CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: amdkfd: The gangctxbo memory is properly freed when attempting to initialize the user queue. The destructor of a gtt bo is declared as: void amdgpuamdkfdfreegttmemstruct amdgpudevice adev, void memobj; This function takes void as...

5.5CVSS6.3AI score0.00047EPSS

Schneier on Security•added 2026/05/01 11:18 a.m.•5 views

A Ransomware Negotiator Was Working for a Ransomware Gang

Someone pleaded guilty to secretly working for a ransomware gang as he negotiated ransomware payments for clients...

5.8AI score

RedHat Linux•added 2026/04/27 10:34 a.m.•3 views

kernel: net/sched: cls_u32: use skb_header_pointer_careful()

In the Linux kernel, the following vulnerability has been resolved: net/sched: clsu32: use skbheaderpointercareful skbheaderpointer does not fully validate negative @offset values. Use skbheaderpointercareful instead. GangMin Kim provided a report and a repro fooling u32classify: BUG: KASAN:...

7.1CVSS5.4AI score0.00018EPSS

Exploits0References5

Tenable Nessus•added 2026/01/22 12:0 a.m.•4 views

Azure Linux 3.0 Security Update: kernel (CVE-2025-22072)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-22072 advisory. - In the Linux kernel, the following vulnerability has been resolved: spufs: fix gang directory lifetimes prio...

5.5CVSS5.4AI score0.00013EPSS

Wired Threat Level•added 2026/01/14 3:59 p.m.•6 views

Trump Warned of a Tren de Aragua ‘Invasion.’ US Intel Told a Different Story

Hundreds of records obtained by WIRED show thin intelligence on the Venezuelan gang in the United States, describing fragmented, low-level crime rather than a coordinated terrorist threat...

HackRead•added 2026/01/11 10:41 a.m.•2 views

Europol Raids Disrupt Black Axe Cybercrime Ring in Spain

Authorities caught 34 members of the notorious Black Axe gang in Spain known for stealing millions of Euros through online romance scams and email fraud...

7AI score

HackRead•added 2025/12/31 11:35 a.m.•3 views

30,000 Korean Air Employee Records Stolen as Cl0p Leaks Data Online

Korean Air confirms a major data leak affecting 30,000 staff members after the Cl0p gang targeted a catering partner. Learn what data was stolen and the airline’s response to secure its data...

Positive Technologies•added 2025/12/31 12:0 a.m.•2 views

PT-2025-54290

3/ Cl0p gang exploits vulnerabilities like CVE-2023-22962 in GoAnywhere MFT. Their focus on data exfiltration has impacted global companies. Cl0p InfoSec...

7.1AI score

Exploits0References1

Wired Threat Level•added 2025/11/12 10:3 p.m.•2 views

DHS Kept Chicago Police Records for Months in Violation of Domestic Espionage Rules

The Department of Homeland Security collected data on Chicago residents accused of gang ties to test if police files could feed an FBI watchlist. Months passed before anyone noticed it wasn’t deleted...

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2006-5428

Malware in sbrugna...

5CVSS6.4AI score0.00392EPSS

Exploits0References5

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-30117

Malicious code in bioql PyPI...

6.6AI score

Exploits0References6

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-11213

Malicious code in bioql PyPI...

7.2AI score0.00013EPSS

Exploits0References7

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-30116

Malicious code in bioql PyPI...

6.6AI score

Exploits0References6

OSSF Malicious Packages•added 2025/09/16 10:9 p.m.•3 views

Malicious code in @ui-ux-gang/devextreme-rpk (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware fc643d20a812778984d46636db2ea2e7e08c97ca2710b212c0b07a023461df59 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Snyk•added 2025/09/15 7:39 a.m.•0 views

Exploits0References6

Embedded Malicious Code

Overview Affected versions of this package are vulnerable to Embedded Malicious Code. Compromised versions of this package contain a file called bundle.js that exfiltrates secrets from the user's accounts, including credentials and API tokens. It also downloads malicious files and repackages them...

9.8CVSS7AI score

HackRead•added 2025/08/15 3:11 p.m.•2 views

Police Bust Crypto Scammers, Nab Smishing SMS Blaster Operator

Thai police arrest SMS Blaster operator in smishing scam and bust crypto laundering gang moving $30M monthly through…...

7.3AI score