CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7400 matches found

The Hacker News•added 2024/03/29 11:19 a.m.•29 views

The Golden Age of Automated Penetration Testing is Here

Network penetration testing plays a vital role in detecting vulnerabilities that can be exploited. The current method of performing pen testing is pricey, leading many companies to undertake it only when necessary, usually once a year for their compliance requirements. This manual approach often...

7.3AI score

Exploits0

Github Security Blog•added 2024/03/28 5:53 p.m.•22 views

Podman affected by CVE-2024-1753 container escape at build time

Impact What kind of vulnerability is it? Who is impacted? Users running containers with root privileges allowing a container to run with read/write access to the host system files when selinux is not enabled. With selinux enabled, some read access is allowed. Patches From @nalind . This is a patc...

8.6CVSS6.6AI score0.00076EPSS

Exploits0References27Affected Software2

RedhatCVE•added 2024/03/25 5:53 p.m.•24 views

CVE-2021-47145

In the Linux kernel, the following vulnerability has been resolved: btrfs: do not BUGON in linktofixupdir While doing error injection testing I got the following panic kernel BUG at fs/btrfs/tree-log.c:1862! invalid opcode: 0000 1 SMP NOPTI CPU: 1 PID: 7836 Comm: mount Not tainted 5.13.0-rc1+ 305...

5.5CVSS7.4AI score0.00012EPSS

Exploits0References4

Kitploit•added 2024/03/25 11:30 a.m.•66 views

Radamsa - A General-Purpose Fuzzer

Radamsa is a test case generator for robustness testing, a.k.a. a fuzzer. It is typically used to test how well a program can withstand malformed and potentially malicious inputs. It works by reading sample files of valid data and generating interestringly different outputs from them. The main...

9.8CVSS9.6AI score0.92835EPSS

Exploits42References1

NVD•added 2024/03/25 10:15 a.m.•13 views

CVE-2021-47172

In the Linux kernel, the following vulnerability has been resolved: iio: adc: ad7124: Fix potential overflow due to non sequential channel numbers Channel numbering must start at 0 and then not have any holes, or it is possible to overflow the available storage. Note this bug was introduced as pa...

5.5CVSS7.6AI score0.00018EPSS

Exploits0References4

Cvelist•added 2024/03/25 9:16 a.m.•18 views

CVE-2021-47172 iio: adc: ad7124: Fix potential overflow due to non sequential channel numbers

7AI score0.00018EPSS

Exploits0References4

OSV•added 2024/03/25 9:15 a.m.•3 views

CVE-2021-47146

In the Linux kernel, the following vulnerability has been resolved: mld: fix panic in mldnewpack mldnewpack doesn't allow to allocate high order page, only order-0 allocation is allowed. If headroom size is too large, a kernel panic could occur in skbput. Test commands: ip netns del A ip netns de...

5.5CVSS5.2AI score

Exploits0References8

NVD•added 2024/03/25 9:15 a.m.•18 views

CVE-2021-47145

5.5CVSS6.6AI score0.00012EPSS

Exploits0References8

OSV•added 2024/03/25 9:15 a.m.•4 views

CVE-2021-47145

5.5CVSS5.4AI score

Exploits0References8

CVE•added 2024/03/25 9:7 a.m.•86 views

CVE-2021-47145

CVE-2021-47145 affects the Linux kernel (btrfs) where a BUG_ON in link_to_fixup_dir can trigger a kernel panic during error paths in log recovery. The description shows a replay/recover flow (replay_one_buffer, btrfs_recover_log_trees, open_ctree) panicking with an invalid opcode in fs/btrfs/tree...

5.5CVSS6.8AI score0.00012EPSS

Exploits0References8Affected Software1

Debian CVE•added 2024/03/25 9:7 a.m.•17 views

CVE-2021-47145

5.5CVSS7AI score0.00012EPSS

Exploits0

CNNVD•added 2024/03/25 12:0 a.m.•1 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. The Linux kernel suffers from a security vulnerability that stems from a kernel panic caused during injection testing...

5.5CVSS6.5AI score0.00012EPSS

Exploits0References11

UbuntuCve•added 2024/03/25 12:0 a.m.•21 views

CVE-2021-47145

5.5CVSS6.4AI score0.00012EPSS

Exploits0References11

Fedora•added 2024/03/23 12:49 a.m.•47 views

[SECURITY] Fedora 40 Update: python3.6-3.6.15-27.fc40

Python 3.6 package for developers. This package exists to allow developers to test their code against an older version of Python. This is not a full Python stack and if you wish to run your applications with Python 3.6, see other distributions that support it, such as CentOS or RHEL with Software...

9.8CVSS7.3AI score0.89361EPSS

Exploits3

OSV•added 2024/03/22 11:15 p.m.•2 views

PYSEC-2024-257

Mobile Security Framework MobSF is a pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis. In version 3.9.5 Beta and prior, MobSF does not perform any input validation when extracting the hostnames in android:host, so requests can also ...

7.5CVSS6.9AI score0.00591EPSS

Exploits1References4

OSV•added 2024/03/22 10:12 p.m.•34 views

CVE-2024-29190 MobSF SSRF Vulnerability on assetlinks_check(act_name, well_knowns)

7.5CVSS7.1AI score0.00591EPSS

Exploits1References5

Malwarebytes•added 2024/03/22 6:43 p.m.•20 views

Canada revisits decision to ban Flipper Zero

In February 2024 the Canadian government announced plans to ban the sale of the Flipper Zero, mainly because of its reported use to steal cars. The Flipper Zero is a portable device that can be used in penetration testing with a focus on wireless devices and access control systems. If that doesnt...

7.2AI score

Exploits0