CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

AstraLinux•added 2026/06/19 11:10 a.m.•2 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: HID: bpf: abort dispatch if the device is destroyed The current implementation of HID’s bpf function assumes that no output reports or requests will occur after the hidbpfdestroydevice function is called. This leads to a bug wher...

5.5CVSS6.5AI score0.00157EPSS

AstraLinux•added 2026/06/19 11:10 a.m.•4 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: Firmware: armscmi: Balances the device reference count when destroying devices. Using devicefindchild to find the appropriate SCMI device to destroy causes an imbalance in the device reference count. This occurs because...

5.5CVSS6.4AI score0.0016EPSS

RedhatCVE•added 2026/02/02 9:36 a.m.•9 views

CVE-2026-23028

In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Fix kvmdevice leak in kvmipidestroy In kvmioctlcreatedevice, kvmdevice has allocated memory, kvmdevice-destroy seems to be supposed to free its kvmdevice struct, but kvmipidestroy is not currently doing this, that...

5AI score0.00194EPSS

Exploits0References4

SUSE CVE•added 2026/02/01 12:23 a.m.•4 views

SUSE CVE-2026-23028

UbuntuCve•added 2026/01/31 12:16 p.m.•8 views

Exploits0References3

CVE-2026-23027

In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Fix kvmdevice leak in kvmpchpicdestroy In kvmioctlcreatedevice, kvmdevice has allocated memory, kvmdevice-destroy seems to be supposed to free its kvmdevice struct, but kvmpchpicdestroy is not currently doing this...

OSV•added 2026/01/31 12:16 p.m.•2 views

Exploits0References4

UBUNTU-CVE-2026-23027

OSV•added 2026/01/31 12:16 p.m.•1 views

UBUNTU-CVE-2026-23028

OSV•added 2026/01/31 12:16 p.m.•2 views

UBUNTU-CVE-2026-23029

In the Linux kernel, the following vulnerability has been resolved: LoongArch: KVM: Fix kvmdevice leak in kvmeiointcdestroy In kvmioctlcreatedevice, kvmdevice has allocated memory, kvmdevice-destroy seems to be supposed to free its kvmdevice struct, but kvmeiointcdestroy is not currently doing...

ATTACKERKB•added 2026/01/31 11:42 a.m.•5 views

CVE-2026-23027

Exploits0References3Affected Software1

CVE•added 2026/01/31 11:42 a.m.•13 views

CVE-2026-23028

In the Linux kernel for LoongArch KVM, a memory-leak was reported: kvm_ioctl_create_device() allocated memory for kvm_device, but kvm_ipi_destroy() did not free the kvm_device struct, causing a leak. The issue is resolved by ensuring kvm_ipi_destroy() frees the allocated kvm_device, preventing th...

Positive Technologies•added 2026/01/01 12:0 a.m.•5 views

PT-2026-5531

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a memory leak within the KVM Kernel-based Virtual Machine component on LoongArch architecture. Specifically, the kvm device structure is not properly freed in t...

5.5CVSS5.4AI score0.00194EPSS

Exploits0References18

EUVD•added 2025/12/30 3:30 p.m.•10 views

EUVD-2023-60440

In the Linux kernel, the following vulnerability has been resolved: RDMA/efa: Fix wrong resources deallocation order When trying to destroy QP or CQ, we first decrease the refcount and potentially free memory regions allocated for the object and then request the device to destroy the object. If t...

6AI score0.00168EPSS

SUSE CVE•added 2025/12/25 12:57 a.m.•1 views

SUSE CVE-2023-54024

In the Linux kernel, the following vulnerability has been resolved: KVM: Destroy target device if coalesced MMIO unregistration fails Destroy and free the target coalesced MMIO device if unregistering said device fails. As clearly noted in the code, kvmiobusunregisterdev does not destroy the targ...

5.5CVSS6.5AI score0.00161EPSS

Exploits0References9

NVD•added 2025/12/24 11:15 a.m.•3 views

CVE-2023-54024

0.00161EPSS

Exploits0References6

UbuntuCve•added 2025/12/24 11:15 a.m.•0 views

CVE-2023-54024

5.9AI score0.00161EPSS

Exploits0References7

OSV•added 2025/12/24 11:15 a.m.•4 views

UBUNTU-CVE-2023-54024

5.7AI score0.00161EPSS

Exploits0References8

Positive Technologies•added 2025/12/24 12:0 a.m.•6 views

PT-2025-52981

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw related to KVM Kernel-based Virtual Machine coalesced MMIO Memory Mapped I/O unregistration. Specifically, the target device is not properly destroyed an...

7.8CVSS6.4AI score0.00465EPSS

Exploits2References897

RedHat Linux•added 2025/11/11 9:13 a.m.•6 views

kernel: net: tun: unlink NAPI from device on destruction

In the Linux kernel, the following vulnerability has been resolved: net: tun: unlink NAPI from device on destruction Syzbot found a race between tun file and device destruction. NAPIs live in struct tunfile which can get destroyed before the netdev so we have to del them explicitly. The current...

5.5CVSS6.8AI score0.00268EPSS