CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1203 matches found

Positive Technologies•added 2022/07/28 12:0 a.m.•3 views

PT-2025-26150

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been resolved, related to KVM: x86/mmu, where the NX bit is treated as valid when using NPT. This issue occurs when the NX huge page mitigation is...

5.5CVSS5.4AI score0.00167EPSS

Exploits0References30

OSV•added 2022/07/15 11:3 a.m.•4 views

OESA-2022-1754 ghostscript security update

Ghostscript is an interpreter for PostScript™ and Portable Document Format PDF files. Ghostscript consists of a PostScript interpreter layer, and a graphics library. Security Fixes: A NULL pointer dereference vulnerability was found in Ghostscript, which occurs when it tries to render a large...

5.5CVSS6.9AI score0.0139EPSS

Exploits1References2

OSV•added 2022/06/28 6:52 p.m.•9 views

GSD-2022-1003186 KVM: x86: Use __try_cmpxchg_user() to update guest PTE A/D bits

KVM: x86: Use trycmpxchguser to update guest PTE A/D bits This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.13 by commit...

7.3AI score

Exploits0

OSV•added 2022/06/28 6:25 p.m.•8 views

GSD-2022-1002878 KVM: x86: Use __try_cmpxchg_user() to update guest PTE A/D bits

7.3AI score

Exploits0

OSSF Malicious Packages•added 2022/06/20 8:14 p.m.•3 views

Malicious code in satreg-bits (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c0d4daaf60d5c24936bced88eb121b8aac51af7b3d6e04742c73595ee9215a2e Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score

Exploits0References1

OSV•added 2022/06/20 8:14 p.m.•11 views

MAL-2022-5937 Malicious code in satreg-bits (npm)

7AI score

Exploits0References1

OSV•added 2022/06/20 12:1 a.m.•15 views

OSV-2022-492 Heap-buffer-overflow in jxl::BitsCoder::Read

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=48123 Crash type: Heap-buffer-overflow READ 8 Crash state: jxl::BitsCoder::Read jxl::ReadVisitor::Bits jxl::jpeg::JPEGData::VisitFields...

7.2AI score

Exploits0References1

OSV•added 2022/06/16 6:15 p.m.•1 views

DEBIAN-CVE-2022-2085

A NULL pointer dereference vulnerability was found in Ghostscript, which occurs when it tries to render a large number of bits in memory. When allocating a buffer device, it relies on an initdeviceprocs defined for the device that uses it as a prototype that depends upon the number of bits per...

5.5CVSS6.3AI score0.0139EPSS

Exploits1References1

OSV•added 2022/06/16 6:15 p.m.•8 views

CVE-2022-2085

5.5CVSS6.7AI score

Exploits0References6

OSV•added 2022/06/16 6:15 p.m.•0 views

UBUNTU-CVE-2022-2085

5.5CVSS7.3AI score0.0139EPSS

Exploits1References3

Positive Technologies•added 2022/06/16 12:0 a.m.•4 views

PT-2022-14846 · Unknown +2 · Ghostscript +2

Name of the Vulnerable Software and Affected Versions: Ghostscript affected versions not specified Description: A NULL pointer dereference issue was found in Ghostscript, occurring when it attempts to render a large number of bits in memory. The problem arises when allocating a buffer device,...

7.1CVSS6.1AI score0.0139EPSS

Exploits1References22

Cvelist•added 2022/06/16 12:0 a.m.•25 views

CVE-2022-2085

6AI score0.0139EPSS

Exploits1References6

CVE•added 2022/06/16 12:0 a.m.•138 views

CVE-2022-2085

CVE-2022-2085 is a NULL pointer dereference in Ghostscript triggered when rendering a large number of bits; for bpp > 64, mem_x_device is used and init_device_procs is missing, causing crashes. The issue affects various Ghostscript deployments (e.g., Artifex Ghostscript and GPL Ghostscript) an...

5.5CVSS5.5AI score0.0139EPSS

Exploits1References6Affected Software1

RedHat Linux•added 2022/05/10 1:43 p.m.•6 views

kernel: security regression for CVE-2018-13405

A vulnerability was found in the fs/inode.c:inodeinitowner function logic of the LInux kernel that allows local users to create files for the XFS file-system with an unintended group ownership and with group execution and SGID permission bits set, in a scenario where a directory is SGID and belon...

7.8CVSS6.8AI score0.01018EPSS

Exploits2References6

OSV•added 2022/04/24 10:53 p.m.•9 views

GSD-2022-1002482 KVM: x86/svm: Clear reserved bits written to PerfEvtSeln MSRs

KVM: x86/svm: Clear reserved bits written to PerfEvtSeln MSRs This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v4.9.311 by commit...

7.2AI score

Exploits0

OSV•added 2022/04/24 10:21 p.m.•7 views

GSD-2022-1002202 KVM: x86/svm: Clear reserved bits written to PerfEvtSeln MSRs

7.2AI score

Exploits0

OSV•added 2022/04/24 10:3 p.m.•7 views

GSD-2022-1002018 KVM: x86/svm: Clear reserved bits written to PerfEvtSeln MSRs

7.2AI score

Exploits0

OSV•added 2022/04/24 9:38 p.m.•7 views

GSD-2022-1001743 KVM: x86/svm: Clear reserved bits written to PerfEvtSeln MSRs

7.2AI score

Exploits0

OSV•added 2022/04/24 9:11 p.m.•7 views

GSD-2022-1001420 KVM: x86/svm: Clear reserved bits written to PerfEvtSeln MSRs

7.2AI score

Exploits0

OSV•added 2022/04/24 8:45 p.m.•6 views

GSD-2022-1001102 io_uring: bump poll refs to full 31-bits

iouring: bump poll refs to full 31-bits This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.17.2 by commit...

7.2AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by