.00134EPSS

Exploits0References6

Tenable Nessus•added 2025/09/06 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2025-38727

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: netlink: avoid infinite retry looping in netlinkunicast netlinkattachskb checks for the...

5.5CVSS6.2AI score0.00154EPSS

Exploits0References2

SUSE CVE•added 2025/09/04 11:23 p.m.•1 views

SUSE CVE-2025-38727

In the Linux kernel, the following vulnerability has been resolved: netlink: avoid infinite retry looping in netlinkunicast netlinkattachskb checks for the socket's read memory allocation constraints. Firstly, it has: rmem skrcvbuf to check if the just increased rmem value fits into the socket's...

5.5CVSS6.4AI score0.00154EPSS

Exploits0References22

OSV•added 2025/09/04 4:15 p.m.•1 views

DEBIAN-CVE-2025-38727

5.5CVSS5.7AI score0.00154EPSS

Exploits0References1

NVD•added 2025/09/04 4:15 p.m.•4 views

CVE-2025-38727

5.5CVSS0.00154EPSS

Exploits0References13

OSV•added 2025/09/04 4:15 p.m.•2 views

UBUNTU-CVE-2025-38727

5.5CVSS6.6AI score0.00154EPSS

Exploits0References19

OSV•added 2025/09/04 3:33 p.m.•2 views

CVE-2025-38727 netlink: avoid infinite retry looping in netlink_unicast()

5.5CVSS6AI score0.00154EPSS

Exploits0References14

CVE•added 2025/09/04 3:33 p.m.•36 views

CVE-2025-38727

Linux kernel vulnerability CVE-2025-38727 affects netlink in the Linux kernel. A bug in netlink_attachskb() may cause an infinite retry loop when memory checks for skb->truesize against sk_rcvbuf are inconclusive (rmem + skb->truesize > sk_rcvbuf), potentially triggering an rcu_sched sta...

5.5CVSS5.8AI score0.00154EPSS

Exploits0References13Affected Software1

Cvelist•added 2025/09/04 3:33 p.m.•7 views

CVE-2025-38727 netlink: avoid infinite retry looping in netlink_unicast()

0.00154EPSS

Exploits0References9

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by