Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1711 matches found

OSV
OSVadded 2025/08/22 4:15 p.m.4 views

UBUNTU-CVE-2025-38656

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: Fix error code in iwlopmodedvmstart Preserve the error code if iwlsetupdeferredwork fails. The current code returns ERRPTR0 which is NULL on this path. I believe the missing error code potentially leads to a use...

7.8CVSS5.7AI score0.00148EPSS
Exploits0References6
OSV
OSVadded 2025/08/22 4:15 p.m.1 views

UBUNTU-CVE-2025-38657

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: mcc: prevent shift wrapping in rtw89coremlsrswitch The "linkid" value comes from the user via debugfs. If it's larger than BITSPERLONG then that would result in shift wrapping and potentially an out of bounds access...

7.1CVSS5.7AI score0.00139EPSS
Exploits0References5
Cvelist
Cvelistadded 2025/08/22 4:1 p.m.7 views

CVE-2025-38657 wifi: rtw89: mcc: prevent shift wrapping in rtw89_core_mlsr_switch()

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: mcc: prevent shift wrapping in rtw89coremlsrswitch The "linkid" value comes from the user via debugfs. If it's larger than BITSPERLONG then that would result in shift wrapping and potentially an out of bounds access...

0.00139EPSS
Exploits0References2
CVE
CVEadded 2025/08/22 4:1 p.m.22 views

CVE-2025-38657

CVE-2025-38657 affects the Linux kernel’s wifi/rtw89 MCC path. The vulnerability arises because the user-controlled link_id parsed via debugfs can exceed BITS_PER_LONG, causing shift wrapping and potentially an out-of-bounds access. The issue is mitigated by capping the value to IEEE80211_MLD_MAX...

7.1CVSS6.5AI score0.00139EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVEadded 2025/08/22 4:1 p.m.5 views

CVE-2025-38657

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: mcc: prevent shift wrapping in rtw89coremlsrswitch The "linkid" value comes from the user via debugfs. If it's larger than BITSPERLONG then that would result in shift wrapping and potentially an out of bounds access...

7.1CVSS6.1AI score0.00139EPSS
Exploits0
OSV
OSVadded 2025/08/22 4:1 p.m.2 views

CVE-2025-38657 wifi: rtw89: mcc: prevent shift wrapping in rtw89_core_mlsr_switch()

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: mcc: prevent shift wrapping in rtw89coremlsrswitch The "linkid" value comes from the user via debugfs. If it's larger than BITSPERLONG then that would result in shift wrapping and potentially an out of bounds access...

7.1CVSS6.6AI score0.00139EPSS
Exploits0References5
CVE
CVEadded 2025/08/22 4:0 p.m.33 views

CVE-2025-38656

CVE-2025-38656 affects the Linux kernel’s wifi iwlwifi path (iwl_op_mode_dvm_start). The vulnerability stems from preserving the error code when iwl_setup_deferred_work() fails; the code previously returned ERR_PTR(0) (NULL), which could cause a use-after-free involving debugfs. A patch has been ...

7.8CVSS6.7AI score0.00148EPSS
Exploits0References3Affected Software1
Cvelist
Cvelistadded 2025/08/22 4:0 p.m.7 views

CVE-2025-38656 wifi: iwlwifi: Fix error code in iwl_op_mode_dvm_start()

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: Fix error code in iwlopmodedvmstart Preserve the error code if iwlsetupdeferredwork fails. The current code returns ERRPTR0 which is NULL on this path. I believe the missing error code potentially leads to a use...

0.00148EPSS
Exploits0References3
ATTACKERKB
ATTACKERKBadded 2025/08/22 4:0 p.m.2 views

CVE-2025-38656

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: Fix error code in iwlopmodedvmstart Preserve the error code if iwlsetupdeferredwork fails. The current code returns ERRPTR0 which is NULL on this path. I believe the missing error code potentially leads to a use...

7.8CVSS5.8AI score0.00148EPSS
Exploits0References4
Debian CVE
Debian CVEadded 2025/08/22 4:0 p.m.5 views

CVE-2025-38656

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: Fix error code in iwlopmodedvmstart Preserve the error code if iwlsetupdeferredwork fails. The current code returns ERRPTR0 which is NULL on this path. I believe the missing error code potentially leads to a use...

