CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

NVD•added 2022/01/03 8:15 a.m.•12 views

CVE-2021-30274

Possible integer overflow in access control initialization interface due to lack and size and address validation in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and...

8.4CVSS0.00033EPSS

Prion•added 2022/01/03 8:15 a.m.•18 views

Double free

Possible use after free when process shell memory is freed using IOCTL call and process initialization is in progress in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon...

7.2CVSS7.9AI score0.00037EPSS

Prion•added 2022/01/03 8:15 a.m.•21 views

Integer overflow

7.2CVSS7.8AI score0.00033EPSS

CVE•added 2022/01/03 7:25 a.m.•59 views

CVE-2021-30274

CVE-2021-30274 concerns an integer overflow in the access initialization interface due to inadequate size and address validation. The issue is described across multiple sources as affecting Qualcomm/ Qualcomm Snapdragon platforms (including Snapdragon Auto, Compute, Connectivity, and related IoT/...

8.4CVSS7.8AI score0.00033EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2022/01/01 12:0 a.m.•2 views

PT-2025-53989

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s ath11k module related to the initialization of the qmi msg handler data structure. Specifically, the qmi msg handler requires null termination by the...

5.5AI score0.00023EPSS

Exploits0References16

Positive Technologies•added 2022/01/01 12:0 a.m.•2 views

PT-2025-37510

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's DRM subsystem related to the handling of DRM bridges within the meson driver. Specifically, DRM bridges created by meson encoder hdmi init and meson...

7.8CVSS5.5AI score0.00017EPSS

Exploits0References18

Positive Technologies•added 2022/01/01 12:0 a.m.•4 views

PT-2025-8324

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free bug has been identified in the Linux kernel's macsec module. This issue occurs when a new macsec device is created without obtaining a reference to the real device,...

7.8CVSS6.2AI score0.00013EPSS

OSV•added 2021/12/30 2:45 a.m.•14 views

GSD-2021-1002832 ipmi: fix initialization when workqueue allocation fails

ipmi: fix initialization when workqueue allocation fails This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.12 by commit...

OSV•added 2021/12/30 2:45 a.m.•16 views

GSD-2021-1002831 ipmi: ssif: initialize ssif_info->client early

ipmi: ssif: initialize ssifinfo-client early This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.15.12 by commit...

OSV•added 2021/12/30 2:44 a.m.•18 views

GSD-2021-1002805 ipmi: fix initialization when workqueue allocation fails

OSV•added 2021/12/30 2:43 a.m.•16 views

GSD-2021-1002796 ipmi: fix initialization when workqueue allocation fails

OSV•added 2021/12/30 2:43 a.m.•9 views

GSD-2021-1002795 ipmi: ssif: initialize ssif_info->client early

OSV•added 2021/12/30 2:43 a.m.•7 views

GSD-2021-1002787 ipmi: fix initialization when workqueue allocation fails

Positive Technologies•added 2021/12/30 12:0 a.m.•3 views

PT-2021-8083 · Linux +4 · Linux Kernel +4

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the incorrect initialization of dev-work after calling input register device in the appletouch component of the Linux kernel. This may cause a warning in flush...

8.8CVSS6.7AI score0.00084EPSS

Exploits0References659

Code423n4•added 2021/12/24 12:0 a.m.•8 views

Vader TWAP averages wrong

Handle cmichel Vulnerability details The vader price in LiquidityBasedTWAP.getVaderPrice is computed using the pastLiquidityWeights and pastTotalLiquidityWeight return values of the syncVaderPrice. The syncVaderPrice function does not initialize all weights and the total liquidity weight does not...

6.7AI score

AlmaLinux•added 2021/12/21 9:11 a.m.•14 views

cloud-init bug fix and enhancement update

The cloud-init packages provide a set of init scripts for cloud instances. Cloud instances need special scripts to run during initialization to retrieve and install SSH keys, and to let the user run various scripts. Bug Fixes and Enhancements: cloud-init.service fails to start after package updat...

7AI score

Zero Day Initiative•added 2021/12/21 12:0 a.m.•27 views

Adobe Premiere Rush MP4 File Parsing Uninitialized Variable Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Adobe Premiere Rush. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

3.3CVSS4.1AI score0.0077EPSS

Zero Day Initiative•added 2021/12/21 12:0 a.m.•24 views

Adobe Premiere Rush MP4 File Parsing Uninitialized Variable Information Disclosure Vulnerability

3.3CVSS4.1AI score0.00447EPSS