CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

32 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: ksmbd: Validating the session ID and tree ID in compound requests. The function smb2getmsg in smb2getksmbdtcon and smb2checkusersession always returns the first command in a compound request’s header. If SMB2TREECONNECTHE is the...

5.5CVSS6.2AI score0.00144EPSS

Exploits0References2

ATTACKERKB•added 2026/04/22 8:15 a.m.•1 views

CVE-2026-31432

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix OOB write in QUERYINFO for compound requests When a compound request such as READ + QUERYINFOSecurity is received, and the first command READ consumes most of the response buffer, ksmbd could write beyond the allocated...

5.8AI score0.00028EPSS

Exploits0References5Affected Software1

Positive Technologies•added 2026/04/22 12:0 a.m.•1 views

PT-2026-34275

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An out-of-bounds write exists in ksmbd when processing compound requests, such as READ combined with QUERY INFOSecurity. If the initial command consumes most of the response buffer, ksmb...

8.8CVSS5.9AI score0.00028EPSS

Exploits0References19

UbuntuCve•added 2026/04/03 4:16 p.m.•2 views

CVE-2026-23428

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free of shareconf in compound request smb2getksmbdtcon reuses work-tcon in compound requests without validating tcon-tstate. ksmbdtreeconnlookup checks tstate == TREECONNECTED on the initial lookup path, but...

9.8CVSS5.8AI score0.00032EPSS

Exploits0References8

Cvelist•added 2026/04/03 3:15 p.m.•22 views

CVE-2026-23428 ksmbd: fix use-after-free of share_conf in compound request

9.8CVSS0.00032EPSS

Exploits0References7

CVE•added 2026/04/03 3:15 p.m.•6 views

CVE-2026-23428

CVE-2026-23428 affects the Linux kernel ksmbd component handling SMB2. The root cause is a use-after-free when reusing work->tcon in compound SMB2 requests: after a prior command (e.g., SMB2_TREE_DISCONNECT) sets t_state to TREE_DISCONNECTED and ksmbd_share_config_put() frees share_conf, subse...

9.8CVSS5.8AI score0.00032EPSS

Exploits0References7Affected Software1

NVD•added 2025/08/16 2:15 p.m.•1 views

CVE-2023-3867

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix out of bounds read in smb2sesssetup ksmbd does not consider the case of that smb2 session setup is in compound request. If this is the second payload of the compound, OOB read issue occurs while processing the first...

7.1CVSS0.00115EPSS

Exploits0References4

OSV•added 2025/08/16 2:15 p.m.•0 views

DEBIAN-CVE-2023-3867

7.1CVSS5.8AI score0.00115EPSS

Exploits0References1

Debian CVE•added 2025/08/16 1:29 p.m.•15 views

CVE-2023-3867

7.1CVSS5.8AI score0.00115EPSS

Exploits0

OSV•added 2025/08/16 1:29 p.m.•1 views

CVE-2023-3867 ksmbd: fix out of bounds read in smb2_sess_setup

7.1CVSS6.3AI score0.00115EPSS

Exploits0References7

Cvelist•added 2025/08/16 1:29 p.m.•5 views

CVE-2023-3867 ksmbd: fix out of bounds read in smb2_sess_setup

0.00115EPSS

Exploits0References4

Debian CVE•added 2025/08/16 1:27 p.m.•33 views

CVE-2023-3866

In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate session id and tree id in the compound request This patch validate session id and tree id in compound request. If first operation in the compound is SMB2 ECHO request, ksmbd bypass session and tree validation. So...

5.5CVSS5.5AI score0.00013EPSS

Exploits0

Microsoft CVE•added 2025/08/07 7:0 a.m.•1 views

nfsd: nfsd4_spo_must_allow() must check this is a v4 compound request

...

7.1CVSS7AI score0.00088EPSS

Exploits0

SUSE CVE•added 2025/07/29 11:23 p.m.•1 views

SUSE CVE-2025-38430

In the Linux kernel, the following vulnerability has been resolved: nfsd: nfsd4spomustallow must check this is a v4 compound request If the request being processed is not a v4 compound request, then examining the cstate can have undefined results. This patch adds a check that the rpc procedure...

5.5CVSS6.5AI score0.00088EPSS

Exploits0References23

NVD•added 2025/07/25 3:15 p.m.•2 views

CVE-2025-38430

5.5CVSS0.00088EPSS

Exploits0References11

OSV•added 2025/07/25 3:15 p.m.•1 views

DEBIAN-CVE-2025-38430

5.5CVSS5.5AI score0.00088EPSS

Exploits0References1

CVE•added 2025/07/25 2:16 p.m.•71 views

CVE-2025-38430

CVE-2025-38430 affects the Linux kernel NFS server (nfsd). The issue arises when processing NFSv4 compound requests; if the request is not NFSPROC4_COMPOUND, examining cstate may yield undefined results. A patch adds a guard to verify that the RPC procedure being executed is NFSPROC4_COMPOUND, pr...

5.5CVSS6.4AI score0.00088EPSS

Exploits0References11Affected Software1

Debian CVE•added 2025/07/25 2:16 p.m.•4 views

CVE-2025-38430

5.5CVSS5.5AI score0.00088EPSS

Exploits0

OSV•added 2025/07/25 2:16 p.m.•2 views

CVE-2025-38430 nfsd: nfsd4_spo_must_allow() must check this is a v4 compound request

5.5CVSS6.5AI score0.00088EPSS

Exploits0References13

Cvelist•added 2025/07/25 2:16 p.m.•7 views

CVE-2025-38430 nfsd: nfsd4_spo_must_allow() must check this is a v4 compound request