CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

40 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•5 views

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: crypto: virtio/akcipher – Fixed a stack overflow issue in memcpy. The value of sizeofstruct virtiocryptoakciphersessionpara is less than sizeofstruct virtiocryptoopctrlreq::u. Copying more bytes from the stack variable leads t...

7.8CVSS6.3AI score0.00019EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•3 views

Astra Linux - уязвимость в linux-5.10, linux-5.15, linux

In the Linux kernel, the following vulnerability has been resolved: crypto: akcipher – default implementation for setting a private key Changes from v1: - The default implementation of setpubkey was removed. It is assumed that an implementation must always have this callback defined, as there are...

5.9AI score0.0004EPSS

Exploits0References1

Tenable Nessus•added 2026/04/22 12:0 a.m.•2 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013628)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013628 advisory. In the Linux kernel, the following vulnerability has been resolved: crypto: akcipher - default implementation for setting a private key Changes from v1: removed the...

5.6AI score0.0004EPSS

Exploits0References4

Tenable Nessus•added 2026/04/21 12:0 a.m.•3 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-011269)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011269 advisory. In the Linux kernel, the following vulnerability has been resolved: crypto: akcipher - default implementation for setting a private key Changes from v1: removed the...

5.9AI score0.0004EPSS

Exploits0References4

OSV•added 2026/04/17 1:3 p.m.•2 views

OESA-2026-1990 qemu security update

QEMU is a FAST! processor emulator using dynamic translation to achieve good emulation speed. Security Fixes: A flaw was found in the virtio-crypto device of QEMU. A malicious guest operating system can exploit a missing length limit in the AKCIPHER path, leading to uncontrolled memory allocation...

5.5CVSS5.7AI score0.00005EPSS

Exploits0References2

OSV•added 2026/04/17 1:3 p.m.•1 views

OESA-2026-1989 qemu security update

5.5CVSS7.1AI score0.00005EPSS

Exploits0References2

OSV•added 2026/04/17 1:3 p.m.•1 views

OESA-2026-1988 qemu security update

5.5CVSS5.7AI score0.00005EPSS

Exploits0References2

OSV•added 2026/02/18 9:16 p.m.•2 views

AZL-78174 CVE-2025-14876 affecting package qemu 9.1.0-1

A flaw was found in the virtio-crypto device of QEMU. A malicious guest operating system can exploit a missing length limit in the AKCIPHER path, leading to uncontrolled memory allocation. This can result in a denial of service DoS on the host system by causing the QEMU process to terminate...

5.5CVSS7.1AI score0.00005EPSS

Exploits0References1

NVD•added 2026/02/18 9:16 p.m.•4 views

CVE-2025-14876

5.5CVSS0.00005EPSS

Exploits0References2

OSV•added 2026/02/18 9:16 p.m.•4 views

UBUNTU-CVE-2025-14876

5.5CVSS5.8AI score0.00005EPSS

Exploits0References4

Debian CVE•added 2026/02/18 8:47 p.m.•5 views

CVE-2025-14876

5.5CVSS7.1AI score0.00005EPSS

Exploits0

CVE•added 2026/02/18 8:47 p.m.•17 views

CVE-2025-14876

CVE-2025-14876 is associated with a flaw in the QEMU virtio-crypto device where the AKCIPHER path lacks a proper length check, allowing a guest to trigger uncontrolled memory allocation and cause a host DoS. This conclusion is supported by Red Hat’s advisory describing a memory-allocation DoS vec...

5.5CVSS5.4AI score0.00005EPSS

Exploits0References2

UbuntuCve•added 2026/01/14 3:16 p.m.•4 views

CVE-2025-71113

In the Linux kernel, the following vulnerability has been resolved: crypto: afalg - zero initialize memory allocated via sockkmalloc Several crypto user API contexts and requests allocated with sockkmalloc were left uninitialized, relying on callers to set fields explicitly. This resulted in the...

5.5CVSS5.9AI score0.00033EPSS

Exploits0References35

SUSE CVE•added 2025/12/25 1:4 a.m.•4 views

SUSE CVE-2022-50731

In the Linux kernel, the following vulnerability has been resolved: crypto: akcipher - default implementation for setting a private key Changes from v1: removed the default implementation from setpubkey: it is assumed that an implementation must always have this callback defined as there are no u...

5.5CVSS6.4AI score0.0004EPSS

Exploits0References9

Tenable Nessus•added 2025/12/25 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2022-50731

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - crypto: akcipher - default implementation for setting a private key Changes from v1: removed the default implementation from setpubkey: it is assumed that an...

6.1AI score0.0004EPSS

Exploits0References3

EUVD•added 2025/12/24 3:30 p.m.•3 views

EUVD-2022-55758

5.9AI score0.0004EPSS

Exploits0References7

NVD•added 2025/12/24 1:15 p.m.•4 views

CVE-2022-50731

0.0004EPSS

Exploits0References6

UbuntuCve•added 2025/12/24 1:15 p.m.•3 views

CVE-2022-50731

5.9AI score0.0004EPSS

Exploits0References7

OSV•added 2025/12/24 1:15 p.m.•1 views

UBUNTU-CVE-2022-50731

5.8AI score0.0004EPSS

Exploits0References8

CVE•added 2025/12/24 12:22 p.m.•7 views

CVE-2022-50731

CVE-2022-50731 affects the Linux kernel crypto/akcipher subsystem: the default implementation for setting a private key was removed, along with a default pub-key setter, because some algorithms (e.g., ECDSA) only support verification and lack all callbacks. The patch removes the default set_pub_k...

6AI score0.0004EPSS

Exploits0References6

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by