CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

68 matches found

AstraLinux•added 2026/05/03 11:59 p.m.•4 views

Astra Linux - уязвимость в linux-5.10, linux, linux-5.15

In the Linux kernel, the following vulnerability has been resolved: platform/chrome: crosecchardev: fixed the kernel data leak caused by ioctl. It is possible to view the data of kernel pages by providing a larger value for insize in struct croseccommand1 when invoking EC host commands. This issu...

7.1CVSS6.1AI score0.00064EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: i2c: cros-ec-tunnel: defer probe if parent EC is not present When i2c-cros-ec-tunnel and the EC driver are built-in, the EC parent device will not be found, leading to a NULL pointer dereference. This issue can also be...

5.5CVSS6.5AI score0.00066EPSS

Exploits0References2

Tenable Nessus•added 2026/04/21 12:0 a.m.•4 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-013335)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013335 advisory. In the Linux kernel, the following vulnerability has been resolved: ACPI: EC: Fix oops when removing custom query handlers When removing custom query handlers, the...

6.1AI score0.00034EPSS

Exploits0References4

Microsoft CVE•added 2026/04/14 8:2 a.m.•1 views

ACPI: EC: clean up handlers on probe failure in acpi_ec_setup()

...

7CVSS6.2AI score0.00015EPSS

Exploits0

RedhatCVE•added 2026/04/13 5:25 p.m.•0 views

CVE-2026-31426

A flaw was found in the Linux kernel's Advanced Configuration and Power Interface ACPI Embedded Controller EC subsystem. During the setup of the EC handler, if a probe deferral occurs on specific hardware, the system fails to properly deallocate resources. This oversight creates a use-after-free...

7CVSS5.8AI score0.00015EPSS

Exploits0References4

EUVD•added 2026/04/13 3:31 p.m.•1 views

EUVD-2026-21953

In the Linux kernel, the following vulnerability has been resolved: ACPI: EC: clean up handlers on probe failure in acpiecsetup When ecinstallhandlers returns -EPROBEDEFER on reduced-hardware platforms, it has already started the EC and installed the address space handler with the struct acpiec...

5.7AI score0.00015EPSS

Exploits0References7

NVD•added 2026/04/13 2:16 p.m.•0 views

CVE-2026-31426

7CVSS0.00015EPSS

Exploits0References6

CVE•added 2026/04/13 1:40 p.m.•10 views

CVE-2026-31426

Summary: CVE-2026-31426 concerns the Linux kernel ACPI EC handling. When ec_install_handlers() defers probing on reduced‑hardware platforms, the error path could leave a dangling EC space handler context if acpi_ec_setup() propagates the error, leading to use‑after‑free when AML accesses an OpReg...

7CVSS5.7AI score0.00015EPSS

Exploits0References6Affected Software1

Debian CVE•added 2026/04/13 1:40 p.m.•3 views

CVE-2026-31426

7CVSS5.3AI score0.00015EPSS

Exploits0

Cvelist•added 2026/04/13 1:40 p.m.•24 views

CVE-2026-31426 ACPI: EC: clean up handlers on probe failure in acpi_ec_setup()

7CVSS0.00015EPSS

Exploits0References6

UbuntuCve•added 2026/04/13 12:0 a.m.•1 views

CVE-2026-31426

7CVSS6AI score0.00015EPSS

Exploits0References2

CVE•added 2026/01/13 3:29 p.m.•8 views

CVE-2025-68804

CVE-2025-68804 relates to the Linux kernel component platform/chrome: cros_ec_ishtp, where a UAF occurs after a driver is unbound because the EC device isn’t unregistered in the driver’s .remove(), leaving a kthread (cros_ec_console_log_work) that may access the device. Effect: crash due to use-a...

6.2AI score0.00068EPSS

Exploits0References7

RedhatCVE•added 2026/01/09 11:18 a.m.•2 views

CVE-2021-0060

Insufficient compartmentalization in HECI subsystem for the IntelR SPS before versions SPSE504.01.04.516.0, SPSE504.04.04.033.0, SPSE504.04.03.281.0, SPSE503.01.03.116.0, SPSE305.01.04.309.0, SPS02.04.00.101.0, SPSSoC-A05.00.03.114.0, SPSSoC-X04.00.04.326.0, SPSSoC-X03.00.03.117.0,...

7.2CVSS7AI score0.00207EPSS

Exploits0References1

SUSE CVE•added 2025/12/31 12:27 a.m.•3 views

SUSE CVE-2023-54244

In the Linux kernel, the following vulnerability has been resolved: ACPI: EC: Fix oops when removing custom query handlers When removing custom query handlers, the handler might still be used inside the EC query workqueue, causing a kernel oops if the module holding the callback function was...

5.5CVSS6.5AI score0.00034EPSS

Exploits0References7

EUVD•added 2025/12/30 3:30 p.m.•3 views

EUVD-2023-60397

5.9AI score0.00034EPSS

Exploits0References9

OSV•added 2025/12/30 1:16 p.m.•0 views

UBUNTU-CVE-2023-54244

5.7AI score0.00034EPSS

Exploits0References11

UbuntuCve•added 2025/12/30 1:16 p.m.•1 views

CVE-2023-54244

6.1AI score0.00034EPSS

Exploits0References10

Cvelist•added 2025/12/30 12:15 p.m.•19 views

CVE-2023-54244 ACPI: EC: Fix oops when removing custom query handlers

0.00034EPSS

Exploits0References8

Debian CVE•added 2025/12/30 12:15 p.m.•4 views

CVE-2023-54244

5.5AI score0.00034EPSS

Exploits0

Positive Technologies•added 2025/12/30 12:0 a.m.•1 views

PT-2025-54073

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to ACPI Embedded Controller EC query handlers. Specifically, removing custom query handlers could lead to a kernel oops if the module containing...

7.8CVSS7.1AI score0.00249EPSS

Exploits2References900

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by