CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Debian CVE•added 2025/05/09 6:41 a.m.•18 views

CVE-2025-37840

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: brcmnand: fix PM resume warning Fixed warning on PM resume as shown below caused due to uninitialized struct nandoperation that checks chip select field : WARNONop-cs = nanddevntargets&chip-base 14.588522 ----------...

7.8CVSS5.7AI score0.00265EPSS

Exploits0

SUSE CVE•added 2025/05/09 4:54 a.m.•2 views

SUSE CVE-2022-49905

In the Linux kernel, the following vulnerability has been resolved: net/smc: Fix possible leaked pernet namespace in smcinit In smcinit, registerpernetsubsys&smcnetstatops is called without any error handling. If it fails, registering of &smcnetops won't be reverted. And if smcnlinit fails,...

5.5CVSS6.3AI score0.00157EPSS

SUSE CVE•added 2025/05/09 3:23 a.m.•3 views

SUSE CVE-2025-37814

In the Linux kernel, the following vulnerability has been resolved: tty: Require CAPSYSADMIN for all usages of TIOCLSELMOUSEREPORT This requirement was overeagerly loosened in commit 2f83e38a095f "tty: Permit some TIOCLSETSEL modes without CAPSYSADMIN", but as it turns out, 1 the logic I...

5.5CVSS6.9AI score0.00165EPSS

Exploits0References6

CNNVD•added 2025/05/09 12:0 a.m.•1 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an incorrect sb-ssequence check in jbd2...

7.8CVSS6.6AI score0.00265EPSS

BDU FSTEC•added 2025/05/09 12:0 a.m.•1 views

The vulnerability of the tcf_ct_handle_fragments() function in the net/sched/act_ct.c module of the net/sched/networking subsystem of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the tcfcthandlefragments function in the net/sched/actct.c module of the net/sched/networking subsystem of the Linux operating system is related to insufficient checking of exceptional states. Exploiting this vulnerability could allow an attacker to compromise the...

7.8CVSS7.2AI score0.00233EPSS

Exploits0References9Affected Software1

NVD•added 2025/05/08 7:15 a.m.•17 views

CVE-2025-37819

In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v2m: Prevent use after free of gicv2mgetfwnode With ACPI in place, gicv2mgetfwnode is registered with the pci subsystem as pcimsigetfwnodecb, which may get invoked at runtime during a PCI host bridge probe. But, the...

7.8CVSS0.00167EPSS

Exploits0References10

CVE•added 2025/05/08 6:26 a.m.•132 views

CVE-2025-37819

CVE-2025-37819 affects the Linux kernel and relates to a use-after-free in irqchip/gic-v2m: gicv2m_get_fwnode() registered as pci_msi_get_fwnode_cb(). With ACPI, this callback can be invoked during PCI host bridge probing but is marked __init and freed prematurely, risking a crash (as per the vul...

7.8CVSS5.3AI score0.00167EPSS

Exploits0References10Affected Software1

OSV•added 2025/05/08 6:26 a.m.•8 views

CVE-2025-37819 irqchip/gic-v2m: Prevent use after free of gicv2m_get_fwnode()

7.8CVSS6AI score0.00167EPSS

Exploits0References13

Cvelist•added 2025/05/08 6:26 a.m.•11 views

CVE-2025-37819 irqchip/gic-v2m: Prevent use after free of gicv2m_get_fwnode()

0.00167EPSS

Exploits0References8

OSV•added 2025/05/07 4:10 p.m.•1 views

USN-7489-2 linux-realtime vulnerability

A security issue was discovered in the Linux kernel. An attacker could possibly use this to compromise the system. This update corrects flaws in the following subsystems: - Timer subsystem; CVE-2025-21813...

5.5CVSS7AI score0.00175EPSS

Exploits0References2

Ubuntu•added 2025/05/07 12:12 p.m.•14 views

USN-7489-2: Linux kernel (Real-time) vulnerability

5.5CVSS6.3AI score0.00175EPSS

Exploits0

OSV•added 2025/05/07 10:33 a.m.•3 views

USN-7496-5 linux-azure-fips vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Block layer subsystem; - Character device driver; - Hardware crypto device drivers; - GPU drivers; - Media drivers;...

Ubuntu•added 2025/05/07 10:33 a.m.•23 views

USN-7496-5: Linux kernel (Azure FIPS) vulnerabilities

7.8CVSS7AI score0.00295EPSS

Exploits3

OSV•added 2025/05/07 10:22 a.m.•3 views

USN-7496-4 linux-azure vulnerabilities

Ubuntu•added 2025/05/07 9:11 a.m.•16 views

USN-7499-1: Linux kernel (Azure) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Microsoft Azure Network Adapter MANA driver; - Timer subsystem; CVE-2025-21813, CVE-2025-21953...

5.5CVSS6.7AI score0.00175EPSS

Exploits0

OSV•added 2025/05/07 9:11 a.m.•1 views

USN-7499-1 linux-azure, linux-azure-6.11 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Microsoft Azure Network Adapter MANA driver; - Timer subsystem; CVE-2025-21813, CVE-2025-21953...

5.5CVSS6.6AI score0.00175EPSS

Exploits0References3

OSV•added 2025/05/07 7:38 a.m.•4 views

USN-7496-2 linux-aws-fips, linux-fips, linux-gcp-fips vulnerabilities

OSV•added 2025/05/07 7:22 a.m.•4 views

USN-7496-1 linux, linux-aws, linux-aws-hwe, linux-gcp, linux-gcp-4.15, linux-hwe, linux-kvm, linux-oracle vulnerabilities

SUSE CVE•added 2025/05/07 2:19 a.m.•2 views

SUSE CVE-2022-49916

In the Linux kernel, the following vulnerability has been resolved: rose: Fix NULL pointer dereference in rosesendframe The syzkaller reported an issue: KASAN: null-ptr-deref in range 0x0000000000000380-0x0000000000000387 CPU: 0 PID: 4069 Comm: kworker/0:15 Not tainted...

5.5CVSS6.3AI score0.00149EPSS