CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

21 matches found

AstraLinux•added 2026/05/03 11:59 p.m.•3 views

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: nfs: fix UAF in direct writes In production we have been hitting the following warning consistently ------------ cut here ------------ refcountt: underflow; use-after-free. WARNING: CPU: 17 PID: 1800359 at lib/refcount.c:28...

7.8CVSS6.9AI score0.00012EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•4 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: btrfs: do not double complete bio on errors during compressed reads I hit some weird panics while fixing up the error handling from btrfslookupbiosums. Turns out the compression path will complete the bio we use if we set up any ...

5.5CVSS6.5AI score0.00143EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•1 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: nvmet: pci-epf: Do not complete commands twice if nvmetreqinit fails Have nvmetreqinit and req-execute complete failed commands. Description of the problem: nvmetreqinit calls nvmetreqcomplete internally upon failure, e.g.,...

5.5CVSS6.7AI score0.00027EPSS

Exploits0References2

Positive Technologies•added 2026/04/22 12:0 a.m.•2 views

PT-2026-34341

In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: fix possible wrong descriptor completion in llist abort desc At the end of this function, d is the traversal cursor of flist, but the code completes found instead. This can lead to issues such as NULL pointer...

5.6AI score0.00065EPSS

Exploits0References5

CNNVD•added 2026/04/22 12:0 a.m.•3 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the fact that nvme-pci does not ensure that the polling queue is indeed a polling queue. This cou...

4.7CVSS5.8AI score0.00022EPSS

Exploits0References1

CNNVD•added 2026/04/22 12:0 a.m.•6 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from incorrect descriptor completion in the llistabortdesc function of the dmaengine module. This...

9.8CVSS7.1AI score0.00065EPSS

Exploits0References1

Tenable Nessus•added 2025/11/05 12:0 a.m.•1 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990370)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990370 advisory. In the Linux kernel, the following vulnerability has been resolved: nfs: fix UAF in direct writes In production we have been hitting the following warning...

7.8CVSS6.2AI score0.00012EPSS

Exploits0References3

Tenable Nessus•added 2025/11/05 12:0 a.m.•1 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990023)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990023 advisory. In the Linux kernel, the following vulnerability has been resolved: nfs: fix UAF in direct writes In production we have been hitting the following warning...

7.8CVSS6.2AI score0.00012EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2025-25544

Malicious code in bioql PyPI...

6.4AI score0.00027EPSS

Exploits0References2

Tenable Nessus•added 2025/09/02 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2025-38658

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - nvmet: pci-epf: Do not complete commands twice if nvmetreqinit fails Have nvmetreqinit and req-execute complete failed commands. Description of the problem:...

5.5CVSS5.8AI score0.00027EPSS

Exploits0References2

RedhatCVE•added 2025/08/24 4:7 p.m.•3 views

CVE-2025-38658

5.5CVSS6.7AI score0.00027EPSS

Exploits0References4

NVD•added 2025/08/22 4:15 p.m.•3 views

CVE-2025-38658

5.5CVSS0.00027EPSS

Exploits0References2

OSV•added 2025/08/22 4:15 p.m.•0 views

UBUNTU-CVE-2025-38658

5.5CVSS5.8AI score0.00027EPSS

Exploits0References5

CVE•added 2025/08/22 4:1 p.m.•14 views

CVE-2025-38658

Summary (CVE-2025-38658) : In the Linux kernel nvmet PCIe target, a failure path in nvmet_req_init() could cause a command to be completed twice (one via __nvmet_req_complete() -> queue_response, and another via nvmet_pci_epf_exec_iod_work()), potentially sending two completions to the host an...

5.5CVSS6.8AI score0.00027EPSS

Exploits0References2Affected Software1

Debian CVE•added 2025/08/22 4:1 p.m.•3 views

CVE-2025-38658

5.5CVSS5.4AI score0.00027EPSS

Exploits0

OSV•added 2025/08/22 4:1 p.m.•3 views

CVE-2025-38658 nvmet: pci-epf: Do not complete commands twice if nvmet_req_init() fails

5.5CVSS6.4AI score0.00027EPSS

Exploits0References5

Positive Technologies•added 2025/08/22 12:0 a.m.•3 views

PT-2025-34419 · Nvme-Cli +1 · Nvme-Cli +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a flaw within the nvmet PCI-EPF subsystem where commands may be completed twice if nvmet req init fails. This double completion can corrupt the state of the P...

6.3AI score0.00027EPSS

Exploits0References4

OSV•added 2025/02/26 7:0 a.m.•3 views

DEBIAN-CVE-2022-49167

5.5CVSS5.4AI score0.00143EPSS

Exploits0References1

OSV•added 2025/02/26 7:0 a.m.•1 views

UBUNTU-CVE-2022-49167

5.5CVSS5.7AI score0.00143EPSS

Exploits0References6