CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

CVE•added 2026/01/07 8:26 p.m.•5 views

CVE-2026-22188

Panda3D up to version 1.10.16 is affected by a DoS due to unbounded stack allocation in the deploy-stub. The deploy-stub allocates argv_copy and argv_copy2 with alloca() based on attacker-controlled argc without validation, which can exhaust stack space and crash the process during Python interpr...

6.9CVSS5.7AI score0.00028EPSS

Exploits1References4Affected Software1

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-59713

Malicious code in bioql PyPI...

6AI score0.00009EPSS

Exploits0References7

NVD•added 2025/07/25 1:15 p.m.•3 views

CVE-2025-38387

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Initialize objevent-objsublist before xainsert The objevent may be loaded immediately after inserted, then if the listhead is not initialized then we may get a poisonous pointer. This fixes the crash below: mlx5core...

5.5CVSS0.00066EPSS

Exploits0References10

Debian CVE•added 2025/02/26 1:55 a.m.•6 views

CVE-2022-49217

In the Linux kernel, the following vulnerability has been resolved: scsi: pm8001: Fix abort all task initialization In pm80xxsendabortall, the nelem field of the ccb used is not initialized to 0. This missing initialization sometimes lead to the task completion path seeing the ccb with a non-zero...

5.5CVSS5.8AI score0.00025EPSS

Exploits0

RedhatCVE•added 2024/12/29 2:52 p.m.•7 views

CVE-2024-56676

In the Linux kernel, the following vulnerability has been resolved: thermal: testing: Initialize some variables annoteded with free Variables annotated with free need to be initialized if the function can return before they get updated for the first time or the attempt to free the memory pointed ...

5.5CVSS6.9AI score0.00019EPSS

Exploits0References4

CNNVD•added 2024/05/30 12:0 a.m.•1 views

Linux kernel security vulnerabilities

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a kernel crash when devlink is reloaded during initialization of the net:hns3 module...

5.5CVSS6.5AI score0.00011EPSS

Exploits0References6

SUSE CVE•added 2024/05/23 3:4 a.m.•1 views

SUSE CVE-2021-47481

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Initialize the ODP xarray when creating an ODP MR Normally the zero fill would hide the missing initialization, but an errant set to descsize in regcreate causes a crash: BUG: unable to handle page fault for address:...

5.5CVSS6.4AI score0.00031EPSS

Exploits0References8

Positive Technologies•added 2022/10/21 12:0 a.m.•2 views

PT-2022-36695 · Oracle · Java.Base

Name of the Vulnerable Software and Affected Versions: java.base affected versions not specified Description: A security exception crash has been reported. The crash occurs in the jaz.Zer class during the initialization process, specifically in the java.lang.Class.forName0 and...

7AI score

Exploits0References2

OSV•added 2017/12/04 8:29 a.m.•1 views

CVE-2017-17128

The h264sliceinit function in libavcodec/h264slice.c in Libav 12.2 allows remote attackers to cause a denial of service segmentation fault and application crash via a crafted file...

6.5CVSS5.8AI score

Exploits0References1

Hacker One•added 2016/11/23 10:28 p.m.•19 views

shopify-scripts: mruby-time: Crash host with uninitialized Time obj

So once again, another try ; As always hopefully unknown and valid ; Time::initializecopy performs its copy action even on Time objects on which initialize never ran, leading to a crash. The PoC crashes https://www.mruby.science/runs - didn't try Shopify production servers for the usual reasons. ...

0.7AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by