CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

41 matches found

AstraLinux•added 2026/06/19 11:10 a.m.•5 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: crypto: virtio/akcipher – Fixed stack overflows when using memcpy. The value of sizeofstruct virtiocryptoakciphersessionpara is less than sizeofstruct virtiocryptoopctrlreq::u. Copying more bytes from the stack variable leads ...

7.8CVSS6.2AI score0.0027EPSS

Exploits0References2

Tenable Nessus•added 2026/06/06 12:0 a.m.•8 views

EulerOS Virtualization 2.13.0 : qemu (EulerOS-SA-2026-2195)

According to the versions of the qemu packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A flaw was found in QEMU. A specially crafted VMDK image could trigger an out-of-bounds read vulnerability, potentially leading to a...

7.5CVSS5.6AI score0.00794EPSS

Exploits1References4

AstraLinux•added 2026/05/20 5:53 a.m.•6 views

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerability has been resolved: crypto: akcipher – default implementation for setting a private key Changes from v1: - The default implementation of setpubkey was removed. It is assumed that an implementation must always have this callback defined, as there are...

5.7AI score0.00211EPSS

Exploits0References1

Tenable Nessus•added 2026/04/22 12:0 a.m.•5 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-013628)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013628 advisory. In the Linux kernel, the following vulnerability has been resolved: crypto: akcipher - default implementation for setting a private key Changes from v1: removed the...

5.6AI score0.00211EPSS

Exploits0References4

Tenable Nessus•added 2026/04/21 12:0 a.m.•6 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-011269)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011269 advisory. In the Linux kernel, the following vulnerability has been resolved: crypto: akcipher - default implementation for setting a private key Changes from v1: removed the...

5.9AI score0.00211EPSS

Exploits0References4

OSV•added 2026/04/17 1:3 p.m.•4 views

OESA-2026-1990 qemu security update

QEMU is a FAST! processor emulator using dynamic translation to achieve good emulation speed. Security Fixes: A flaw was found in the virtio-crypto device of QEMU. A malicious guest operating system can exploit a missing length limit in the AKCIPHER path, leading to uncontrolled memory allocation...

5.5CVSS5.7AI score0.00137EPSS

Exploits0References2

OSV•added 2026/04/17 1:3 p.m.•6 views

OESA-2026-1989 qemu security update

5.5CVSS7.1AI score0.00137EPSS

Exploits0References2

OSV•added 2026/04/17 1:3 p.m.•6 views

OESA-2026-1988 qemu security update

5.5CVSS5.7AI score0.00137EPSS

Exploits0References2

NVD•added 2026/02/18 9:16 p.m.•9 views

CVE-2025-14876

A flaw was found in the virtio-crypto device of QEMU. A malicious guest operating system can exploit a missing length limit in the AKCIPHER path, leading to uncontrolled memory allocation. This can result in a denial of service DoS on the host system by causing the QEMU process to terminate...

5.5CVSS0.00137EPSS

Exploits0References2

OSV•added 2026/02/18 9:16 p.m.•5 views

AZL-78174 CVE-2025-14876 affecting package qemu 9.1.0-1

5.5CVSS7.1AI score0.00137EPSS

Exploits0References1

OSV•added 2026/02/18 9:16 p.m.•5 views

UBUNTU-CVE-2025-14876

5.5CVSS5.8AI score0.00137EPSS

Exploits0References4

Debian CVE•added 2026/02/18 8:47 p.m.•6 views

CVE-2025-14876

5.5CVSS7.1AI score0.00137EPSS

Exploits0

CVE•added 2026/02/18 8:47 p.m.•38 views

CVE-2025-14876

CVE-2025-14876 affects the virtio-crypto device in QEMU. The AKCIPHER path has a missing length limit, causing unbounded memory allocation and potential host DoS (QEMU process termination) via a malicious guest. Affected products include qemu/kvm; advisories from SUSE openSUSE and other vendors r...

5.5CVSS5.4AI score0.00137EPSS

Exploits0References2

UbuntuCve•added 2026/01/14 3:16 p.m.•5 views

CVE-2025-71113

In the Linux kernel, the following vulnerability has been resolved: crypto: afalg - zero initialize memory allocated via sockkmalloc Several crypto user API contexts and requests allocated with sockkmalloc were left uninitialized, relying on callers to set fields explicitly. This resulted in the...

5.5CVSS5.9AI score0.00123EPSS

Exploits0References35

SUSE CVE•added 2025/12/25 1:4 a.m.•5 views

SUSE CVE-2022-50731

In the Linux kernel, the following vulnerability has been resolved: crypto: akcipher - default implementation for setting a private key Changes from v1: removed the default implementation from setpubkey: it is assumed that an implementation must always have this callback defined as there are no u...

5.5CVSS6.4AI score0.00211EPSS

Exploits0References9

Tenable Nessus•added 2025/12/25 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2022-50731

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - crypto: akcipher - default implementation for setting a private key Changes from v1: removed the default implementation from setpubkey: it is assumed that an...

6.1AI score0.00211EPSS

Exploits0References3