CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

774 matches found

OSV•added 2025/05/05 3:15 p.m.•0 views

UBUNTU-CVE-2024-58100

In the Linux kernel, the following vulnerability has been resolved: bpf: check changespktdata property for extension programs When processing calls to global sub-programs, verifier decides whether to invalidate all packet pointers in current state depending on the changespktdata property of the...

5.5CVSS6.3AI score0.00049EPSS

Exploits0References5

ATTACKERKB•added 2025/05/02 4:15 p.m.•1 views

CVE-2023-53102

In the Linux kernel, the following vulnerability has been resolved: ice: xsk: disable txq irq before flushing hw iceqpdis intends to stop a given queue pair that is a target of xsk pool attach/detach. One of the steps is to disable interrupts on these queues. It currently is broken in a way that...

5.5CVSS6.1AI score0.00085EPSS

Exploits0References6Affected Software1

OSV•added 2025/05/02 4:15 p.m.•1 views

UBUNTU-CVE-2023-53102

5.5CVSS6.1AI score0.00085EPSS

Exploits0References8

OSV•added 2025/05/01 3:16 p.m.•2 views

UBUNTU-CVE-2022-49895

In the Linux kernel, the following vulnerability has been resolved: cxl/region: Fix decoder allocation crash When an intermediate port's decoders have been exhausted by existing regions, and creating a new region with the port in question in it's hierarchical path is attempted, cxlportattachregio...

5.5CVSS5.7AI score0.00042EPSS

Exploits0References5

SUSE CVE•added 2025/04/24 3:25 a.m.•1 views

SUSE CVE-2025-22120

In the Linux kernel, the following vulnerability has been resolved: ext4: goto right label 'outmmapsem' in ext4setattr Otherwise, if ext4inodeattachjinode fails, a hung task will happen because filemapinvalidateunlock isn't called to unlock mapping-invalidatelock. Like this: EXT4-fs error device...

5.5CVSS7.7AI score0.00038EPSS

Exploits0References16

BDU FSTEC•added 2025/04/18 12:0 a.m.•1 views

The vulnerability of the alloc_ai() function in the driver (drivers/mtd/ubi/attach.c) of the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the allocai function in the driver drivers/mtd/ubi/attach.c of the Linux kernel is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00007EPSS

Exploits0References20Affected Software10

OSV•added 2025/04/16 3:16 p.m.•1 views

DEBIAN-CVE-2025-22120

5.5CVSS5.5AI score0.00038EPSS

Exploits0References1

OSV•added 2025/04/16 3:16 p.m.•0 views

UBUNTU-CVE-2025-22120

5.5CVSS6.2AI score0.00038EPSS

Exploits0References24

Amazon•added 2025/04/16 12:0 a.m.•2 views

Medium: evolution

Issue Overview: An issue was discovered in GNOME Evolution before 3.35.91. By using the proprietary non-RFC6068 "mailto?attach=..." parameter, a website or other source of mailto links can make Evolution attach local files or directories to a composed email message without showing a warning to th...

6.5CVSS6.8AI score0.00538EPSS

Exploits0

CNNVD•added 2025/04/15 12:0 a.m.•3 views

PerfreeBlog 安全漏洞

PerfreeBlog is PerfreeBlog open source, a java-based blog/CMS builder. A security vulnerability exists in PerfreeBlog version 4.0.11, which originates from the presence of arbitrary file uploads in the attach component and could lead to the execution of arbitrary code...

8.8CVSS6.8AI score0.00324EPSS

Exploits1References1

Amazon•added 2025/04/14 12:0 a.m.•3 views

Medium: xorg-x11-server

Issue Overview: In X.Org X server 20.11 through 21.1.16, when a client application uses easystroke for mouse gestures, the main thread modifies various data structures used by the input thread without acquiring a lock, aka a race condition. In particular, AttachDevice in dix/devices.c does not...

7.7CVSS6.7AI score0.00095EPSS

Exploits0

SUSE CVE•added 2025/04/04 2:58 a.m.•0 views

SUSE CVE-2025-22001

In the Linux kernel, the following vulnerability has been resolved: accel/qaic: Fix integer overflow in qaicvalidatereq These are u64 variables that come from the user via qaicattachsliceboioctl. Use checkaddoverflow to ensure that the math doesn't have an integer wrapping bug...

6.6CVSS7.9AI score0.00026EPSS

Exploits0References15

OSV•added 2025/04/03 8:15 a.m.•1 views

AZL-59870 CVE-2025-22001 affecting package kernel for versions less than 6.6.85.1-2

5.5CVSS6.7AI score0.00026EPSS

Exploits0References1

OSV•added 2025/04/03 8:15 a.m.•0 views

UBUNTU-CVE-2025-22001

5.5CVSS6.5AI score0.00026EPSS

Exploits0References25

Vulnrichment•added 2025/04/03 7:19 a.m.•1 views

CVE-2025-22001 accel/qaic: Fix integer overflow in qaic_validate_req()

7.7AI score0.00026EPSS

Exploits0References4

RedhatCVE•added 2025/03/05 3:6 p.m.•3 views

CVE-2025-23441

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in dkukral Attach Gallery Posts attach-gallery-posts allows Reflected XSS.This issue affects Attach Gallery Posts: from n/a through = 1.6...

7.1CVSS5.9AI score0.00232EPSS

Exploits0References1

Tenable Nessus•added 2025/03/05 12:0 a.m.•9 views

Linux Distros Unpatched Vulnerability : CVE-2022-49385

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - driver: base: fix UAF when driverattach failed When driverattachdrv %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid225451;...

7.8CVSS6.7AI score0.00082EPSS

Exploits0References3