CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15 matches found

EUVD•added 2025/10/18 9:30 a.m.•1 views

EUVD-2025-34988

In the Linux kernel, the following vulnerability has been resolved: scsi: mvsas: Fix use-after-free bugs in mvsworkqueue During the detaching of Marvell's SAS/SATA controller, the original code calls canceldelayedwork in mvsfree to cancel the delayed work item mwq-workq. However, if mwq-workq is...

5.8AI score0.00083EPSS

Exploits0References2

Microsoft CVE•added 2025/09/06 1:12 a.m.•3 views

net: kcm: Fix race condition in kcm_unattach()

...

4.7CVSS7AI score0.00019EPSS

Exploits0

Positive Technologies•added 2025/04/16 12:0 a.m.•3 views

PT-2025-38566

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a use-after-free issue within the ptp ocp watchdog function. The ptp ocp detach function only shuts down the watchdog timer if it is pending. If the timer handl...

7.8CVSS6.2AI score0.00049EPSS

Exploits0References307

Vulnrichment•added 2025/04/01 3:26 p.m.•1 views

CVE-2025-21901 RDMA/bnxt_re: Add sanity checks on rdev validity

In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxtre: Add sanity checks on rdev validity There is a possibility that ulpirqstop and ulpirqstart callbacks will be called when the device is in detached state. This can cause a crash due to NULL pointer dereference as the...

6AI score0.00021EPSS

Exploits0References3

RedHat Linux•added 2024/09/24 2:39 a.m.•2 views

kernel: phylib: fix potential use-after-free

In the Linux kernel, the following vulnerability has been resolved: phylib: fix potential use-after-free Commit bafbdd527d56 "phylib: Add device reset GPIO support" added call to phydeviceresetphydev after the putdevice call in phydetach. The comment before the putdevice call says that the phydev...

8.4CVSS6.8AI score0.00029EPSS

Exploits0References5

RedHat Linux•added 2024/04/30 10:42 a.m.•0 views

libvirt: NULL pointer dereference in udevConnectListAllInterfaces()

A NULL pointer dereference flaw was found in the udevConnectListAllInterfaces function in libvirt. This issue can occur when detaching a host interface while at the same time collecting the list of interfaces via virConnectListAllInterfaces API. This flaw could be used to perform a denial of...

5.5CVSS6.7AI score0.00059EPSS

Exploits0References4

Microsoft CVE•added 2023/03/10 8:0 a.m.•1 views

A flaw use after free in the Linux kernel integrated infrared receiver/transceiver driver was found in the way user detaching rc device. A local user could use this flaw to crash the system or potentially escalate their privileges on the system.

...

7.8CVSS7.2AI score0.00017EPSS

Exploits0

SUSE CVE•added 2023/02/15 5:22 a.m.•2 views

SUSE CVE-2015-1237

Use-after-free vulnerability in the RenderFrameImpl::OnMessageReceived function in content/renderer/renderframeimpl.cc in Google Chrome before 42.0.2311.90 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger renderer IPC messages...

7.5CVSS9.6AI score0.01832EPSS

Exploits0References3

SUSE CVE•added 2023/02/15 5:7 a.m.•2 views

SUSE CVE-2016-1711

WebKit/Source/core/loader/FrameLoader.cpp in Blink, as used in Google Chrome before 52.0.2743.82, does not disable frame navigation during a detach operation on a DocumentLoader object, which allows remote attackers to bypass the Same Origin Policy via a crafted web site...

8.8CVSS8.8AI score0.01777EPSS

Exploits1References7