CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

200 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•6 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: 9p: Fixed the fid refcount leak in v9fsvfsatomicopendotl. We need to release the directory fid if we fail at any point during the open operation. This fix addresses the issue of fid leaking during xfstests with the generic test 5...

5.5CVSS6.1AI score0.00143EPSS

Exploits0References1

AstraLinux•added 2026/05/20 5:53 a.m.•4 views

Astra Linux - уязвимость в linux-5.15, linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: 9p: Added missing locking around accessing the dentry fid list. Fixed a use-after-free issue when a thread accesses the dentry’s dfsdata fid list while another thread unlinks it from the dentry. UAF thread issues: refcountt:...

7.8CVSS6.8AI score0.00029EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•4 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: 9p: Fixed the fid refcount leak in v9fsvfsgetlink. We now check for protocol versions that are later than required, after a fid has been obtained. Simply move the version check to an earlier stage...

5.5CVSS6.2AI score0.00111EPSS

Exploits0References1

NVD•added 2026/05/04 8:16 a.m.•6 views

CVE-2026-7742

A flaw has been found in CodeAstro Online Classroom 1.0. The affected element is an unknown function of the file /OnlineClassroom/facultylogin. Executing a manipulation of the argument fid can lead to sql injection. The attack can be executed remotely. The exploit has been published and may be us...

6.5CVSS0.00011EPSS

Exploits0References5

EUVD•added 2026/05/04 7:0 a.m.•3 views

EUVD-2026-26928

6.5CVSS5.7AI score0.00011EPSS

Exploits0References5

ATTACKERKB•added 2026/05/04 7:0 a.m.•2 views

CVE-2026-7742

6.5CVSS6.5AI score0.00011EPSS

Exploits0References5Affected Software1

CVE•added 2026/05/04 7:0 a.m.•4 views

CVE-2026-7742

CodeAstro Online Classroom 1.0 contains a remotely exploitable SQL Injection in the facultylogin path, caused by manipulation of the fid argument in an unknown function of /OnlineClassroom/facultylogin. An exploit has been published, making the vulnerability actionable.

6.5CVSS6.5AI score0.00011EPSS

Exploits0References5

Cvelist•added 2026/05/04 7:0 a.m.•26 views

CVE-2026-7742 CodeAstro Online Classroom facultylogin sql injection

6.5CVSS0.00011EPSS

Exploits0References5

CNNVD•added 2026/05/04 12:0 a.m.•3 views

CodeAstro Online Classroom 注入漏洞

CodeAstro Online Classroom is an online classroom platform provided by CodeAstro Inc. Version 1.0 of CodeAstro Online Classroom has a SQL injection vulnerability. This vulnerability arises from an unknown function in the file/OnlineClassroom/facultylogin that operates on the parameter fid, allowi...

6.5CVSS6.7AI score0.00011EPSS

Exploits0References1

Positive Technologies•added 2026/05/04 12:0 a.m.•1 views

PT-2026-36785

6.5CVSS6.5AI score0.00011EPSS

Exploits0References6

AstraLinux•added 2026/05/03 11:59 p.m.•4 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: fs/notify: call exportfsencodefid with sumount Calling intotifyshowfdinfo on fd watching an overlayfs inode, while the overlayfs is being unmounted, can lead to dereferencing NULL ptr. This issue was found by syzkaller. Race...

5.7AI score0.00029EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•3 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: smb: client: The split caching of bitfields in cachedfid was introduced to avoid race conditions involving shared bytes in the Read-Modify-Write operations. The functions isopen, haslease, and onlist are stored in the same...

8.8CVSS5.9AI score0.0003EPSS

Exploits0References1

AstraLinux•added 2026/05/03 11:59 p.m.•3 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential UAF in smb2closecachedfid findorcreatecacheddir could grab a new reference after krefput had seen the refcount drop to zero but before cfidlistlock is acquired in smb2closecachedfid, leading to...

5.8AI score0.00036EPSS

Exploits0References1

Amazon•added 2026/03/27 12:0 a.m.•5 views

Important: kernel6.12

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: net/sched: schqfq: Fix null-deref in aggdequeue CVE-2025-40083 In the Linux kernel, the following vulnerability has been resolved: btrfs: fix memory leak of qgrouplist in btrfsaddqgrouprelation CVE-2025-40209 In t...

6.4AI score0.0009EPSS

Exploits0

OSV•added 2026/03/09 8:50 a.m.•2 views

CLSA-2026-1773046198 kernel: Fix of 31 CVEs

smb3: fix for slab out of bounds on mount to ksmbd CVE-2025-38728 - netfilter: nftsetpipapo: clamp maximum map bucket size to INTMAX CVE-2025-38201 - ALSA: usb-audio: Validate UAC3 power domain descriptors, too CVE-2025-38729 - net: atm: fix /proc/net/atm/lec handling CVE-2025-38180 - tcpbpf:...

7.8CVSS7AI score0.00208EPSS

Exploits3References1

SUSE CVE•added 2026/02/19 12:26 a.m.•1 views

SUSE CVE-2026-23230

In the Linux kernel, the following vulnerability has been resolved: smb: client: split cachedfid bitfields to avoid shared-byte RMW races isopen, haslease and onlist are stored in the same bitfield byte in struct cachedfid but are updated in different code paths that may run concurrently. Bitfiel...

5.8CVSS5.7AI score0.0003EPSS

Exploits0References7

NVD•added 2026/02/18 4:22 p.m.•2 views

CVE-2026-23230

8.8CVSS0.0003EPSS

Exploits0References7