7.8CVSS6.2AI score0.00148EPSS
Exploits0
Positive Technologies
Positive Technologiesadded 2025/08/22 12:0 a.m.3 views

PT-2025-34418 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The rtw89 core mlsr switch function in the Linux kernel is susceptible to a shift wrapping issue. The link id value, obtained from user input via debugfs, can exceed the maximum...

7AI score0.00139EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2025/08/22 12:0 a.m.7 views

PT-2025-34417

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains an issue within the iwlwifi module related to error handling in the iwl op mode dvm start function. Specifically, the code was returning an incorrect error co...

7.8CVSS7.9AI score0.02838EPSS
Exploits3References240
SUSE CVE
SUSE CVEadded 2025/08/19 11:23 p.m.1 views

SUSE CVE-2025-38581

In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - Fix crash when rebind ccp device for ccp.ko When CONFIGCRYPTODEVCCPDEBUGFS is enabled, rebinding the ccp device causes the following crash: $ echo '0000:0a:00.2' /sys/bus/pci/drivers/ccp/unbind $ echo '0000:0a:00.2'...

5.5CVSS6.5AI score0.00159EPSS
Exploits0References22
OSV
OSVadded 2025/08/19 5:15 p.m.1 views

DEBIAN-CVE-2025-38581

In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - Fix crash when rebind ccp device for ccp.ko When CONFIGCRYPTODEVCCPDEBUGFS is enabled, rebinding the ccp device causes the following crash: $ echo '0000:0a:00.2' /sys/bus/pci/drivers/ccp/unbind $ echo '0000:0a:00.2'...

5.5CVSS5.3AI score0.00159EPSS
Exploits0References1
OSV
OSVadded 2025/08/19 5:15 p.m.2 views

UBUNTU-CVE-2025-38596

In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Fix UAF in panthorgemcreatewithhandle debugfs code The object is potentially already gone after the drmgemobjectput. In general the object should be fully constructed before calling drmgemhandlecreate, except the...

7.8CVSS5.8AI score0.00143EPSS
Exploits0References5
OSV
OSVadded 2025/08/19 5:15 p.m.1 views

UBUNTU-CVE-2025-38581

In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - Fix crash when rebind ccp device for ccp.ko When CONFIGCRYPTODEVCCPDEBUGFS is enabled, rebinding the ccp device causes the following crash: $ echo '0000:0a:00.2' /sys/bus/pci/drivers/ccp/unbind $ echo '0000:0a:00.2'...

5.5CVSS5.8AI score0.00159EPSS
Exploits0References40
CVE
CVEadded 2025/08/19 5:3 p.m.23 views

CVE-2025-38596

The CVE-2025-38596 entry concerns a Linux kernel UAF in the panthor_gem_create_with_handle() debugfs path. The issue stems from handling drm_gem_object life cycle where an object could be considered initialized or added to debugfs after it was potentially released via drm_gem_object_put(). The fi...

7.8CVSS7.1AI score0.00143EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2025/08/19 5:3 p.m.9 views

CVE-2025-38596 drm/panthor: Fix UAF in panthor_gem_create_with_handle() debugfs code

In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Fix UAF in panthorgemcreatewithhandle debugfs code The object is potentially already gone after the drmgemobjectput. In general the object should be fully constructed before calling drmgemhandlecreate, except the...

0.00143EPSS
Exploits0References2
OSV
OSVadded 2025/08/19 5:3 p.m.4 views

CVE-2025-38596 drm/panthor: Fix UAF in panthor_gem_create_with_handle() debugfs code

In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Fix UAF in panthorgemcreatewithhandle debugfs code The object is potentially already gone after the drmgemobjectput. In general the object should be fully constructed before calling drmgemhandlecreate, except the...

7.8CVSS6.5AI score0.00143EPSS
Exploits0References5
Cvelist
Cvelistadded 2025/08/19 5:3 p.m.8 views

CVE-2025-38581 crypto: ccp - Fix crash when rebind ccp device for ccp.ko

In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - Fix crash when rebind ccp device for ccp.ko When CONFIGCRYPTODEVCCPDEBUGFS is enabled, rebinding the ccp device causes the following crash: $ echo '0000:0a:00.2' /sys/bus/pci/drivers/ccp/unbind $ echo '0000:0a:00.2'...

0.00159EPSS
Exploits0References9
Rows per page
Query Builder