CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1401 matches found

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: book3s64/radix: Align the start address of the vmemmap section with PAGESIZE. The vmemmap altmap is a device-provided region used to provide backing storage for struct pages. For each namespace, the altmap should belong to the sa...

5.5CVSS6.6AI score0.00162EPSS

Exploits0References2

AstraLinux•added 5 days ago•4 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: media: imx-jpeg: Buffer size aligned upwards. The hardware can support any image size WxH, with arbitrary W image width and H image height dimensions. The buffer size is aligned upwards for both the encoder and the decoder. The...

7.1CVSS5.6AI score0.00202EPSS

Exploits0References1

AstraLinux•added 5 days ago•3 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: arm64: Do not call NULL in docompatalignmentfixup. doalignmentt32tohandler only fixes alignment faults for specific instructions; otherwise, it returns NULL e.g., for LDREX. When this occurs, a signal is sent to the caller...

5.5CVSS6.5AI score0.00166EPSS

Exploits0References2

AstraLinux•added 5 days ago•1 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: device-dax: The pgoff alignment in daxsetmapping should use ALIGNDOWN instead of ALIGN. Otherwise, vmf-address, which is not aligned with faultsize, will be aligned to the next alignment, which can lead to memory failures due ...

5.5CVSS6.7AI score0.00267EPSS

Exploits0References2

Redos•added 2026/06/15 12:0 a.m.•6 views

ROS-20260615-73-0013

The vulnerability of the smartcardunpackreadsizealign function libfreerdp/utils/smartcardpack.c:1703 is related to the use of the assert or similar operator in the RDP client FreeRDP. Exploiting this vulnerability may allow a remote attacker to cause the application to terminate abnormally...

6.5CVSS6.4AI score0.00256EPSS

Exploits1

Positive Technologies•added 2026/06/13 12:0 a.m.•12 views

PT-2026-49092

Summary The Glances KVM/QEMU monitoring engine glances/plugins/vms/engines/virsh.py passes VM domain names, read directly from virsh list --all output, into f-string command templates that are processed by secure popen. secure popen is explicitly designed to interpret &&, |, and as shell operator...

7.8CVSS6.6AI score0.00021EPSS

Exploits0References5

Positive Technologies•added 2026/06/13 12:0 a.m.•10 views

PT-2026-49093

Summary glances/outdated.py uses pickle.load to read a version-check cache file stored at a predictable, world-accessible path /.cache/glances/glances-version.db or $XDG CACHE HOME/glances/glances-version.db. No integrity check, signature verification, or format validation is performed before...

7.8CVSS6.6AI score0.00044EPSS

Exploits0References5

Packet Storm News•added 2026/06/10 12:0 a.m.•11 views

Grammar-Constrained Decoding Can Jailbreak LLMs into Generating Malicious Code

Large Language Models LLMs are increasingly used for code generation, raising concerns that they may be misused to produce malicious code. Meanwhile, Grammar-Constrained Decoding GCD has been widely adopted to improve the reliability of LLM-generated code by enforcing syntactic validity. In this...

5.3AI score

Exploits0

SUSE CVE•added 2026/06/09 2:20 a.m.•10 views

SUSE CVE-2026-46294

In the Linux kernel, the following vulnerability has been resolved: dm: fix a buffer overflow in ioctl processing Tony Asleson using Claude found a buffer overflow in dm-ioctl in the function retrievestatus: 1. The code in retrievestatus checks that the output string fits into the output buffer a...

4.1CVSS5.8AI score0.00195EPSS

Exploits0References3

RedhatCVE•added 2026/06/08 7:19 p.m.•6 views

CVE-2026-46294

A flaw was found in the Linux kernel, specifically within the dm-ioctl module. An improper pointer alignment in the retrievestatus function could lead to a buffer overflow, where data is written beyond the allocated buffer. Despite this, the vulnerability has no practical security implications as...

7CVSS5.7AI score0.00195EPSS

Exploits0References4

OSV•added 2026/06/08 5:16 p.m.•2 views

UBUNTU-CVE-2026-46294

5.6AI score0.00195EPSS

Exploits0References11

Cvelist•added 2026/06/08 3:46 p.m.•35 views

CVE-2026-46294 dm: fix a buffer overflow in ioctl processing

0.00195EPSS

Exploits0References8

EUVD•added 2026/06/08 3:46 p.m.•20 views

EUVD-2026-35160

5.8AI score0.00195EPSS

Exploits0References8

Positive Technologies•added 2026/06/08 12:0 a.m.•12 views

PT-2026-47353

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A buffer overflow exists in the vrealloc node align function. When a request is made to shrink an allocation size old size and a new allocation is required due to NUMA node or alignment...

9.1CVSS5.6AI score0.00457EPSS

Exploits1References62

Positive Technologies•added 2026/06/08 12:0 a.m.•9 views

PT-2026-47366

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A buffer overflow exists in the retrieve status function within dm-ioctl. The issue occurs when the outptr variable is aligned to the next 8-byte boundary using align ptroutptr without...

9.1CVSS5.6AI score0.00457EPSS

Exploits1References67

ATTACKERKB•added 2026/06/03 3:49 p.m.•4 views

CVE-2026-46254

In the Linux kernel, the following vulnerability has been resolved: AppArmor: Allow apparmor to handle unaligned dfa tables The dfa tables can originate from kernel or userspace and 8-byte alignment isn't always guaranteed and as such may trigger unaligned memory accesses on various architectures...

5.7AI score0.00114EPSS

Exploits0References5Affected Software1

CNNVD•added 2026/06/03 12:0 a.m.•6 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the AppArmor module’s dfa tables not being aligned by 8 bytes. This vulnerability may lead to...

5.5CVSS5.3AI score0.00114EPSS

Exploits0References4

GithubExploit•added 2026/05/30 9:47 a.m.•93 views

CVE-2026-Bowtie2-OOB

CVE-2026-XXXXX: Bowtie2 Out-of-Bounds Read via Crafted BAM...

5.9AI score

Exploits0

OSV•added 2026/05/28 11:40 a.m.•4 views

SUSE-SU-2026:21860-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 16.0 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2023-2058: x86/CPU: Fix FPDSS on Zen1 bsc1243603. - CVE-2024-14027: xattr: switch to CLASSfd bsc1259420. - CVE-2025-40181: x86/kvm: Force legacy PCI hole to UC when...

9.8CVSS6.6AI score0.01527EPSS

Exploits9References455

CVE•added 2026/05/28 9:35 a.m.•22 views

CVE-2026-46130

The CVE-2026-46130 issue affects the Linux kernel dm-verity-fec path. It stems from fec_decode_bufs() assuming parity bytes of the first RS codeword are never split across parity blocks, which can fail when block_size=4096, roots are non-default (e.g., 17) and nbufs configuration aligns so that p...

5.8AI score0.00155EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by