CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Tenable Nessus•added 2025/03/05 12:0 a.m.•8 views

Linux Distros Unpatched Vulnerability : CVE-2023-46837

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Arm provides multiple helpers to clean & invalidate the cache for a given region. This is, for instance, used when allocating guest memory to ensure any writes...

3.3CVSS5.8AI score0.00081EPSS

Debian CVE•added 2025/02/26 2:23 a.m.•6 views

CVE-2022-49655

In the Linux kernel, the following vulnerability has been resolved: fscache: Fix invalidation/lookup race If an NFS file is opened for writing and closed, fscacheinvalidate will be asked to invalidate the file - however, if the cookie is in the LOOKINGUP state or the CREATING state, then request ...

4.7CVSS5.3AI score0.00105EPSS

Exploits0

RedHat Linux•added 2024/10/16 12:36 a.m.•3 views

kernel: kvm: Avoid potential UAF in LPI translation cache

A flaw was found in the Linux kernel pertaining to a potential use-after-free UAF scenario in a system involving Logical Partitioning Interrupts LPI translation cache operations. Specifically, the issue arises when a cache hit occurs concurrently with an operation that invalidates the cache, such...

7.8CVSS6.8AI score0.00014EPSS

Exploits0References5

OSV•added 2024/07/12 1:15 p.m.•1 views

DEBIAN-CVE-2024-40927

In the Linux kernel, the following vulnerability has been resolved: xhci: Handle TD clearing for multiple streams case When multiple streams are in use, multiple TDs might be in flight when an endpoint is stopped. We need to issue a Set TR Dequeue Pointer for each, to ensure everything is reset...

7.8CVSS6AI score0.00012EPSS

CNNVD•added 2024/02/23 12:0 a.m.•2 views

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux Kernel that stems from a potential post-release reuse issue in the case of an LPI translation cache hit competing with an operation...

7.8CVSS6.7AI score0.00014EPSS

Exploits0References10

3.3CVSS7.2AI score0.00081EPSS

ALPINE-CVE-2023-46837

Arm provides multiple helpers to clean & invalidate the cache for a given region. This is, for instance, used when allocating guest memory to ensure any writes such as the ones during scrubbing have reached memory before handing over the page to a guest. Unfortunately, the arithmetics in the...

3.3CVSS4.7AI score0.00081EPSS

DEBIAN-CVE-2023-46837

3.3CVSS7.2AI score0.00055EPSS

ALPINE-CVE-2023-34321

3.3CVSS4.7AI score0.00055EPSS

DEBIAN-CVE-2023-34321

OSV•added 2024/01/05 5:15 p.m.•0 views

UBUNTU-CVE-2023-34321

3.3CVSS5.9AI score0.00055EPSS

OSV•added 2024/01/05 5:15 p.m.•0 views

UBUNTU-CVE-2023-34326

The caching invalidation guidelines from the AMD-Vi specification 48882—Rev 3.07-PUB—Oct 2022 is incorrect on some hardware, as devices will malfunction see stale DMA mappings if some fields of the DTE are updated but the IOMMU TLB is not flushed. Such stale DMA mappings can point to memory range...

7.8CVSS5.8AI score0.00103EPSS

Vulnrichment•added 2024/01/05 4:36 p.m.•2 views

CVE-2023-46837 arm32: The cache may not be properly cleaned/invalidated (take two)

7.3AI score0.00081EPSS

Cvelist•added 2024/01/05 4:17 p.m.•24 views

CVE-2023-34321 arm32: The cache may not be properly cleaned/invalidated

5.8AI score0.00055EPSS