CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2443 matches found

RedhatCVE•added 2025/10/23 9:14 a.m.•1 views

CVE-2025-12105

A flaw was found in the asynchronous message queue handling of the libsoup library, widely used by GNOME and WebKit-based applications to manage HTTP/2 communications. When network operations are aborted at specific timing intervals, an internal message queue item may be freed twice due to missin...

7.5CVSS5.9AI score0.00377EPSS

Exploits0References3

CNNVD•added 2025/10/23 12:0 a.m.•2 views

libsoup 资源管理错误漏洞

libsoup is a GNOME HTTP client/server library from the GNOME Project. A resource management error vulnerability exists in libsoup that stems from a lack of state synchronization in asynchronous message queue processing, which could lead to post-release reuse and denial of service attacks...

7.5CVSS6.3AI score0.00377EPSS

Exploits0References3

Ubuntu•added 2025/10/22 6:4 p.m.•8 views

USN-7835-3: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - ACPI drivers; - Ublk userspace block driver; -...

8.8CVSS7AI score0.00571EPSS

Exploits1

Ubuntu•added 2025/10/22 4:31 p.m.•5 views

USN-7835-2: Linux kernel (Real-time) vulnerabilities

8.8CVSS7AI score0.00571EPSS

Exploits1

NVD•added 2025/10/22 2:15 p.m.•5 views

CVE-2023-53712

In the Linux kernel, the following vulnerability has been resolved: ARM: 9317/1: kexec: Make smp stop calls asynchronous If a panic is triggered by a hrtimer interrupt all online cpus will be notified and set offline. But as highlighted by commit 19dbdcb8039c "smp: Warn on function calls from...

0.00173EPSS

Exploits0References4

OSV•added 2025/10/22 2:15 p.m.•3 views

DEBIAN-CVE-2023-53712

5.2AI score0.00173EPSS

Exploits0References1

OSV•added 2025/10/22 2:15 p.m.•2 views

UBUNTU-CVE-2023-53712

5.7AI score0.00173EPSS

Exploits0References7

CVE•added 2025/10/22 1:23 p.m.•15 views

CVE-2023-53724

The CVE-2023-53724 issue affects the Linux kernel mfd: pcf50633-adc driver. The root cause was a potential memleak where req, allocated in pcf50633_adc_async_read(), could not be freed if adc_enqueue_request() failed to enqueue it. The fix ensures the return value is checked and the allocated req...

6AI score0.00175EPSS

Exploits0References8

Cvelist•added 2025/10/22 1:23 p.m.•8 views

CVE-2023-53724 mfd: pcf50633-adc: Fix potential memleak in pcf50633_adc_async_read()

In the Linux kernel, the following vulnerability has been resolved: mfd: pcf50633-adc: Fix potential memleak in pcf50633adcasyncread req is allocated in pcf50633adcasyncread, but adcenqueuerequest could fail to insert the req into queue. We need to check the return value and free it in the case o...

0.00175EPSS

Exploits0References8

Cvelist•added 2025/10/22 1:23 p.m.•8 views

CVE-2023-53712 ARM: 9317/1: kexec: Make smp stop calls asynchronous

0.00173EPSS

Exploits0References4

CVE•added 2025/10/22 1:23 p.m.•19 views

CVE-2023-53712

CVE-2023-53712 relates to the Linux kernel ARM kexec crash handling where the SMP stop notification can be triggered synchronously with interrupts disabled during a crash path. The root issue occurs when a panic is caused by a hrtimer interrupt, which would notify all online CPUs and set them off...

6.2AI score0.00173EPSS

Exploits0References4

OSV•added 2025/10/22 1:23 p.m.•3 views

CVE-2023-53712 ARM: 9317/1: kexec: Make smp stop calls asynchronous

6.5AI score0.00173EPSS

Exploits0References7

NVD•added 2025/10/22 10:15 a.m.•4 views

CVE-2025-6833

The All in One Time Clock Lite – Tracking Employee Time Has Never Been Easier plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 2.0 via the 'aiotimeclocklitejs' AJAX action due to missing validation on a user controlled key. This makes it...

4.3CVSS0.00163EPSS

Exploits0References2

CVE•added 2025/10/22 9:24 a.m.•11 views

CVE-2025-6833

The CVE-2025-6833 entry concerns the WordPress plugin All in One Time Clock Lite (

4.3CVSS5.3AI score0.00163EPSS

Exploits0References2

CNNVD•added 2025/10/22 12:0 a.m.•4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the smp stop call not being made in an asynchronous manner, which could cause the kernel to crash...

6.1AI score0.00173EPSS

Exploits0References5

RedhatCVE•added 2025/10/21 11:18 p.m.•2 views

CVE-2025-11678

Stack-based Buffer Overflow in lwsadnsparselabel in warmcat libwebsockets allows, when the LWSWITHSYSASYNCDNS flag is enabled during compilation, to overflow the labelstack, when the attacker is able to sniff a DNS request in order to craft a response with a matching id containing a label longer...

7.6CVSS6.7AI score0.0027EPSS

Exploits0References5

Tenable Nessus•added 2025/10/21 12:0 a.m.•3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987682)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987682 advisory. In the Linux kernel, the following vulnerability has been resolved: driver core: fix deadlock in deviceattach In deviceattach function, The lock holding logic is as...

5.5CVSS5.8AI score0.00203EPSS

Exploits0References4