CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

123 matches found

RedhatCVE•added 2023/04/12 6:30 a.m.•47 views

CVE-2023-29532

The Mozilla Foundation Security Advisory describes this flaw as: A local attacker can trick the Mozilla Maintenance Service into applying an unsigned update file by pointing the service at an update file on a malicious SMB server. The update file can be replaced after the signature check, before...

7.5CVSS5.8AI score0.00185EPSS

Exploits0References4

SUSE CVE•added 2023/02/15 4:8 a.m.•4 views

SUSE CVE-2019-16137

An issue was discovered in the spin crate before 0.5.2 for Rust, when RwLock is used. Because memory ordering is mishandled, two writers can acquire the lock at the same time, violating mutual exclusion...

7.8CVSS7.4AI score0.01423EPSS

Exploits0References3

SUSE CVE•added 2023/02/15 3:30 a.m.•4 views

SUSE CVE-2022-3996

If an X.509 certificate contains a malformed policy constraint and policy processing is enabled, then a write lock will be taken twice recursively. On some operating systems most widely: Windows this results in a denial of service when the affected process hangs. Policy processing being enabled o...

7.5CVSS6.4AI score0.0123EPSS

Exploits0References4

Veracode•added 2023/01/06 8:19 a.m.•63 views

Improper Locking

openssl is vulnerable to denial of service DoS attacks. When an X.509 certificate contains a malformed policy constraint and policy processing is enabled, then a write lock will be taken twice recursively. On some operating systems this results in a denial of service when the affected process han...

7.5CVSS7.2AI score0.0123EPSS

Exploits0References5Affected Software2

Tenable Nessus•added 2022/12/21 12:0 a.m.•40 views

SUSE SLED15 / SLES15 Security Update : openssl-3 (SUSE-SU-2022:4586-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:4586-1 advisory. - A buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checkin...

7.5CVSS7.6AI score0.91153EPSS

Exploits2References6

Github Security Blog•added 2022/12/13 6:30 p.m.•26 views

Denial of service by double-checked locking in openssl-src

7.5CVSS7.4AI score0.0123EPSS

Exploits0References4Affected Software1

OSV•added 2022/12/13 6:30 p.m.•32 views

GHSA-VR8J-HGMM-JH9R Denial of service by double-checked locking in openssl-src

8.7CVSS6.2AI score0.0123EPSS

Exploits0References4

OSV•added 2022/12/13 4:15 p.m.•4 views

ALPINE-CVE-2022-3996

7.5CVSS6.9AI score0.0123EPSS

Exploits0References1

OSV•added 2022/12/13 4:15 p.m.•4 views

DEBIAN-CVE-2022-3996

7.5CVSS7AI score0.0123EPSS

Exploits0References1

AlpineLinux•added 2022/12/13 3:43 p.m.•62 views

CVE-2022-3996

7.5CVSS7.1AI score0.0123EPSS

Exploits0

CNNVD•added 2022/12/13 12:0 a.m.•2 views

OpenSSL 安全漏洞

OpenSSL is an open source capable general-purpose cryptographic library from the OpenSSL team that implements the Secure Sockets Layer SSLv2/v3 and Secure Transport Layer TLSv1 protocols. It supports a variety of cryptographic algorithms, including symmetric ciphers, hashing algorithms, secure...

7.5CVSS7AI score0.0123EPSS

Exploits0References7

UbuntuCve•added 2022/12/13 12:0 a.m.•56 views

CVE-2022-3996

7.5CVSS7AI score0.0123EPSS

Exploits0References3

OSV•added 2021/05/31 3:39 p.m.•14 views

GSD-2021-1000048 locking/qrwlock: Fix ordering in queued_write_lock_slowpath()

locking/qrwlock: Fix ordering in queuedwritelockslowpath This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.19.189 by commit...

7.2AI score

Exploits0

OSV•added 2021/05/31 3:39 p.m.•8 views

GSD-2021-1000050 locking/qrwlock: Fix ordering in queued_write_lock_slowpath()

7.2AI score

Exploits0

OSV•added 2021/05/31 3:39 p.m.•12 views

GSD-2021-1000047 locking/qrwlock: Fix ordering in queued_write_lock_slowpath()

7.2AI score

Exploits0

OSV•added 2021/05/31 3:39 p.m.•23 views

UVI-2021-1000050 locking/qrwlock: Fix ordering in queued_write_lock_slowpath()

7.2AI score

Exploits0

Positive Technologies•added 2021/04/15 12:0 a.m.•6 views

PT-2021-8278 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the locking mechanism in the Linux kernel, specifically in the queued write lock slowpath function. A reader can acquire the lock without holding the wait lock,...

7.8CVSS6.3AI score0.01549EPSS

Exploits5References906

OSV•added 2019/09/09 12:15 p.m.•2 views

DEBIAN-CVE-2019-16137

7.5CVSS7.3AI score0.01423EPSS

Exploits0References1

Veracode•added 2019/05/02 5:8 a.m.•54 views

Denial Of Service (DoS)

kernel is vulnerable to denial of service DoS. The vulnerability exists in sound/core/control.c as it does not ensure possession of a read/write lock...

4.6CVSS5.6AI score0.00498EPSS

Exploits0References17Affected Software2

UbuntuCve•added 2014/12/09 11:59 p.m.•25 views

CVE-2014-9065

common/spinlock.c in Xen 4.4.x and earlier does not properly handle read and write locks, which allows local x86 guest users to cause a denial of service write denial or NMI watchdog timeout and host crash via a large number of read requests, a different vulnerability to CVE-2014-9066...

4.4CVSS7.2AI score0.00374EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by