CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

239 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в qemu

In QEMU 4.2.1, the ati2dblt function in hw/display/ati2d.c may encounter an out-of-bounds situation during calculations. This could cause the QEMU process to crash...

6.5CVSS6.8AI score0.00503EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в qemu

A issue was discovered in QEMU through version 5.1.0. An out-of-bounds memory access was identified in the ATI VGA device implementation. This flaw occurs in the ati2dblt routine in hw/display/ati2d.c, during handling of MMIO write operations via the atimmwrite callback. A malicious guest could...

5.5CVSS6.4AI score0.00137EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux - уязвимость в qemu

A buffer overflow vulnerability was discovered in the ATI VGA device emulation provided by QEMU. This vulnerability occurs in the ati2dblt routine, during the handling of MMIO write operations, when the guest provides invalid values for the destination display parameters. A malicious guest could...

6.5CVSS7.1AI score0.0002EPSS

Exploits1References2

Tenable Nessus•added 2026/01/16 12:0 a.m.•1 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000786)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000786 advisory. The atiremote2probe function in drivers/input/misc/atiremote2.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service...

4.9CVSS6.2AI score0.00061EPSS

Exploits2References29

Tenable Nessus•added 2026/01/15 12:0 a.m.•1 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002543)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002543 advisory. The atiremote2probe function in drivers/input/misc/atiremote2.c in the Linux kernel before 4.5.1 allows physically proximate attackers to cause a denial of service...

4.9CVSS6.2AI score0.00061EPSS

Exploits2References29

RedhatCVE•added 2026/01/09 9:57 a.m.•3 views

CVE-2020-12138

AMD ATI atillk64.sys 5.11.9.0 allows low-privileged users to interact directly with physical memory by calling one of several driver routines that map physical memory into the virtual address space of the calling process. This could enable low-privileged users to achieve NT AUTHORITY\SYSTEM...

9CVSS6.6AI score0.00669EPSS

Exploits1References1

OSSF Malicious Packages•added 2025/11/12 10:25 p.m.•2 views

Malicious code in item-ati-labiomizazaa (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector bb68532e89779687eaa7fce69ff574caab21f304b7ddfa962528f5e41032303b This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score

Exploits0

OSV•added 2025/11/12 10:25 p.m.•1 views

MAL-2025-183100 Malicious code in item-ati-kuika (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 35784702cbe24cb0362d360a9bb26e75bf96e72be1d019edf5a0e063e79817d3 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score

Exploits0

OSSF Malicious Packages•added 2025/11/12 10:25 p.m.•2 views

Malicious code in item-ati-labiomiza (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector c1f18d06616a1acaf5fe7967d42dcd8d66be2de04b6375187d00e8fb57cd6b1c This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score

Exploits0

OSSF Malicious Packages•added 2025/11/12 10:25 p.m.•2 views

Malicious code in item-ati-kubusiduzika (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 3e235fcb48b41d699c5c135e74b0631de4d64ae1b6d0a3f95333434525d4e70a This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score

Exploits0

OSSF Malicious Packages•added 2025/11/12 10:25 p.m.•3 views

Malicious code in item-ati-za (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector e18a39e8367d19426037963043a545c791f54b87c728504dd2bdc83987fb57fe This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score

Exploits0

OSSF Malicious Packages•added 2025/11/12 10:25 p.m.•2 views

Malicious code in item-ati-kubussiduzika (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector d87599b4905db0ed922fc5e79b53e847304adedec7a88e06fcd45c3390d9a317 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score

Exploits0