CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1530 matches found

Microsoft CVE•added 2024/10/12 12:0 a.m.•2 views

CVE-2024-42287

...

4.7CVSS6.3AI score0.00231EPSS

Exploits0

SUSE CVE•added 2024/10/11 2:48 a.m.•1 views

SUSE CVE-2024-47666

In the Linux kernel, the following vulnerability has been resolved: scsi: pm80xx: Set phy-enablecompletion only when we wait for it pm8001phycontrol populates the enablecompletion pointer with a stack address, sends a PHYLINKRESET / PHYHARDRESET, waits 300 ms, and returns. The problem arises when...

5.5CVSS6.4AI score0.00208EPSS

Exploits0References17

OSV•added 2024/10/09 3:15 p.m.•8 views

AZL-50749 CVE-2024-47666 affecting package kernel 5.15.200.1-1

5.5CVSS6.4AI score0.00208EPSS

Exploits0References1

OSV•added 2024/10/09 3:15 p.m.•2 views

DEBIAN-CVE-2024-47666

5.5CVSS5.6AI score0.00208EPSS

Exploits0References1

OSV•added 2024/10/09 3:15 p.m.•0 views

UBUNTU-CVE-2024-47666

5.5CVSS6.2AI score0.00208EPSS

Exploits0References20

Cvelist•added 2024/10/09 2:13 p.m.•29 views

CVE-2024-47666 scsi: pm80xx: Set phy->enable_completion only when we wait for it

0.00208EPSS

Exploits0References6

OSV•added 2024/09/27 1:15 p.m.•7 views

UBUNTU-CVE-2024-46842

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Handle mailbox timeouts in lpfcgetsfpinfo The MBXTIMEOUT return code is not handled in lpfcgetsfpinfo and the routine unconditionally frees submitted mailbox commands regardless of return status. The issue is that for...

5.5CVSS6.5AI score0.00204EPSS

Exploits0References10

OSV•added 2024/09/18 12:52 p.m.•20 views

SUSE-SU-2024:3304-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP3 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2022-48791: Fix use-after-free for aborted TMF sastask bsc1228002 The following non-security bugs were fixed: - powerpc: Remove support for PowerPC 601 Remove...

7.8CVSS7.7AI score0.00244EPSS

Exploits0References3

SUSE CVE•added 2024/09/05 2:47 a.m.•2 views

SUSE CVE-2024-44954

In the Linux kernel, the following vulnerability has been resolved: ALSA: line6: Fix racy access to midibuf There can be concurrent accesses to line6 midibuf from both the URB completion callback and the rawmidi API access. This could be a cause of KMSAN warning triggered by syzkaller below so pu...

5.5CVSS6.4AI score0.0017EPSS

Exploits0References17

OSV•added 2024/09/04 7:15 p.m.•11 views

AZL-49875 CVE-2024-44970 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: SHAMPO, Fix invalid WQ linked list unlink When all the strides in a WQE have been consumed, the WQE is unlinked from the WQ linked list mlx5wqllpop. For SHAMPO, it is possible to receive CQEs with 0 consumed strides fo...

5.5CVSS6.7AI score0.0021EPSS

Exploits0References1

OSV•added 2024/09/04 7:15 p.m.•1 views

DEBIAN-CVE-2024-44954

4.7CVSS5.6AI score0.0017EPSS

Exploits0References1

Positive Technologies•added 2024/09/02 12:0 a.m.•4 views

PT-2024-25088 · Unknown · Adsp Btfm Client

Name of the Vulnerable Software and Affected Versions: ADSP BTFM client affected versions not specified Description: The issue is related to memory corruption that occurs when the BTFM client sends new messages over Slimbus to the ADSP. This happens due to the improper handling of a local...

8.4CVSS6.5AI score0.00121EPSS

Exploits0References8

SUSE CVE•added 2024/08/22 3:29 a.m.•2 views

SUSE CVE-2022-48867

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Prevent use after free on completion memory On driver unload any pending descriptors are flushed at the time the interrupt is freed: idxddmaenginedrvremove - drvdisablewq - idxdwqfreeirq - idxdflushpendingdescs. ...

7.8CVSS7.3AI score0.00233EPSS

Exploits0References3

NVD•added 2024/08/21 7:15 a.m.•15 views

CVE-2022-48867

7.8CVSS0.00233EPSS

Exploits0References2

OSV•added 2024/08/21 7:15 a.m.•1 views

UBUNTU-CVE-2023-52914

In the Linux kernel, the following vulnerability has been resolved: iouring/poll: add hash if ready poll request can't complete inline If we don't, then we may lose access to it completely, leading to a request leak. This will eventually stall the ring exit process as well...

5.5CVSS5.7AI score0.00205EPSS

Exploits0References5

CVE•added 2024/08/21 6:10 a.m.•70 views

CVE-2022-48898

CVE-2022-48898 concerns the Linux kernel drm/msm/dp path where the DP controller’s aux ISR could prematurely complete dp_aux_cmd_fifo_tx() even when the interrupt was not for an aux transfer, causing potential data corruption in EDID transfers during boot and in the host buffer. Multiple connecte...

4.7CVSS6.7AI score0.00181EPSS

Exploits0References4Affected Software1

OSV•added 2024/08/21 6:10 a.m.•18 views

CVE-2022-48898 drm/msm/dp: do not complete dp_aux_cmd_fifo_tx() if irq is not for aux transfer

In the Linux kernel, the following vulnerability has been resolved: drm/msm/dp: do not complete dpauxcmdfifotx if irq is not for aux transfer There are 3 possible interrupt sources are handled by DP controller, HPDstatus, Controller state changes and Aux read/write transaction. At every irq, DP...

4.7CVSS6.1AI score0.00181EPSS

Exploits0References7