CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1710 matches found

Cvelist•added 2024/07/12 12:32 p.m.•22 views

CVE-2024-40978 scsi: qedi: Fix crash while reading debugfs attribute

In the Linux kernel, the following vulnerability has been resolved: scsi: qedi: Fix crash while reading debugfs attribute The qedidbgdonotrecovercmdread function invokes sprintf directly on a user pointer, which results into the crash. To fix this issue, use a small local stack buffer for sprintf...

0.0032EPSS

Exploits0References8

CNNVD•added 2024/07/12 12:0 a.m.•2 views

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel, which stems from a crash that can be caused by the use of the sprintf function directly on a user-space pointer when the...

7.1CVSS8.1AI score0.0032EPSS

Exploits0References10

OSV•added 2024/07/11 7:1 p.m.•12 views

USN-6893-1 linux, linux-azure, linux-gcp, linux-ibm, linux-intel, linux-lowlatency, linux-oem-6.8, linux-raspi vulnerabilities

It was discovered that a race condition existed in the Bluetooth subsystem in the Linux kernel when modifying certain settings values through debugfs. A privileged local attacker could use this to cause a denial of service. CVE-2024-24857, CVE-2024-24858, CVE-2024-24859 Several security issues we...

9.1CVSS6.5AI score0.01401EPSS

Exploits1References180

RedHat Linux•added 2024/07/10 12:18 a.m.•2 views

kernel: scsi: lpfc: Prevent buffer overflow crashes in debugfs with malformed user input

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Prevent buffer overflow crashes in debugfs with malformed user input Malformed user input to debugfs results in buffer overflow crashes. Adapt input string lengths to fit within internal buffers, leaving space for NUL...

7.8CVSS7AI score0.00181EPSS

Exploits0References5

SUSE CVE•added 2024/06/26 11:17 p.m.•1 views

SUSE CVE-2024-39296

In the Linux kernel, the following vulnerability has been resolved: bonding: fix oops during rmmod "rmmod bonding" causes an oops ever since commit cc317ea3d927 "bonding: remove redundant NULL check in debugfs function". Here are the relevant functions being called: bondingexit bonddestroydebugfs...

5.5CVSS6.7AI score0.00165EPSS

Exploits0References10

SUSE CVE•added 2024/06/26 11:17 p.m.•1 views

SUSE CVE-2024-39465

In the Linux kernel, the following vulnerability has been resolved: media: mgb4: Fix double debugfs remove Fixes an error where debugfsremoverecursive is called first on a parent directory and then again on a child which causes a kernel panic. hverkuil: added Fixes/Cc tags...

5.5CVSS7.6AI score0.00184EPSS

Exploits0References3

NVD•added 2024/06/25 3:15 p.m.•20 views

CVE-2024-39465

5.5CVSS0.00184EPSS

Exploits0References2

OSV•added 2024/06/25 3:15 p.m.•2 views

DEBIAN-CVE-2024-39465

5.5CVSS5AI score0.00184EPSS

Exploits0References1

OSV•added 2024/06/25 3:15 p.m.•1 views

DEBIAN-CVE-2024-39296

4.7CVSS5.2AI score0.00165EPSS

Exploits0References1

UbuntuCve•added 2024/06/25 3:15 p.m.•16 views

CVE-2024-39296

4.7CVSS5.9AI score0.00165EPSS

Exploits0References12

UbuntuCve•added 2024/06/25 3:15 p.m.•15 views

CVE-2024-39465

5.5CVSS5.8AI score0.00184EPSS

Exploits0References11

OSV•added 2024/06/25 3:15 p.m.•0 views

UBUNTU-CVE-2024-39465

5.5CVSS5.8AI score0.00184EPSS

Exploits0References12

OSV•added 2024/06/25 3:15 p.m.•2 views

UBUNTU-CVE-2024-39296

4.7CVSS5.7AI score0.00165EPSS

Exploits0References13

CVE•added 2024/06/25 2:25 p.m.•70 views

CVE-2024-39465

CVE-2024-39465 affects the Linux kernel's media: mgb4 path. A double removal of debugfs entries (debugfs_remove_recursive)—removing a parent directory and then its child—could trigger a kernel panic. The connected documents confirm a fix was applied in the Linux kernel to prevent this double-remo...

5.5CVSS6.9AI score0.00184EPSS

Exploits0References2Affected Software1

Debian CVE•added 2024/06/25 2:25 p.m.•14 views

CVE-2024-39465

5.5CVSS5.3AI score0.00184EPSS

Exploits0

SUSE CVE•added 2024/06/24 11:15 p.m.•5 views

SUSE CVE-2024-38606

In the Linux kernel, the following vulnerability has been resolved: crypto: qat - validate slices count returned by FW The function adfsendadmintlstart enables the telemetry TL feature on a QAT device by sending the ICPQATFWTLSTART message to the firmware. This triggers the FW to start writing TL...

5.5CVSS6.7AI score0.00217EPSS

Exploits0References15

OSV•added 2024/06/21 12:15 p.m.•2 views

AZL-42835 CVE-2024-38780 affecting package kernel for versions less than 5.15.162.2-1

In the Linux kernel, the following vulnerability has been resolved: dma-buf/sw-sync: don't enable IRQ from syncprintobj Since commit a6aa8fca4d79 "dma-buf/sw-sync: Reduce irqsave/irqrestore from known context" by error replaced spinunlockirqrestore with spinunlockirq for both syncdebugfsshow and...

5.5CVSS6.4AI score0.00187EPSS

Exploits0References1

OSV•added 2024/06/21 12:15 p.m.•1 views

DEBIAN-CVE-2024-38780

5.5CVSS5.5AI score0.00187EPSS

Exploits0References1

RedHat Linux•added 2024/06/05 10:5 a.m.•7 views

kernel: usb: ulpi: Fix debugfs directory leak

In the Linux kernel, the following vulnerability has been resolved: usb: ulpi: Fix debugfs directory leak The ULPI per-device debugfs root is named after the ulpi device's parent, but ulpiunregisterinterface tries to remove a debugfs directory named after the ulpi device itself. This results in t...

5.5CVSS6.8AI score0.00222EPSS

Exploits0References5

RedHat Linux•added 2024/06/05 12:36 a.m.•2 views

kernel: usb: ulpi: Fix debugfs directory leak

5.5CVSS6.8AI score0.00222EPSS

Exploits0References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by