CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

431 matches found

Talos Blog•added 2026/02/26 7:0 p.m.•5 views

Henry IV, Hotspur, Hal, and hallucinations

Welcome to this week's edition of the Threat Source newsletter. " 'Tis dangerous to take a cold, to sleep, to drink; but I tell you, my lord fool, out of this nettle, danger, we pluck this flower, safety." - Hotspur, Shakespeare's Henry IV, Part 1: Act 2 Scene 3 I get it. Hotspur is the...

10CVSS6AI score0.54797EPSS

Exploits9

Tenable Nessus•added 2026/01/14 12:0 a.m.•2 views

MiracleLinux 3 : acpid-1.0.4-9.1.1AXS3 (AXSA:2009-429:03)

The remote MiracleLinux 3 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2009-429:03 advisory. acpid is a daemon that dispatches ACPI events to user-space programs. Security issues fixed with this release: CVE-2009-4033 No information available at the...

6.9CVSS5.5AI score0.0004EPSS

Exploits1References2

RedhatCVE•added 2026/01/09 11:17 a.m.•1 views

CVE-2021-0673

In Audio Aurisys HAL, there is a possible permission bypass due to a missing permission check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS05977326; Issue ID: ALPS05977326...

7.8CVSS6.7AI score0.00019EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 11:16 a.m.•6 views

CVE-2021-0540

In halWrapperDataCallback of halwrapper.cc, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android...

6.7CVSS7.1AI score0.00015EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 10:16 a.m.•4 views

CVE-2019-2023

In ServiceManager::add function in the hardware service manager, there is an insecure permissions check based on the PID of the caller. This could allow an app to add or replace a HAL service with its own service, gaining code execution in a privileged process.Product: AndroidVersions: Android-8....

7.8CVSS7.2AI score0.00116EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 9:14 a.m.•2 views

CVE-2022-23429

An improper boundary check in audio hal service prior to SMR Feb-2022 Release 1 allows attackers to read invalid memory and it leads to application crash...

5.3CVSS6.7AI score0.00016EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:44 a.m.•8 views

CVE-2022-23428

An improper boundary check in edenruntime hal service prior to SMR Feb-2022 Release 1 allows arbitrary memory write and code execution...

8.4CVSS7.1AI score0.00014EPSS

Exploits0References1

RedhatCVE•added 2025/11/05 4:14 a.m.•2 views

CVE-2025-27064

Information disclosure while registering commands from clients with diag through diagHal...

6.1CVSS6.9AI score0.00016EPSS

Exploits0References1

CVE•added 2025/11/04 3:19 a.m.•9 views

CVE-2025-27064

CVE-2025-27064 denotes an information-disclosure vulnerability tied to Qualcomm chipsets/ Core Services, caused by a buffer over-read when registering commands from clients via diagHal. The CVE is listed in multiple sources (NVD/NVD-derived entries, Red Hat, CVE List) with a Common exposure in Qu...

6.1CVSS6.5AI score0.00016EPSS

Exploits0References1Affected Software1