CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

21 matches found

NVD•added 2026/05/28 10:16 a.m.•6 views

CVE-2026-46223

In the Linux kernel, the following vulnerability has been resolved: cgroup: Defer css percpuref kill on rmdir until cgroup is depopulated A chain of commits going back to v7.0 reworked rmdir to satisfy the controller invariant that a subsystem's -cssoffline must not run while tasks are still doin...

0.00024EPSS

Exploits0References2

ATTACKERKB•added 2026/05/28 9:40 a.m.•4 views

CVE-2026-46223

5.6AI score0.00024EPSS

Exploits0References3Affected Software1

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в xen

Inappropriate x86 IOMMU timeout detection/handling: IOMMU processes commands that are issued in parallel with the operation of the CPUs that issue those commands. In the current implementation in Xen, asynchronous notifications of the completion of such commands are not used. Instead, the issuing...

7.1CVSS7AI score0.00036EPSS

Exploits0References1

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2022-41236

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.00986EPSS

Exploits1References4

SUSE CVE•added 2025/09/16 11:31 p.m.•1 views

SUSE CVE-2023-53231

In the Linux kernel, the following vulnerability has been resolved: erofs: Fix detection of atomic context Current check for atomic context is not sufficient as zerofsdecompressqueueendio can be called under rcu lock from blkmqflushpluglist. See the stacktrace 1 In such case we should hand off th...

5.5CVSS6.4AI score0.00032EPSS

Exploits0References15

OSV•added 2025/09/15 2:22 p.m.•1 views

CVE-2023-53231 erofs: Fix detection of atomic context

5.5CVSS6AI score0.00032EPSS

Exploits0References5

NVD•added 2025/08/28 10:15 a.m.•1 views

CVE-2024-58240

In the Linux kernel, the following vulnerability has been resolved: tls: separate no-async decryption request handling from async If we're not doing async, the handling is much simpler. There's no reference counting, we just need to wait for the completion to wake us up and return its result. We...

7.8CVSS0.00026EPSS

Exploits0References6

Debian CVE•added 2025/08/28 9:40 a.m.•2 views

CVE-2024-58240

7.8CVSS6.2AI score0.00026EPSS

Exploits0

OSV•added 2025/08/22 4:0 p.m.•2 views

CVE-2025-38627 f2fs: compress: fix UAF of f2fs_inode_info in f2fs_free_dic

In the Linux kernel, the following vulnerability has been resolved: f2fs: compress: fix UAF of f2fsinodeinfo in f2fsfreedic The decompressioctx may be released asynchronously after I/O completion. If this file is deleted immediately after read, and the kworker of processing postreadwq has not bee...

7.8CVSS6.1AI score0.00032EPSS

Exploits0References7

Fedora•added 2025/06/21 2:13 a.m.•6 views

[SECURITY] Fedora 41 Update: python-pycares-4.9.0-1.fc41

pycares is a Python module which provides an interface to c-ares. c-ares is a C library that performs DNS requests and name resolutions asynchronously...

8.2CVSS7.2AI score0.00508EPSS

Exploits0

Positive Technologies•added 2025/02/05 12:0 a.m.•0 views

PT-2025-16773

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved, related to the wifi ath11k module. The issue occurs when the ath11k module receives a new channel list, and it is processed in an...

7.8CVSS6.7AI score0.00079EPSS

Exploits0

OSV•added 2024/04/04 9:15 a.m.•1 views

DEBIAN-CVE-2024-26800

In the Linux kernel, the following vulnerability has been resolved: tls: fix use-after-free on failed backlog decryption When the decrypt request goes to the backlog and cryptoaeaddecrypt returns -EBUSY, tlsdodecryption will wait until all async decryptions have completed. If one of them fails,...

7.8CVSS5.7AI score0.00032EPSS

Exploits1References1

OSV•added 2024/04/02 7:15 a.m.•0 views

UBUNTU-CVE-2024-26675

In the Linux kernel, the following vulnerability has been resolved: pppasync: limit MRU to 64K syzbot triggered a warning 1 in allocpages: WARNONONCEGFPorder MAXPAGEORDER, gfp Willem fixed a similar issue in commit c0a2a1b0d631 "ppp: limit MRU to 64K" Adopt the same sanity check for...

5.5CVSS6.2AI score0.00015EPSS

Exploits0References27

Tenable Nessus•added 2023/12/15 12:0 a.m.•27 views

SUSE SLES15 Security Update : python-Twisted (SUSE-SU-2023:4830-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:4830-1 advisory. - Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP...

5.3CVSS6.2AI score0.0074EPSS

Exploits1References4

Tenable Nessus•added 2023/11/29 12:0 a.m.•40 views

SUSE SLES15 / openSUSE 15 Security Update : python3-Twisted (SUSE-SU-2023:4607-1)

The remote SUSE Linux SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:4607-1 advisory. - Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP...

5.3CVSS6.3AI score0.0074EPSS

Exploits1References4

Tenable Nessus•added 2023/11/15 12:0 a.m.•40 views

Amazon Linux 2023 : python3-twisted, python3-twisted+tls (ALAS2023-2023-432)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-432 advisory. Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously...

5.3CVSS6.2AI score0.0074EPSS

Exploits1References4

RedhatCVE•added 2023/10/26 3:59 p.m.•37 views

CVE-2023-46137

Twisted is an event-based framework for internet applications. Prior to version 23.10.0rc1, when sending multiple HTTP requests in one TCP packet, twisted.web will process the requests asynchronously without guaranteeing the response order. If one of the endpoints is controlled by an attacker, th...

5.3CVSS6.5AI score0.0074EPSS

Exploits1References3