CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8959 matches found

Prion•added 2022/05/11 6:15 p.m.•21 views

Code injection

Acrobat Reader DC versions 22.001.20085 and earlier, 20.005.3031x and earlier and 17.012.30205 and earlier is affected by the use of a variable that has not been initialized when processing of embedded fonts, potentially resulting in arbitrary code execution in the context of the current user...

9.3CVSS7.7AI score0.02107EPSS

Exploits0References1Affected Software4

RedHat Linux•added 2022/05/10 1:58 p.m.•0 views

kernel: perf/smmuv3: Fix hotplug callback leak in arm_smmu_pmu_init()

A resource-handling flaw was found in the Linux kernel performance monitoring driver for ARM System Memory Management Unit version 3 in the way hotplug callbacks are registered during driver initialization. If driver registration fails, previously added CPU hotplug callbacks are not removed,...

5.5CVSS7.2AI score0.00017EPSS

Exploits0References5

Microsoft CVE•added 2022/05/10 7:0 a.m.•4 views

An issue was discovered in the Linux kernel through 5.17.5. io_rw_init_file in fs/io_uring.c lacks initialization of kiocb->private.

...

7.8CVSS7.7AI score0.01656EPSS

Exploits1

Positive Technologies•added 2022/05/10 12:0 a.m.•4 views

PT-2022-2742 · Siemens · Simatic Pcs 7 +2

Name of the Vulnerable Software and Affected Versions: SIMATIC PCS 7 versions V8.2 through V9.1 SIMATIC PCS 7 version V9.0 through V9.0 SP3 UC06 SIMATIC PCS 7 version V9.1 through V9.1 SP1 UC01 SIMATIC WinCC Runtime Professional versions V16 and earlier SIMATIC WinCC Runtime Professional version...

7.8CVSS7.4AI score0.00058EPSS

Exploits0References5

Oracle linux•added 2022/05/10 12:0 a.m.•61 views

Unbreakable Enterprise kernel-container security update

4.14.35-2047.513.2.el7 - Revert 'rds/ib: recover rds connection from stuck tx path' Nagappan Ramasamy Palaniappan Orabug: 34124234 4.14.35-2047.513.1.el7 - mm/page-writeback: Fix performance when BDI's share of ratio is 0. Chi Wu Orabug: 34050050 - esp: Fix possible buffer overflow in ESP...

9CVSS8.5AI score0.81981EPSS

Exploits139

Oracle linux•added 2022/05/10 12:0 a.m.•120 views

Unbreakable Enterprise kernel security update

4.14.35-2047.513.2 - Revert 'rds/ib: recover rds connection from stuck tx path' Nagappan Ramasamy Palaniappan Orabug: 34124234 4.14.35-2047.513.1 - mm/page-writeback: Fix performance when BDI's share of ratio is 0. Chi Wu Orabug: 34050050 - esp: Fix possible buffer overflow in ESP transformation...

9CVSS8.5AI score0.81981EPSS

Exploits139

CNNVD•added 2022/05/06 12:0 a.m.•2 views

TwelveMonkeys ImageIO 代码问题漏洞

TwelveMonkeys ImageIO is an add-on plug-in and extension for ImageIO for Java from the Norwegian individual developer Harald Kuhr. A security vulnerability exists in TwelveMonkeys ImageIO versions prior to 3.7.1, which stems from an insecure initialization of the XML parser that reads XMP metadat...

9.8CVSS8.3AI score0.00298EPSS

Exploits0References3

BDU FSTEC•added 2022/05/06 12:0 a.m.•1 views

The vulnerability of the io_rw_init_file function in the Linux operating system’s kernel allows a hacker to gain unauthorized access to protected information.

The vulnerability of the iorwinitfile function fs/iouring.c in the Linux kernel is related to initialization errors. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

3.3CVSS0.01656EPSS

Exploits1References12Affected Software2

OpenVAS•added 2022/05/05 12:0 a.m.•22 views

Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2022-1622)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.8CVSS5.1AI score0.0003EPSS

Exploits0References2

Ubuntu•added 2022/05/03 9:4 p.m.•109 views

USN-5390-2: Linux kernel (Raspberry Pi) vulnerabilities

David Bouman discovered that the netfilter subsystem in the Linux kernel did not properly validate passed user register indices. A local attacker could use this to cause a denial of service or possibly execute arbitrary code. CVE-2022-1015 David Bouman discovered that the netfilter subsystem in t...

7.8CVSS7.1AI score0.01481EPSS

Exploits11