CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

127 matches found

NVD•added 2026/05/01 3:16 p.m.•1 views

CVE-2026-31739

In the Linux kernel, the following vulnerability has been resolved: crypto: tegra - Add missing CRYPTOALGASYNC The tegra crypto driver failed to set the CRYPTOALGASYNC on its asynchronous algorithms, causing the crypto API to select them for users that request only synchronous algorithms. This...

8.8CVSS0.00056EPSS

Exploits0References4

ATTACKERKB•added 2026/05/01 2:14 p.m.•2 views

CVE-2026-31739

5.8AI score0.00056EPSS

Exploits0References5Affected Software1

CVE•added 2026/05/01 2:14 p.m.•2 views

CVE-2026-31739

CVE-2026-31739 affects the Linux kernel tegra crypto driver. The driver failed to set CRYPTO_ALG_ASYNC on asynchronous algorithms, causing the crypto API to select async paths for users requesting synchronous operations, potentially causing crashes. Mitigation implemented in the patch: explicitly...

8.8CVSS5.8AI score0.00056EPSS

Exploits0References4Affected Software1

Positive Technologies•added 2026/05/01 12:0 a.m.•2 views

PT-2026-36374

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The tegra crypto driver fails to set the CRYPTO ALG ASYNC flag on its asynchronous algorithms. This causes the crypto API to incorrectly select these algorithms for users requesting only...

8.8CVSS5.8AI score0.00056EPSS

Exploits0References14

NVD•added 2026/03/16 2:18 p.m.•0 views

CVE-2026-0849

Malformed ATAES132A responses with an oversized length field overflow a 52-byte stack buffer in the Zephyr crypto driver, allowing a compromised device or bus attacker to corrupt kernel memory and potentially hijack execution...

6.8CVSS0.00025EPSS

Exploits1References1

EUVD•added 2026/03/14 9:5 p.m.•2 views

EUVD-2026-12186

3.8CVSS6AI score0.00025EPSS

Exploits1References1

CVE•added 2026/03/14 9:5 p.m.•4 views

CVE-2026-0849

CVE-2026-0849 affects Zephyr’s crypto ATAES132A driver. Malformed responses with an oversized length field overflow a 52-byte stack buffer, allowing a compromised device or bus attacker to corrupt kernel memory and potentially hijack execution. The CVSSv3.1 vector indicates Physical access, High ...

6.8CVSS6AI score0.00025EPSS

Exploits1References1Affected Software1

CVE•added 2026/01/06 10:48 p.m.•11 views

CVE-2025-47333

CVE-2025-47333 affects Qualcomm chipsets' cryptographic driver, with memory corruption occurring while handling buffer mapping operations. The root cause is a flaw in how the driver manages memory during mapBuffer processing, which may lead to crashes or unpredictable behavior. Exploitation detai...

6.6CVSS6.9AI score0.00025EPSS

Exploits0References1Affected Software1

EUVD•added 2025/12/30 3:30 p.m.•1 views

EUVD-2022-55884

In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/zip - fix mismatch in get/set sglsgenr KASAN reported this Bug: 17619.659757 BUG: KASAN: global-out-of-bounds in paramgetint+0x34/0x60 17619.673193 Read of size 4 at addr fffff01332d7ed00 by task readall/1507958...

6AI score0.00022EPSS

Exploits0References6

SUSE CVE•added 2025/12/17 12:26 a.m.•1 views

SUSE CVE-2025-68172

In the Linux kernel, the following vulnerability has been resolved: crypto: aspeed - fix double free caused by devm The clock obtained via devmclkgetenabled is automatically managed by devres and will be disabled and freed on driver detach. Manually calling clkdisableunprepare in error path and...

5.5CVSS6.6AI score0.00028EPSS

Exploits0References21

SUSE CVE•added 2025/11/15 12:24 a.m.•1 views

SUSE CVE-2025-40136

In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/qm - request reserved interrupt for virtual function The device interrupt vector 3 is an error interrupt for physical function and a reserved interrupt for virtual function. However, the driver has not registere...

4.4CVSS6.5AI score0.00026EPSS

Exploits0References6