CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The aufs module for the Linux kernel 3.x and 4.x does not properly restrict the mount namespace, which allows local users to gain privileges by mounting an aufs...

7.8CVSS6.7AI score0.0022EPSS

Exploits3References2

Tenable Nessus•added 2025/08/11 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2016-2854

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The aufs module for the Linux kernel 3.x and 4.x does not properly maintain POSIX ACL xattr data, which allows local users to gain privileges by leveraging a...

7.8CVSS6.7AI score0.00348EPSS

Exploits3References2

Tenable Nessus•added 2025/08/07 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2020-11935

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - It was discovered that aufs improperly managed inode reference counts in the vfsubdentryopen method. A local attacker could use this vulnerability to cause a...

5.5CVSS6.4AI score0.00041EPSS

Exploits0References2

RedhatCVE•added 2025/05/23 2:24 a.m.•5 views

CVE-2023-45838

Multiple data integrity vulnerabilities exist in the package hash checking functionality of Buildroot 2023.08.1 and Buildroot dev commit 622698d7847. A specially crafted man-in-the-middle attack can lead to arbitrary command execution in the builder.This vulnerability is related to the aufs packa...

8.1CVSS7.3AI score0.00122EPSS

Exploits1References1

RedhatCVE•added 2025/05/23 2:21 a.m.•9 views

CVE-2023-45839

8.1CVSS7.3AI score0.00089EPSS

Exploits1References1

NVD•added 2023/12/05 12:15 p.m.•13 views

CVE-2023-45839

8.1CVSS0.00089EPSS

Exploits1References3

NVD•added 2023/12/05 12:15 p.m.•16 views

CVE-2023-45838

8.1CVSS0.00122EPSS

Exploits1References3

OSV•added 2023/12/05 12:15 p.m.•21 views

CVE-2023-45838

8.1CVSS7.2AI score

Exploits0References3

OSV•added 2023/12/05 12:15 p.m.•19 views

CVE-2023-45839

8.1CVSS7.2AI score

Exploits0References3

Prion•added 2023/12/05 12:15 p.m.•20 views

Privilege escalation

5.1CVSS7.5AI score0.00122EPSS

Exploits1References2Affected Software1

Prion•added 2023/12/05 12:15 p.m.•15 views

Privilege escalation

5.1CVSS7.5AI score0.00089EPSS

Exploits1References2Affected Software1

CVE•added 2023/12/05 11:30 a.m.•37 views

CVE-2023-45838

Buildroot CVE-2023-45838 affects the package hash checking for Buildroot 2023.08.1 and dev commit 622698d7847 (aufs-related). TALOS confirms multiple data integrity vulnerabilities enabling a MITM to provide compromised sources, potentially allowing arbitrary command execution in the builder. Key...

8.1CVSS8.3AI score0.00122EPSS

Exploits1References3Affected Software1

CVE•added 2023/12/05 11:30 a.m.•45 views

CVE-2023-45839

CVE-2023-45839 concerns Buildroot (2023.08.1 and dev commit 622698d7847) with multiple data-integrity vulnerabilities in the package hash checking, related to aufs-util. Talos confirms Buildroot is susceptible to MITM-based tampering of downloaded sources (no hash/check for certain packages), ena...

8.1CVSS8.3AI score0.00089EPSS

Exploits1References3Affected Software1