CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

20 matches found

Ubuntu•added 2026/03/17 6:33 p.m.•3 views

USN-8094-2: Linux kernel vulnerabilities

Qualys discovered that several vulnerabilities existed in the AppArmor Linux kernel Security Module LSM. An unprivileged local attacker could use these issues to load, replace, and remove arbitrary AppArmor profiles causing denial of service, exposure of sensitive information kernel memory, local...

9.8CVSS6.6AI score0.00102EPSS

Exploits0References1

Tenable Nessus•added 2026/01/20 12:0 a.m.•2 views

MiracleLinux 9 : skopeo-1.11.2-0.1.el9 (AXSA:2023-5634:02)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5634:02 advisory. golang: net/http: excessive memory growth in a Go server accepting HTTP/2 requests CVE-2022-41717 golang: crypto/tls: session tickets lack random...

5.3CVSS7.8AI score0.00331EPSS

Exploits1References3

UbuntuCve•added 2025/12/16 4:16 p.m.•1 views

CVE-2025-68313

In the Linux kernel, the following vulnerability has been resolved: x86/CPU/AMD: Add RDSEED fix for Zen5 There's an issue with RDSEED's 16-bit and 32-bit register output variants on Zen5 which return a random value of 0 "at a rate inconsistent with randomness while incorrectly signaling success...

5.7AI score0.00024EPSS

Exploits0References20

OSV•added 2025/12/16 3:39 p.m.•1 views

CVE-2025-68313 x86/CPU/AMD: Add RDSEED fix for Zen5

6.4AI score0.00024EPSS

Exploits0References6

Positive Technologies•added 2025/10/28 12:0 a.m.•1 views

PT-2025-51725

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue with the RDSEED instruction on Zen5 processors, where 16-bit and 32-bit register output variants may return a random value of 0 at an inconsistent rate...

4.6CVSS5.3AI score0.00024EPSS

Exploits0

EUVD•added 2025/10/07 12:30 a.m.•0 views

EUVD-2009-0490

Malware in sbrugna...

7.5CVSS6.1AI score0.0014EPSS

Exploits0References6

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2019-0437

Malware in sbrugna...

5.3CVSS4.6AI score0.00548EPSS

Exploits0References6

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2000-0444

Malware in sbrugna...

2.1CVSS6.4AI score0.00262EPSS

Exploits0References5

Tenable Nessus•added 2025/08/07 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2024-4772

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An HTTP digest authentication nonce value was generated using rand which could lead to predictable values. This vulnerability affects Firefox 126. CVE-2024-4772...

5.9CVSS7.4AI score0.00058EPSS

Exploits1References2

OSV•added 2025/03/06 5:15 a.m.•1 views

CVE-2025-20908

Use of insufficiently random values in Auracast prior to SMR Mar-2025 Release 1 allows adjacent attackers to access Auracast broadcasting...

6.5CVSS5.8AI score

Exploits0References1

Microsoft CVE•added 2024/06/30 2:0 p.m.•2 views

Insufficient randomness in github.com/Masterminds/goutils

...

9.1CVSS7.3AI score0.00336EPSS

Exploits1

RedHat Linux•added 2023/07/12 8:33 a.m.•2 views

c-ares: Insufficient randomness in generation of DNS query IDs

A vulnerability was found in c-ares. This issue occurs when /dev/urandom or RtlGenRandom are unavailable, c-ares will use rand to generate random numbers used for DNS query ids. This is not a CSPRNG, and it is also not seeded by srand, so it will generate predictable output...

6.5CVSS7.3AI score0.00103EPSS

Exploits0References5

Microsoft CVE•added 2023/05/29 7:0 a.m.•1 views

Insufficient randomness in generation of DNS query IDs in c-ares

...

6.5CVSS7.2AI score0.00103EPSS

Exploits0

NCSC•added 2021/03/12 12:0 a.m.•1 views

Vulnerabilities fixed in NetBSD

The developers of NetBSD have fixed a number of vulnerabilities fixed in NetBSD's IP stack. Because packet IDs are not randomly are not randomly generated by default, a malicious party can predict the IP traffic. predict, allowing the malicious party to launch a man-in-the-middle attack to obtain...

6.8AI score

Exploits0

Positive Technologies•added 2021/03/05 12:0 a.m.•2 views

PT-2021-2231 · Contiki · Contiki

Name of the Vulnerable Software and Affected Versions: Contiki version 4.5 Description: The issue is related to the improper randomness of TCP Initial Sequence Numbers ISNs in the Contiki OS uIP protocol stack implementation. This could allow a remote attacker to gain unauthorized access to...

9.1CVSS8.9AI score0.00185EPSS

Exploits0References11

OSV•added 2020/02/28 3:15 p.m.•6 views

CVE-2019-10064

hostapd before 2.6, in EAP mode, makes calls to the rand and random standard library functions without any preceding srand or srandom call, which results in inappropriate use of deterministic values. This was fixed in conjunction with CVE-2016-10743...

7.5CVSS7.4AI score

Exploits0References7

OSV•added 2020/02/28 3:15 p.m.•0 views

UBUNTU-CVE-2019-10064

7.5CVSS7AI score0.01405EPSS

Exploits1References4

OSV•added 2016/05/22 1:59 a.m.•0 views

UBUNTU-CVE-2015-8867

The opensslrandompseudobytes function in ext/openssl/openssl.c in PHP before 5.4.44, 5.5.x before 5.5.28, and 5.6.x before 5.6.12 incorrectly relies on the deprecated RANDpseudobytes function, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via unspecified...

7.5CVSS7.2AI score0.13368EPSS

Exploits0References4

Tenable Nessus•added 2014/05/07 12:0 a.m.•10 views

SSL Certificate High Level of Randomness Detected

Binary data 7111.pasl...

7.3AI score

Exploits0

Tenable Nessus•added 2014/05/07 12:0 a.m.•12 views

SSL Certificate High Level of Randomness Detected

Binary data 7109.pasl...

7.3AI score

Exploits0