CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

937 matches found

Positive Technologies•added 2 days ago•7 views

PT-2026-47371

In the Linux kernel, the following vulnerability has been resolved: hfsplus: fix held lock freed on hfsplus fill super hfsplus fill super calls hfs find init to initialize a search structure, which acquires tree-tree lock. If the subsequent call to hfsplus cat build key fails, the function jumps ...

5.5AI score0.00018EPSS

Exploits0References6

RedhatCVE•added 2026/05/28 5:29 p.m.•7 views

CVE-2026-46169

A flaw was found in the Linux kernel's HFS Plus HFS+ filesystem. A local attacker can exploit this vulnerability by mounting a specially crafted, corrupted HFS+ filesystem. The hfsbrecread function fails to validate the size of catalog records, which can lead to the use of uninitialized data. Thi...

5.5CVSS5.8AI score0.00024EPSS

Exploits0References4

Debian CVE•added 2026/05/27 12:18 p.m.•6 views

CVE-2026-45960

In the Linux kernel, the following vulnerability has been resolved: hfsplus: return error when node already exists in hfsbnodecreate When hfsbnodecreate finds that a node is already hashed which should not happen in normal operation, it currently returns the existing node without incrementing its...

5.7AI score0.00032EPSS

Exploits0

Tenable Nessus•added 2026/05/25 12:0 a.m.•23 views

Ubuntu Pro FIPS-updates 24.04 LTS : Linux kernel (FIPS) vulnerabilities (USN-8296-1)

The remote Ubuntu Pro FIPS-updates 24.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-8296-1 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update...

9.8CVSS6.8AI score0.00146EPSS

Exploits0References190

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: hfs: Replace BUGON with error handling for CNID count checks. In the fields nextid, foldercount, and filecount in the super block, the values were expanded to 64 bits, and mechanisms like BUGON were added to detect overflow...

5.5CVSS5.3AI score0.00017EPSS

Exploits0References1

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: hfs: Ensure that sb-sfsinfo is always cleaned up. When hfs was converted to the new mount API, a bug was introduced by changing the allocation pattern of sb-sfsinfo. If setupbdevsuper fails after a new superblock has been allocat...

5.5CVSS5.7AI score0.00017EPSS

Exploits0References1

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в linux-5.10, linux-6.1, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: hfs: fixed the KMSAN uninit-value issue in hfsfindsetzerobits The syzbot reported an issue in hfsfindsetzerobits: ===================================================== BUG: KMSAN: uninit-value in hfsfindsetzerobits+0x74d/0xb60...

5.9AI score0.0004EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerabilities have been resolved: hfs: Fixed OOB write operations in hfsasc2mac. Syzbot reported a OOB write bug: loop0: A change in capacity was detected, from 0 to 64. =========================================== Bug: KASAN: Out-of-bounds access in...

5.8AI score0.00061EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•1 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: hfs: Fix for potential use after free in hfs-correctnextunusedCNID. This code calls hfsbnodeputnode, which decreases the reference count, and then references “node” on the next line. It’s only safe to use “node” when we hold a...

5.4AI score0.00025EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•4 views

Astra Linux - уязвимость в grub2

GNU GRUB also known as GRUB2 from version 2.12 has a heap-based buffer overflow in the fs/hfs.c file, due to crafted sblock data within an HFS filesystem...

8.8CVSS7.1AI score0.00203EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•1 views

Astra Linux - уязвимость в linux-5.10, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: hfsplus: Verify the inode mode when loading from disk. syzbot reports that the SIFMT bits of the inode-imode field can become invalid when the SIFMT bits of the 16-bit “mode” field loaded from disk are corrupted. According to 1,...

5.2AI score0.00052EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-5.10, linux, linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: hfs: fixed the missing hfsbnodeget function in hfsbnodecreate. Syzbot discovered a kernel bug in hfsbnodeput: Kernel bug at fs/hfs/bnode.c:466! Invalid opcode: 0000 1 PREEMPT SMP KASAN CPU: 0 PID: 3634 Comm: kworker/u4:5 Not...

6AI score0.0004EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•5 views

Astra Linux - уязвимость в grub2

A flaw was discovered in the HFS filesystem. When reading the name of an HFS volume during the grubfsmount function, the HFS filesystem driver uses the user-provided volume name as input without properly verifying the length of that name. This issue may lead to a heap-based out-of-bounds write...

7.8CVSS6.8AI score0.00009EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•1 views

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: hfs: fixed the issue where fields of hfs inodeinfo were initialized after hfsallocinode Syzbot reports an issue with accessing uninitialized values as follows: loop0: detected a change in capacity from 0 to 64...

5.5CVSS6.3AI score0.00021EPSS

Exploits0References2

GithubExploit•added 2026/05/16 11:24 p.m.•84 views

Exploit for Code Injection in Rejetto Http_File_Server

!BobXploit Cybersecurityhttps://img.shields.io/badge/BobXplo...

10CVSS6.5AI score0.94361EPSS

Exploits23

SUSE CVE•added 2026/05/09 2:40 a.m.•5 views

SUSE CVE-2026-43228

In the Linux kernel, the following vulnerability has been resolved: hfs: Replace BUGON with error handling for CNID count checks In a06ec283e125 nextid, foldercount, and filecount in the super block info were expanded to 64 bits, and BUGONs were added to detect overflow. This triggered an error...

5.5CVSS5.7AI score0.00017EPSS

Exploits0References3

RedhatCVE•added 2026/05/07 12:1 a.m.•5 views

CVE-2026-43268

A flaw was found in the HFS Plus hfsplus filesystem within the Linux kernel. This vulnerability occurs because the hfsplus filesystem incorrectly identifies certain special filesystem objects as regular files. This misclassification can lead to inconsistencies with how the operating system's...

5.5CVSS5.8AI score0.00018EPSS

Exploits0References4

RedhatCVE•added 2026/05/06 10:27 p.m.•7 views

CVE-2026-43228

A flaw was found in the Linux kernel HFS component. A local attacker could provide a specially crafted and corrupted Master Directory Block MDB to trigger a kernel panic. This vulnerability, caused by improper error handling of CNID count checks, leads to a system Denial of Service DoS...

5.5CVSS5.8AI score0.00017EPSS

Exploits0References4