CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

UbuntuCve•added 2026/01/05 10:15 a.m.•2 views

CVE-2025-68751

5.7AI score0.00015EPSS

Exploits0References11

OSV•added 2026/01/05 9:32 a.m.•2 views

CVE-2025-68751 s390/fpu: Fix false-positive kmsan report in fpu_vstl()

6AI score0.00015EPSS

Exploits0References6

Cvelist•added 2026/01/05 9:32 a.m.•21 views

CVE-2025-68751 s390/fpu: Fix false-positive kmsan report in fpu_vstl()

0.00015EPSS

UbuntuCve•added 2024/05/17 2:15 p.m.•12 views

CVE-2024-35802

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

5.9AI score

Exploits0References7

NVD•added 2024/04/03 3:15 p.m.•12 views

CVE-2024-26706

In the Linux kernel, the following vulnerability has been resolved: parisc: Fix random data corruption from exception handler The current exception handler implementation, which assists when accessing user space memory, may exhibit random data corruption if the compiler decides to use a different...

5.5CVSS7.8AI score0.00041EPSS

Exploits0References4

Code423n4•added 2023/11/17 12:0 a.m.•18 views

LinearBondingCurve.log2 function contains an incorrect shift operation that could lead to wrong calculation.

Lines of code Vulnerability details Impact The values in the shift operation are reversed. The provided inline assembly code for the log2 function appears to be an issue in the sequence of shift operations. Let's break down the relevant part of the code: r := or r, byte and0x1f, shrshrr, x,...

7.2AI score

Code423n4•added 2023/09/11 12:0 a.m.•6 views

Failure to Return Value from Low-Level Call

Lines of code Vulnerability details In Solidity, the "low-level call" operation, often used with inline assembly, is a powerful tool for interacting with external contracts. However, there is a specific bug related to low-level calls that can result in unexpected behavior. Instances 1: File:...

SUSE CVE•added 2023/02/15 6:16 a.m.•2 views

SUSE CVE-2005-4807

Stack-based buffer overflow in the asbad function in messages.c in the GNU as gas assembler in Free Software Foundation GNU Binutils before 20050721 allows attackers to execute arbitrary code via a .c file with crafted inline assembly code...

7.5CVSS8.2AI score0.06251EPSS

Exploits1References3

Code423n4•added 2023/01/22 12:0 a.m.•7 views

Optimizer Bug Regarding Memory Side Effects of Inline Assembly

Lines of code Vulnerability details Impact This bug only occurs under very specific conditions: the legacy optimizer must be enabled rather than the IR pipeline true for the current project configuration, and the affected assembly blocks must not refer to any local Solidity variables Proof of...

6.7AI score

Code423n4•added 2022/10/10 12:0 a.m.•10 views

USE OF SOLIDITY VERSION 0.8.14 WHICH HAS KNOWN ISSUES APPLICABLE TO Blur Exchange

Lines of code Vulnerability details Vulnerability details Vulnerability related to ‘Optimizer Bug Regarding Memory Side Effects of Inline Assembly’ ref : Blur Exchange inherits solidity contracts from openzeppelin and these uses inline assembly, and optimization is enabled while compiling...

Code423n4•added 2022/09/27 12:0 a.m.•13 views

Using non cleaned up variables inside of inline assembly

Lines of code Vulnerability details Impact There is a revealGobblers function in a ArtGobblers smart contract. Inside the function is an assembly insert, which operates with a variable with a size less than a machine word. But the code inside the assembly not checking that variable is cleaned up...

Code423n4•added 2022/08/27 12:0 a.m.•9 views

Griefing attacks on NounsAuctionHouse

Lines of code Vulnerability details Impact There is internal function safeTransferETH that is called in createBid. The function itself: function safeTransferETHaddress to, uint256 value internal returns bool bool success, = to.call value: value, gas: 30000 new bytes0; return success; Please note...

Kitploit•added 2021/07/07 9:30 p.m.•28 views

FindObjects-BOF - A Cobalt Strike Beacon Object File (BOF) Project Which Uses Direct System Calls To Enumerate Processes For Specific Loaded Modules Or Process Handles

A Cobalt Strike Beacon Object File BOF project which uses direct system calls to enumerate processes for specific modules or process handles. What is this repository for? Use direct systems calls within Beacon Object files to enumerate processes for specific loaded modules e.g. winhttp.dll,...

7.3AI score

Kitploit•added 2018/11/04 1:31 p.m.•121 views

BlobRunner - Quickly Debug Shellcode Extracted During Malware Analysis

BlobRunner is a simple tool to quickly debug shellcode extracted during malware analysis. BlobRunner allocates memory for the target file and jumps to the base or offset of the allocated memory. This allows an analyst to quickly debug into extracted artifacts with minimal overhead and effort. To...

7.3AI score

RedhatCVE•added 2015/10/30 9:34 a.m.•18 views

CVE-2005-4807

7.5CVSS8.5AI score0.06251EPSS

Exploits1References2

myhack58•added 2009/10/09 12:0 a.m.•41 views

Talking about the Ring0 privilege of obtain-vulnerability warning-the black bar safety net

Recently been trying to write a program to kill 3 6 0, but encountered a lot of trouble, even if elevated, the 能干掉 Winlogon.exe 也干不掉 360tray.exe depressed for half a day. Don't know 3 6 0 what weird means. Then find the Find the previous comparison of the bovine X-virus Panda burning incense...

0.4AI score