CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

73963 matches found

CVE•added 2026/05/27 12:57 p.m.•26 views

CVE-2026-46063

The CVE-2026-46063 issue affects the Linux kernel with x86 shadow stack (shstk) handling of sigreturn. Root cause: during a shadow-stack sigframe read, the kernel previously held the mmap lock while verifying VMA flags to distinguish shadow stack memory. A page fault during this read could trigge...

5.5CVSS5.8AI score0.00094EPSS

Exploits0References5Affected Software1

Cvelist•added 2026/05/27 12:57 p.m.•35 views

CVE-2026-46063 x86/shstk: Prevent deadlock during shstk sigreturn

In the Linux kernel, the following vulnerability has been resolved: x86/shstk: Prevent deadlock during shstk sigreturn During sigreturn the shadow stack signal frame is popped. The kernel does this by reading the shadow stack using normal read accesses. When it can't assume the memory is shadow...

0.00094EPSS

Exploits0References5

SUSE CVE•added 2026/05/27 12:57 p.m.•10 views

SUSE CVE-2026-49014

In GDAL 3.1.0 through 3.13.0, scanForGeometryContainers in the netCDF driver allows code execution via a stack-based buffer overflow. It reads a geometry attribute into a fixed-size stack buffer without validating the attribute length. The attacker embeds the exploit as an oversized geometry...

7.4CVSS6.7AI score0.00102EPSS

Exploits0References3

CVE•added 2026/05/27 12:18 p.m.•20 views

CVE-2026-45957

CVE-2026-45957 documents a Linux kernel RCU bug: missing recursion protection in rcu_read_unlock() can cause a deadloop when softirq handling runs under ftrace, as shown in the call stack involving raise_softirq_irqoff() and rcu_read_unlock_special(). The issue was fixed by commits that adjust ir...

7.1CVSS5.8AI score0.00125EPSS

Exploits0References5Affected Software1

Cvelist•added 2026/05/27 12:16 p.m.•39 views

CVE-2026-45876 arm64/gcs: Fix error handling in arch_set_shadow_stack_status()

In the Linux kernel, the following vulnerability has been resolved: arm64/gcs: Fix error handling in archsetshadowstackstatus allocgcs returns an error-encoded pointer on failure, which comes from dommap, not NULL. The current NULL check fails to detect errors, which could lead to using an invali...

0.00198EPSS

Exploits0References3

CVE•added 2026/05/27 12:16 p.m.•21 views

CVE-2026-45876

CVE-2026-45876 affects the Linux kernel (arm64 architecture) in the arch_set_shadow_stack_status flow. The bug arises from error handling in alloc_gcs(), which can return an error-encoded pointer from do_mmap() instead of NULL. A NULL-based check fails to detect these errors, risking use of an in...

5.5CVSS5.8AI score0.00198EPSS

Exploits0References3Affected Software1

Debian CVE•added 2026/05/27 12:16 p.m.•12 views

CVE-2026-45876

5.5CVSS5.7AI score0.00198EPSS

Exploits0

Cvelist•added 2026/05/27 12:14 p.m.•36 views

CVE-2025-71306 ima: Fix stack-out-of-bounds in is_bprm_creds_for_exec()

In the Linux kernel, the following vulnerability has been resolved: ima: Fix stack-out-of-bounds in isbprmcredsforexec KASAN reported a stack-out-of-bounds access in imaappraisemeasurement from isbprmcredsforexec: BUG: KASAN: stack-out-of-bounds in imaappraisemeasurement+0x12dc/0x16a0 Read of siz...

0.00189EPSS

Exploits0References2

CVE•added 2026/05/27 12:14 p.m.•17 views

CVE-2025-71306

CVE-2025-71306 is a Linux kernel vulnerability affecting the Integrity Measurement Architecture (IMA). The issue is a stack-out-of-bounds access in the function ima_appraise_measurement when processing bprm_creds for exec, traced to an incorrect offset calculation caused by using container_of on ...

7.1CVSS5.8AI score0.00189EPSS

Exploits0References2Affected Software1

Debian CVE•added 2026/05/27 12:14 p.m.•8 views

CVE-2025-71306

7.1CVSS5.7AI score0.00189EPSS

Exploits0

SUSE CVE•added 2026/05/27 6:14 a.m.•4 views

SUSE CVE-2019-9719

A stack-based buffer overflow in the subtitle decoder in Libav 12.3 allows attackers to corrupt the stack via a crafted video file in Matroska format, because srttoass in libavcodec/srtdec.c misuses snprintf. NOTE: Third parties dispute that this is a vulnerability because “no evidence of a...

8.8CVSS7.7AI score0.02025EPSS

Exploits1References3

SUSE CVE•added 2026/05/27 4:13 a.m.•7 views

SUSE CVE-2023-43632

As noted in the “VTPM.md” file in the eve documentation, “VTPM is a server listening on port 8877 in EVE, exposing limited functionality of the TPM to the clients. VTPM allows clients to execute tpm2-tools binaries from a list of hardcoded options” The communication with this server is done using...

9.9CVSS7.3AI score0.00545EPSS

Exploits0References3

Snyk•added 2026/05/27 3:23 a.m.•10 views

Stack-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Stack-based Buffer Overflow via the scanForGeometryContainers function. An attacker can achieve arbitrary code execution by supplying a crafted NetCDF file containing an oversized geometry attribute, which is read into a fixed-size stac...

7.8CVSS6.4AI score0.00102EPSS

Exploits0References2

NVD•added 2026/05/27 2:16 a.m.•20 views

CVE-2026-9631

A vulnerability was detected in UTT HiPER 1250GW up to 3.2.7-210907-180535. Affected by this vulnerability is the function strcpy of the file /goform/formConfigFastDirectionW of the component Web Management Interface. Performing a manipulation of the argument Profile results in stack-based buffer...

9CVSS0.00438EPSS

Exploits0References4