CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10817 matches found

Positive Technologies•added 2023/07/27 12:0 a.m.•3 views

PT-2025-53058

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.5.0-rc1-dirty 1236 Description A flaw exists in the Linux kernel's iommufd subsystem related to handling batch carry operations. Specifically, the end variable was not being set correctly, leading to a potentia...

4.6CVSS6.3AI score0.00189EPSS

Exploits0

OpenVAS•added 2023/07/27 12:0 a.m.•44 views

Ubuntu: Security Advisory (USN-6251-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.9AI score0.08894EPSS

Exploits15References2

OSV•added 2023/07/26 3:15 p.m.•8 views

USN-6252-1 linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-4.15, linux-dell300x, linux-gcp, linux-gcp-4.15, linux-hwe, linux-kvm, linux-oracle, linux-snapdragon vulnerabilities

It was discovered that the ext4 file system implementation in the Linux kernel contained a use-after-free vulnerability. An attacker could use this to construct a malicious ext4 file system image that, when mounted, could cause a denial of service system crash. CVE-2022-1184 It was discovered tha...

7.8CVSS7AI score0.02154EPSS

Exploits5References14

Tenable Nessus•added 2023/07/26 12:0 a.m.•167 views

Ubuntu 22.04 LTS : Linux kernel (OEM) vulnerabilities (USN-6249-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6249-1 advisory. Ruihan Li discovered that the memory management subsystem in the Linux kernel contained a race condition when accessing VMAs in certain conditions, leadi...

7.8CVSS7.9AI score0.01551EPSS

Exploits1References3

Tenable Nessus•added 2023/07/26 12:0 a.m.•40 views

Ubuntu 16.04 ESM : Linux kernel vulnerabilities (USN-6254-1)

The remote Ubuntu 16.04 ESM host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6254-1 advisory. Jordy Zomer and Alexandra Sandulescu discovered that syscalls invoking the doprlimit function in the Linux kernel did not properly handle speculative...

7.8CVSS7.6AI score0.02154EPSS

Exploits4References13

Tenable Nessus•added 2023/07/26 12:0 a.m.•32 views

Ubuntu 22.04 LTS : Linux kernel (OEM) vulnerabilities (USN-6248-1)

The remote Ubuntu 22.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6248-1 advisory. It was discovered that the network queuing discipline implementation in the Linux kernel contained a null pointer dereference in some situations. A local...

7.8CVSS7.8AI score0.15783EPSS

Exploits17References8

Ubuntu•added 2023/07/25 9:55 p.m.•74 views

USN-6248-1: Linux kernel (OEM) vulnerabilities

It was discovered that the network queuing discipline implementation in the Linux kernel contained a null pointer dereference in some situations. A local attacker could use this to cause a denial of service system crash. CVE-2022-47929 It was discovered that a race condition existed in Adreno GPU...

7.8CVSS7.4AI score0.15783EPSS

Exploits17

NVD•added 2023/07/25 4:15 p.m.•17 views

CVE-2023-3772

A flaw was found in the Linux kernel’s IP framework for transforming packets XFRM subsystem. This issue may allow a malicious user with CAPNETADMIN privileges to directly dereference a NULL pointer in xfrmupdateaeparams, leading to a possible kernel crash and denial of service...

5.5CVSS6.2AI score0.00454EPSS

Exploits0References12

NVD•added 2023/07/25 4:15 p.m.•15 views

CVE-2023-3773

A flaw was found in the Linux kernel’s IP framework for transforming packets XFRM subsystem. This issue may allow a malicious user with CAPNETADMIN privileges to cause a 4 byte out-of-bounds read of XFRMAMTIMERTHRESH when parsing netlink attributes, leading to potential leakage of sensitive heap...

5.5CVSS6.9AI score0.00237EPSS

Exploits0References5

UbuntuCve•added 2023/07/25 4:15 p.m.•30 views

CVE-2023-3773

5.5CVSS6.6AI score0.00237EPSS

Exploits0References12

Prion•added 2023/07/25 4:15 p.m.•54 views

Out-of-bounds

1.4CVSS5.5AI score0.00237EPSS

Exploits0References4Affected Software2

Prion•added 2023/07/25 4:15 p.m.•27 views

Null pointer dereference

1.4CVSS5.3AI score0.00454EPSS

Exploits0References12Affected Software4

UbuntuCve•added 2023/07/25 4:15 p.m.•36 views

CVE-2023-3772

5.5CVSS6.6AI score0.00454EPSS

Exploits0References19

OSV•added 2023/07/25 4:15 p.m.•1 views

UBUNTU-CVE-2023-3773

5.5CVSS6.5AI score0.00237EPSS

Exploits0References13

Vulnrichment•added 2023/07/25 3:47 p.m.•10 views

CVE-2023-3773 Kernel: xfrm: out-of-bounds read of xfrma_mtimer_thresh nlattr

5.5CVSS6.8AI score0.00237EPSS

Exploits0References3

CVE•added 2023/07/25 3:47 p.m.•233 views

CVE-2023-3773

The CVE-2023-3773 entry describes a flaw in the Linux kernel’s XFRM (IP framework) where parsing netlink attributes can trigger a 4-byte out-of-bounds read of XFRMA_MTIMER_THRESH. This could allow a malicious user with CAP_NET_ADMIN to leak sensitive heap data to userspace. The provided descripti...

5.5CVSS6AI score0.00237EPSS

Exploits0References5Affected Software1

Cvelist•added 2023/07/25 3:47 p.m.•23 views

CVE-2023-3772 Kernel: xfrm: null pointer dereference in xfrm_update_ae_params()

5.5CVSS6.4AI score0.00454EPSS

Exploits0References7

CVE•added 2023/07/25 3:47 p.m.•430 views

CVE-2023-3772

CVE-2023-3772 is a Linux kernel vulnerability in the IPsec XFRM subsystem that allows a local attacker with CAP_NET_ADMIN to dereference a NULL pointer in xfrm_update_ae_params(), potentially crashing the kernel and causing a denial of service. Connected documents confirm the root cause as a NULL...

5.5CVSS6.1AI score0.00454EPSS

Exploits0References12Affected Software3