CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

7.1CVSS6.7AI score0.02523EPSS

Linux Distros Unpatched Vulnerability : CVE-2018-14617

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the Linux kernel through 4.17.10. There is a NULL pointer dereference and panic in hfspluslookup in fs/hfsplus/dir.c when opening a...

Exploits1References3

4.7CVSS6.2AI score0.00269EPSS

Linux Distros Unpatched Vulnerability : CVE-2016-6136

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Race condition in the auditlogsingleexecvearg function in kernel/auditsc.c in the Linux kernel through 4.7 allows local users to bypass intended character-set...

Tenable Nessus•added 2025/03/04 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2015-8613

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Stack-based buffer overflow in the megasasctrlgetinfo function in QEMU, when built with SCSI MegaRAID SAS HBA emulation support, allows local guest users to cau...

6.5CVSS6.8AI score0.00411EPSS

Tenable Nessus•added 2025/03/04 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2014-1337

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - WebKit, as used in Apple Safari before 6.1.4 and 7.x before 7.0.4, allows remote attackers to execute arbitrary code or cause a denial of service memory...

6.8CVSS8.8AI score0.02334EPSS

Tenable Nessus•added 2025/03/04 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2012-3216

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, 5.0 Update 36 and...

2.6CVSS8.1AI score0.02878EPSS

9.8CVSS7AI score0.73927EPSS

Linux Distros Unpatched Vulnerability : CVE-2017-17790

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The lazyinitialize function in lib/resolv.rb in Ruby through 2.4.3 uses Kernelopen, which might allow Command Injection attacks, as demonstrated by a...

Exploits6References2

Tenable Nessus•added 2025/03/04 12:0 a.m.•19 views

Linux Distros Unpatched Vulnerability : CVE-2016-4343

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The pharmakedirstream function in ext/phar/dirstream.c in PHP before 5.6.18 and 7.x before 7.0.3 mishandles zero-size ././@LongLink files, which allows remote...

8.8CVSS8.1AI score0.0421EPSS

Tenable Nessus•added 2025/03/04 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2019-8814

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 13.2 and iPadOS 13.2, tvOS 13.2, Safari 13.0.3, iTune...

9.3CVSS6.8AI score0.02563EPSS

Tenable Nessus•added 2025/03/04 12:0 a.m.•8 views

Linux Distros Unpatched Vulnerability : CVE-2016-1571

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The paginginvlpg function in include/asm-x86/paging.h in Xen 3.3.x through 4.6.x, when using shadow mode paging or nested virtualization is enabled, allows loca...

6.3CVSS7AI score0.01277EPSS

5.5CVSS6.1AI score0.04925EPSS

Linux Distros Unpatched Vulnerability : CVE-2015-8723

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The AirPDcapPacketProcess function in epan/crypt/airpdcap.c in the 802.11 dissector in Wireshark 1.12.x before 1.12.9 and 2.0.x before 2.0.1 does not validate t...

Tenable Nessus•added 2025/03/04 12:0 a.m.•11 views

Linux Distros Unpatched Vulnerability : CVE-2017-9228

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod in Ruby through 2.4.1 and mbstring in PHP through 7.1.5. A heap out-of-bounds write occurs ...

9.8CVSS7.5AI score0.06261EPSS

Tenable Nessus•added 2025/03/04 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2015-3206

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The checkPassword function in python-kerberos does not authenticate the KDC it attempts to communicate with, which allows remote attackers to cause a denial of...

8.1CVSS7.6AI score0.02303EPSS

7.5CVSS6.6AI score0.05064EPSS

Linux Distros Unpatched Vulnerability : CVE-2017-7957

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - XStream through 1.4.9, when a certain denyTypes workaround is not used, mishandles attempts to create an instance of the primitive type 'void' during...

6.5CVSS6.8AI score0.02666EPSS

Linux Distros Unpatched Vulnerability : CVE-2018-1000852

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FreeRDP FreeRDP 2.0.0-rc3 released version before commit 205c612820dac644d665b5bb1cdf437dc5ca01e3 contains a Other/Unknown vulnerability in...

Tenable Nessus•added 2025/03/04 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2020-1931

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A command execution issue was found in Apache SpamAssassin prior to 3.4.3. Carefully crafted nefarious Configuration .cf files can be configured to run system...

9.3CVSS6.6AI score0.06464EPSS

5CVSS7AI score0.18814EPSS

Linux Distros Unpatched Vulnerability : CVE-2015-2153

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The rpkirtrpduprint function in print-rpki-rtr.c in the TCP printer in tcpdump before 4.7.2 allows remote attackers to cause a denial of service out-of-bounds...

Exploits5References2

7.9CVSS8.2AI score0.06572EPSS

Linux Distros Unpatched Vulnerability : CVE-2012-0870

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Heap-based buffer overflow in process.c in smbd in Samba 3.0, as used in the file-sharing service on the BlackBerry PlayBook tablet before 2.0.0.7971 and other...

7.8CVSS6.3AI score0.0047EPSS

Linux Distros Unpatched Vulnerability : CVE-2017-15115

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The sctpdopeeloff function in net/sctp/socket.c in the Linux kernel before 4.14 does not check whether the intended netns is used in a peel-off action, which...

7.8CVSS5.6AI score0.00394EPSS

Linux Distros Unpatched Vulnerability : CVE-2017-4966

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in these Pivotal RabbitMQ versions: all 3.4.x versions, all 3.5.x versions, and 3.6.x versions prior to 3.6.9; and these RabbitMQ for PC...