CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

26 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•1 views

Astra Linux - уязвимость в linux-5.10, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: pmdomain: arm: scmi: Fixed the issue where genpd leaks occur during provider registration failures. If the ofgenpdaddprovideronecell function fails during the probe phase, the previously created generic power domains are not...

5.8AI score0.00058EPSS

Exploits0References1

NVD•added 2026/04/24 9:16 a.m.•0 views

CVE-2026-6272

A client holding only a read JWT scope can still register itself as a signal provider through the production kuksa.val.v2 OpenProviderStream API by sending ProvideSignalRequest. 1. Obtain any valid token with only read scope. 2. Connect to the normal production gRPC API kuksa.val.v2. 3. Open...

8.5CVSS0.00016EPSS

Exploits0References1

Positive Technologies•added 2026/04/24 12:0 a.m.•1 views

PT-2026-34869

8.5CVSS5.3AI score0.00016EPSS

Exploits0References3

Tenable Nessus•added 2026/04/21 12:0 a.m.•2 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013073)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013073 advisory. In the Linux kernel, the following vulnerability has been resolved: pmdomain: arm: scmi: Fix genpd leak on provider registration failure If ofgenpdaddprovideronecell...

5.6AI score0.00058EPSS

Exploits0References4

Tenable Nessus•added 2026/04/21 12:0 a.m.•2 views

Unity Linux 20.1050e / 20.1070e Security Update: kernel (UTSA-2026-011072)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011072 advisory. In the Linux kernel, the following vulnerability has been resolved: pmdomain: arm: scmi: Fix genpd leak on provider registration failure If ofgenpdaddprovideronecell...

5.6AI score0.00058EPSS

Exploits0References4

RedhatCVE•added 2026/03/26 2:59 p.m.•1 views

CVE-2026-31957

Himmelblau is an interoperability suite for Microsoft Azure Entra ID and Intune. From 3.0.0 to before 3.1.0, if Himmelblau is deployed without a configured tenant domain in himmelblau.conf, authentication is not tenant-scoped. In this mode, Himmelblau can accept authentication attempts for...

10CVSS6AI score0.00359EPSS

Exploits0References1

NVD•added 2026/03/11 8:16 p.m.•3 views

CVE-2026-31957

10CVSS0.00359EPSS

Exploits0References1

EUVD•added 2026/03/11 7:25 p.m.•3 views

EUVD-2026-11321

10CVSS5.9AI score0.00359EPSS

Exploits0References1

CVE•added 2026/03/11 7:25 p.m.•7 views

CVE-2026-31957

Himmelblau (interoperability suite for Microsoft Azure Entra ID and Intune) from versions 3.0.0 up to before 3.1.0 is vulnerable when deployed without a configured tenant domain in himmelblau.conf. In this state, authentication is not tenant-scoped, allowing the system to accept authentication at...

10CVSS5.9AI score0.00359EPSS

Exploits0References1Affected Software1

OSV•added 2026/03/11 7:25 p.m.•1 views

CVE-2026-31957 Himmelblau unset domain configuration can allow any-tenant authentication at first login for remote deployments

10CVSS5.9AI score0.00359EPSS

Exploits0References3

ATTACKERKB•added 2026/03/11 7:25 p.m.•1 views

CVE-2026-31957

10CVSS5.9AI score0.00359EPSS

Exploits0References2Affected Software1

Microsoft CVE•added 2025/12/17 9:3 a.m.•0 views

pmdomain: arm: scmi: Fix genpd leak on provider registration failure

...

6.2CVSS6.7AI score0.00058EPSS

Exploits0

EUVD•added 2025/12/16 3:30 p.m.•1 views

EUVD-2025-203692

In the Linux kernel, the following vulnerability has been resolved: pmdomain: arm: scmi: Fix genpd leak on provider registration failure If ofgenpdaddprovideronecell fails during probe, the previously created generic power domains are not removed, leading to a memory leak and potential kernel cra...

5.8AI score0.00058EPSS

Exploits0References9

NVD•added 2025/12/16 2:15 p.m.•5 views

CVE-2025-68204

0.00058EPSS

Exploits0References8

UbuntuCve•added 2025/12/16 2:15 p.m.•0 views

CVE-2025-68204

5.7AI score0.00058EPSS

Exploits0References35

OSV•added 2025/12/16 2:15 p.m.•0 views

UBUNTU-CVE-2025-68204

5.7AI score0.00058EPSS

Exploits0References36

Cvelist•added 2025/12/16 1:48 p.m.•23 views

CVE-2025-68204 pmdomain: arm: scmi: Fix genpd leak on provider registration failure

0.00058EPSS

Exploits0References8

CVE•added 2025/12/16 1:48 p.m.•7 views

CVE-2025-68204

CVE-2025-68204 : In the Linux kernel pmdomain: arm: scmi, a failure of of_genpd_add_provider_onecell() during probe can leak previously created generic power domains, potentially causing a memory leak and kernel crash via genpd_debug_add(). The fix adds proper error unwinding to release all resou...

6AI score0.00058EPSS

Exploits0References8

OSV•added 2025/12/16 1:48 p.m.•1 views

CVE-2025-68204 pmdomain: arm: scmi: Fix genpd leak on provider registration failure

6.2AI score0.00058EPSS

Exploits0References11

Positive Technologies•added 2025/12/16 12:0 a.m.•1 views

PT-2025-51617

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak can occur in the Linux kernel when of genpd add provider onecell fails during probe. This happens because generic power domains are not removed, potentially leading to a...

6.1AI score0.00058EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by