CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3630 matches found

RedHat Linux•added 2025/10/27 7:3 p.m.•2 views

kernel: wifi: cfg80211: sme: cap SSID length in __cfg80211_connect_result()

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: sme: cap SSID length in cfg80211connectresult If the ssid-datalen is more than IEEE80211MAXSSIDLEN 32 it would lead to memory corruption so add some bounds checking...

7.8CVSS5.7AI score0.00144EPSS

Exploits0References5

RedHat Linux•added 2025/10/27 7:3 p.m.•14 views

Moderate: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.8CVSS6.8AI score0.00181EPSS

Exploits0References7

RedHat Linux•added 2025/10/27 9:51 a.m.•6 views

kernel: wifi: cfg80211: sme: cap SSID length in __cfg80211_connect_result()

7.8CVSS5.7AI score0.00144EPSS

Exploits0References5

RedHat Linux•added 2025/10/27 9:41 a.m.•7 views

kernel: wifi: cfg80211: sme: cap SSID length in __cfg80211_connect_result()

7.8CVSS5.7AI score0.00144EPSS

Exploits0References5

Amazon•added 2025/10/27 12:0 a.m.•6 views

Important: kernel-livepatch-5.10.240-238.959

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: netdevsim: fix memory leak in nsimdrvprobe when nsimdevresourcesregister failed CVE-2022-50500 In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Use rawsmpprocessorid instead of...

7.8CVSS6.4AI score0.00181EPSS

Exploits0

OSV•added 2025/10/19 7:8 p.m.•5 views

JLSEC-2025-140 FFmpeg n6.1.1 is Integer Overflow

FFmpeg n6.1.1 is Integer Overflow. The vulnerability exists in the parseoptions function of sbgdec.c within the libavformat module. When parsing certain options, the software does not adequately validate the input. This allows for negative duration values to be accepted without proper bounds...

9.1CVSS6.9AI score0.00621EPSS

Exploits0References3

CVE•added 2025/10/17 2:22 p.m.•15 views

CVE-2025-55085

In NextX Duo prior to 6.4.4, the HTTP client module’s handling of HTTP header fields in the Eclipse Foundation ThreadX network support code lacks bounds verification. This can be triggered by a crafted server response and leads to undefined behavior. Affected product/version: NextX Duo

8.8CVSS6.7AI score0.00554EPSS

Exploits1References1Affected Software1

RedhatCVE•added 2025/10/08 6:18 p.m.•16 views

CVE-2025-36156

IBM InfoSphere Data Replication VSAM for z/OS Remote Source 11.4 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local user with access to the files storing CECSUB or CECRM on the container could overflow the buffer and execute arbitrary code on the system...

7.8CVSS7.8AI score0.00113EPSS

Exploits0References1