CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1105 matches found

OSV•added 2025/08/01 8:43 a.m.•2 views

CLSA-2025-1754037789 Fix of 5 CVEs

Focal update: v5.4.291 upstream stable release LP: 2106002 // CVE-2025-21760 // CVE-url: https://ubuntu.com/security/CVE-2025-21760 - ndisc: extend RCU protection in ndiscsendskb Focal update: v5.4.291 upstream stable release LP: 2106002 // CVE-2025-21761 // CVE-url:...

7.8CVSS6.8AI score0.00193EPSS

Exploits0References1

Microsoft CVE•added 2025/07/11 7:0 a.m.•2 views

openvswitch: Fix unsafe attribute parsing in output_userspace()

...

5.5CVSS7.2AI score0.00102EPSS

Exploits0

Tenable Nessus•added 2025/07/10 12:0 a.m.•7 views

Amazon Linux 2 : kernel (ALASKERNEL-5.15-2025-079)

The version of kernel installed on the remote host is prior to 5.15.182-123.190. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.15-2025-079 advisory. In the Linux kernel, the following vulnerability has been resolved: media: streamzap: fix race between...

7.8CVSS6.2AI score0.00087EPSS

Exploits0References32

SUSE CVE•added 2025/07/04 2:38 p.m.•1 views

SUSE CVE-2025-38146

In the Linux kernel, the following vulnerability has been resolved: net: openvswitch: Fix the dead loop of MPLS parse The unexpected MPLS packet may not end with the bottom label stack. When there are many stacks, The label count value has wrapped around. A dead loop occurs, soft lockup/CPU stuck...

6.5CVSS6.5AI score0.00082EPSS

Exploits0References22

OSV•added 2025/07/03 9:15 a.m.•8 views

AZL-64487 CVE-2025-38146 affecting package kernel for versions less than 6.6.96.1-1

7.8CVSS6.8AI score0.00082EPSS

Exploits0References1

NVD•added 2025/07/03 9:15 a.m.•3 views

CVE-2025-38146

7.8CVSS0.00082EPSS

Exploits0References9

Debian CVE•added 2025/07/03 8:35 a.m.•3 views

CVE-2025-38146

7.8CVSS6.2AI score0.00082EPSS

Exploits0

CVE•added 2025/07/03 8:35 a.m.•71 views

CVE-2025-38146

CVE-2025-38146 affects the Linux kernel net/openvswitch MPLS parsing. The issue can cause a dead loop when MPLS label stacks wrap, with a UBSAN array-index-out-of-bounds (index -1) in key_extract_l3l4 and related stack traces, potentially leading to soft lockup/CPU stall. A fix for the MPLS parse...

7.8CVSS7.2AI score0.00082EPSS

Exploits0References9Affected Software1

RedhatCVE•added 2025/06/19 6:43 p.m.•4 views

CVE-2022-49959

A flaw was found in the openvswitch module in the Linux kernel. A missing release of allocated memory when an error occurs will cause a memory leak, potentially impacting system performance and resulting in a denial of service...

5.5CVSS6.2AI score0.00049EPSS

Exploits0References4

SUSE CVE•added 2025/06/19 3:45 a.m.•2 views

SUSE CVE-2022-49959

In the Linux kernel, the following vulnerability has been resolved: openvswitch: fix memory leak at failed datapath creation ovsdpcmdnew-ovsdpchange-ovsdpsetupcallportids allocates array via kmalloc. If for some reason newvport fails during ovsdpcmdnew dp-upcallportids must be freed. Add missing...

3.3CVSS6AI score0.00049EPSS

Exploits0References3

OSV•added 2025/06/18 11:15 a.m.•1 views

DEBIAN-CVE-2022-49959

5.5CVSS5.2AI score0.00049EPSS

Exploits0References1

Cvelist•added 2025/06/18 11:0 a.m.•7 views

CVE-2022-49959 openvswitch: fix memory leak at failed datapath creation

0.00049EPSS

Exploits0References3

OSV•added 2025/06/18 11:0 a.m.•3 views

CVE-2022-49959 openvswitch: fix memory leak at failed datapath creation

5.5CVSS5.2AI score0.00049EPSS

Exploits0References6

RedHat Linux•added 2025/06/11 1:1 a.m.•2 views

kernel: inet: inet_defrag: prevent sk release while still in use

In the Linux kernel, the following vulnerability has been resolved: inet: inetdefrag: prevent sk release while still in use iplocalout and other functions can pass skb-sk as function argument. If the skb is a fragment and reassembly happens before such function call returns, the sk must not be...

5.5CVSS6.3AI score0.00078EPSS

Exploits1References5

Tenable Nessus•added 2025/06/09 12:0 a.m.•4 views

NewStart CGSL MAIN 7.02 : openvswitch Multiple Vulnerabilities (NS-SA-2025-0090)

The remote NewStart CGSL host, running version MAIN 7.02, has openvswitch packages installed that are affected by multiple vulnerabilities: - A flaw was found in Open vSwitch that allows ICMPv6 Neighbor Advertisement packets between virtual machines to bypass OpenFlow rules. This issue may allow ...

7.5CVSS6.6AI score0.00045EPSS

Exploits0References5

SUSE CVE•added 2025/05/30 1:26 a.m.•1 views

SUSE CVE-2025-37998

In the Linux kernel, the following vulnerability has been resolved: openvswitch: Fix unsafe attribute parsing in outputuserspace This patch replaces the manual Netlink attribute iteration in outputuserspace with nlaforeachnested, which ensures that only well-formed attributes are processed...

3.3CVSS7.8AI score0.00102EPSS

Exploits0References14

Tenable Nessus•added 2025/05/30 12:0 a.m.•6 views

Photon OS 5.0: Openvswitch PHSA-2025-5.0-0527

An update of the openvswitch package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0527. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

7.5CVSS7.7AI score0.00045EPSS

Exploits0References2

NVD•added 2025/05/29 2:15 p.m.•14 views

CVE-2025-37998

5.5CVSS0.00102EPSS

Exploits0References11

OSV•added 2025/05/29 2:15 p.m.•1 views

DEBIAN-CVE-2025-37998

5.5CVSS5.7AI score0.00102EPSS

Exploits0References1

OSV•added 2025/05/29 2:15 p.m.•0 views

UBUNTU-CVE-2025-37998