CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added yesterday•24 views

CVE-2025-15653 Dräger Zeus IE Anesthesia Workstation USB Interface Privilege Escalation

7CVSS

CVE•added yesterday•9 views

CVE-2025-15653

The affected products are Dräger Zeus Infinity Empowered (Zeus IE) and Zeus RS C500 anesthesia workstations. The vulnerability is a local privilege escalation via unprotected USB interfaces that attackers with physical access can exploit to compromise software integrity. Reported impact includes ...

7CVSS5.8AI score

NVD•added 2 days ago•6 views

CVE-2026-37222

FlexRIC v2.0.0 uses hardcoded assertions to validate Information Element IE counts in decoded E2AP messages. A remote unauthenticated attacker can send a valid E2AP PDU containing an unexpected number of IEs e.g., an E2setupRequest with extra optional fields to crash the near-RT RIC port 36421 or...

7.5CVSS0.00081EPSS

AstraLinux•added 2026/05/20 5:53 a.m.•8 views

Astra Linux - уязвимость в ntfs-3g

A properly crafted NTFS image can lead to a out-of-bounds read in ntfsielookup in NTFS-3G before version 2021.8.22...

7.8CVSS6.8AI score0.00021EPSS

SUSE CVE•added 2026/05/13 3:34 a.m.•5 views

SUSE CVE-2026-43387

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: properly validate the data in rtwgetieex Just like in commit 154828bf9559 "staging: rtl8723bs: fix out-of-bounds read in rtwgetie parser", we don't trust the data in the frame so we should check the length...

RedhatCVE•added 2026/05/08 9:37 p.m.•4 views

Exploits0References3

CVE-2026-43386

A flaw was found in the Linux kernel's rtl8723bs component. An incorrect length check within the rtwrestructwmmie function can lead to an out-of-bounds read. This vulnerability occurs because the code attempts to access memory beyond the allocated buffer before verifying the index is within bound...

7.1CVSS5.9AI score0.00013EPSS

Exploits0References4

EUVD•added 2026/05/08 3:31 p.m.•7 views

EUVD-2026-28693

EUVD•added 2026/05/08 3:31 p.m.•4 views

Exploits0References9

EUVD-2026-28692

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: fix potential out-of-bounds read in rtwrestructwmmie The current code checks 'i + 5 inlen' at the end of the if statement. However, it accesses 'iniei + 5' before that check, which can lead to an out-of-bounds...

OSV•added 2026/05/08 3:16 p.m.•3 views

Exploits0References9

UBUNTU-CVE-2026-43386

7.1CVSS5.8AI score0.00013EPSS

CVE•added 2026/05/08 2:21 p.m.•10 views

CVE-2026-43386

The CVE-2026-43386 issue affects the Linux kernel rtl8723bs component, specifically in the rtw_restruct_wmm_ie path, where an insufficiently guarded access can cause an out-of-bounds read. The root cause is that the code accesses in_ie[i + 5] before ensuring i + 5 is within in_len, potentially le...

7.1CVSS5.8AI score0.00013EPSS

Exploits0References8Affected Software1

Positive Technologies•added 2026/05/08 12:0 a.m.•5 views

PT-2026-39048

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the rtl8723bs staging driver where the rtw get ie ex function does not properly validate data within the frame. This lack of length verification can lead to improper...

OSV•added 2026/03/26 11:16 a.m.•0 views

Exploits0References12

DEBIAN-CVE-2026-23396

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix NULL deref in meshmatcheslocal meshmatcheslocal unconditionally dereferences ie-meshconfig to compare mesh configuration parameters. When called from meshrxcsaframe, the parsed action-frame elements may not...

5.5CVSS5.3AI score0.00031EPSS

Exploits0References1

UbuntuCve•added 2026/03/26 11:16 a.m.•1 views

CVE-2026-23396

5.5CVSS5.7AI score0.00031EPSS

Exploits0References8

Tenable Nessus•added 2026/03/26 12:0 a.m.•0 views

Linux Distros Unpatched Vulnerability : CVE-2026-23396

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wifi: mac80211: fix NULL deref in meshmatcheslocal meshmatcheslocal unconditionally dereferences ie-meshconfig to compare mesh configuration parameters. When...

5.5CVSS5.8AI score0.00031EPSS

OSV•added 2026/02/06 8:16 p.m.•1 views

CVE-2026-2064

A vulnerability was identified in Portabilis i-Educar up to 2.10. Affected by this vulnerability is an unknown functionality of the file /intranet/meusdadod.php of the component User Data Page. Such manipulation of the argument File leads to cross site scripting. It is possible to launch the atta...

5.4CVSS3.7AI score

Exploits0References4

Tenable Nessus•added 2026/01/16 12:0 a.m.•1 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001204)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001204 advisory. In the function wmisetie, the length validation code does not handle unsigned integer overflow properly. As a result, a large value of the 'ielen' argument can cause...

7.8CVSS7.7AI score0.00152EPSS

Tenable Nessus•added 2026/01/15 12:0 a.m.•2 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003521)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003521 advisory. In the function wmisetie, the length validation code does not handle unsigned integer overflow properly. As a result, a large value of the 'ielen' argument can cause...

7.8CVSS7.7AI score0.00152EPSS

Tenable Nessus•added 2026/01/15 12:0 a.m.•2 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003498)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003498 advisory. In the function wmisetie, the length validation code does not handle unsigned integer overflow properly. As a result, a large value of the 'ielen' argument can cause...

7.8CVSS7.7AI score0.00152EPSS