CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7525 matches found

Redos•added 2024/03/13 12:0 a.m.•8 views

ROS-2-1894

2.1894 Multiple Exim Server Vulnerabilities 1. Vulnerability description: CVE-2020-28007 A vulnerability in the Exim message forwarding agent, is related to a symbolic link in the Exim log directory. Exploitation of the vulnerability could allow an attacker to create a special symbolic link to a...

9.8CVSS10AI score0.61061EPSS

Exploits6

OSV•added 2024/03/12 6:15 p.m.•3 views

CVE-2024-1410

Cloudflare quiche was discovered to be vulnerable to unbounded storage of information related to connection ID retirement, which could lead to excessive resource consumption. Each QUIC connection possesses a set of connection Identifiers IDs; see RFC 9000 Section 5.1...

5.3CVSS4AI score

Exploits0References1

RedHat Linux•added 2024/03/12 1:4 a.m.•1 views

kernel: use after free in unix_stream_sendpage

A use-after-free flaw was found in the Linux kernel's afunix component that allows local privilege escalation. The unixstreamsendpage function tries to add data to the last skb in the peer's recv queue without locking the queue. This issue leads to a race condition where the unixstreamsendpage...

7.8CVSS7.1AI score0.00549EPSS

Exploits1References5

BDU FSTEC•added 2024/03/12 12:0 a.m.•3 views

The vulnerability of the IBM MQ Operator, a software tool for managing containerized environments, and the IBM MQ messaging system lies in the fact that critical information is transmitted in plaintext. This allows attackers to disclose protected information.

The vulnerability of the IBM MQ Operator, a software tool for managing containerized environments, and the IBM MQ messaging management system is related to the transmission of critical information in open text format. Exploiting this vulnerability can allow attackers to disclose protected...

6.2CVSS6.4AI score0.00116EPSS

Exploits0References3Affected Software1

OSV•added 2024/03/11 6:15 p.m.•1 views

DEBIAN-CVE-2024-26614

In the Linux kernel, the following vulnerability has been resolved: tcp: make sure init the acceptqueue's spinlocks once When I run syz's reproduction C program locally, it causes the following issue: pvqspinlock: lock 0xffff9d181cd5c660 has corrupted value 0x0! WARNING: CPU: 19 PID: 21160 at...

5.5CVSS5.4AI score0.00173EPSS

Exploits0References1

OSV•added 2024/03/11 6:15 p.m.•0 views

UBUNTU-CVE-2023-52493

In the Linux kernel, the following vulnerability has been resolved: bus: mhi: host: Drop chan lock before queuing buffers Ensure read and write locks for the channel are not taken in succession by dropping the read lock from parsexferevent such that a callback given to client can potentially queu...

5.5CVSS6AI score0.00209EPSS

Exploits0References22

OSV•added 2024/03/11 6:15 p.m.•0 views

UBUNTU-CVE-2024-26614

5.5CVSS6.2AI score0.00173EPSS

Exploits0References21

Positive Technologies•added 2024/03/11 12:0 a.m.•4 views

PT-2024-21896

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to a reconnection failure in the Linux kernel when using NVMe over RDMA. The problem occurs due to a potential ABBA deadlock caused by tag allocation. Specifically,...

7.5CVSS5.6AI score0.00176EPSS

Exploits0

SUSE CVE•added 2024/03/07 4:25 a.m.•0 views

SUSE CVE-2023-52595

In the Linux kernel, the following vulnerability has been resolved: wifi: rt2x00: restart beacon queue when hardware reset When a hardware reset is triggered, all registers are reset, so all queues are forced to stop in hardware interface. However, mac80211 will not automatically stop the queue. ...

4.4CVSS6.1AI score0.00175EPSS

Exploits0References15

OSV•added 2024/03/06 11:10 a.m.•28 views

BIT-MEDIAWIKI-2021-41801

The ReplaceText extension through 1.41 for MediaWiki has Incorrect Access Control. When a user is blocked after submitting a replace job, the job is still run, even if it may be run at a later time due to the job queue backlog...

8.8CVSS8.5AI score0.01124EPSS

Exploits0References3

OSV•added 2024/03/06 11:1 a.m.•17 views

BIT-JENKINS-2021-21670

Jenkins LTS 2.289.1 and earlier allows users to cancel queue items and abort builds of jobs for which they have Item/Cancel permission even when they do not have Item/Read permission...

4.3CVSS5.6AI score0.01982EPSS

Exploits0References3

OSV•added 2024/03/06 7:15 a.m.•3 views

DEBIAN-CVE-2024-26627

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Move scsihostbusy out of host lock for waking up EH handler Inside scsiehwakeup, scsihostbusy is called & checked with host lock every time for deciding if error handler kthread needs to be waken up. This can be too...

5.5CVSS5.3AI score0.00242EPSS

Exploits0References1

OSV•added 2024/03/06 7:15 a.m.•1 views

DEBIAN-CVE-2023-52595

5.5CVSS5.4AI score0.00175EPSS

Exploits0References1

Prion•added 2024/03/06 7:15 a.m.•16 views

Spoofing

6.7AI score0.00175EPSS

Exploits0References7

OSV•added 2024/03/06 7:15 a.m.•1 views

UBUNTU-CVE-2023-52595

5.5CVSS6.1AI score0.00175EPSS

Exploits0References26

Prion•added 2024/03/06 7:15 a.m.•20 views

Spoofing

6.7AI score0.00242EPSS

Exploits0References6

OSV•added 2024/03/06 7:15 a.m.•0 views

UBUNTU-CVE-2024-26623

In the Linux kernel, the following vulnerability has been resolved: pdscore: Prevent race issues involving the adminq There are multiple paths that can result in using the pdsc's adminq. 1 pdscadminqisr and the resulting work from queuework, i.e. pdscworkthread-pdscprocessadminq 2 pdscadminqpost...

4.7CVSS6.3AI score0.00213EPSS

Exploits0References14