CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

In the Linux kernel, the following vulnerability has been resolved: ACPI: tables: FPDT: Don't call acpiosmapmemory on invalid phys address On a Packard Bell Dot SC Intel Atom N2600 model there is a FPDT table which contains invalid physical addresses, with high bits set which fall outside the ran...

7.8CVSS6AI score0.00018EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 4:21 p.m.•7 views

CVE-2020-27797

An invalid memory address reference was discovered in the elflookup function in plxelf.cpp in UPX 4.0.0 via a crafted Mach-O file...

5.5CVSS6.7AI score0.00049EPSS

Exploits1

IBM Security Bulletins•added 2025/03/26 3:57 a.m.•70 views

Security Bulletin: Multiple vulnerabilities in IBM Storage Defender – Data Protect

Summary There are multiple vulnerabilities in Open Source packages that affect IBM Storage Defender – Data Protect. These vulnerabilities can result in runtime errors, denial of service, remote code execution, arbitrary command execution, bypass of security restrictions, incorrect file permission...

10CVSS9.2AI score0.5922EPSS

Exploits25Affected Software1

Tenable Nessus•added 2025/03/04 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2018-18520

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An Invalid Memory Address Dereference exists in the function elfend in libelf in elfutils through v0.174. Although eu-size is intended to support ar files insid...

6.5CVSS6AI score0.00889EPSS

Exploits1References2

NVD•added 2024/10/24 9:15 p.m.•14 views

CVE-2024-48426

A segmentation fault SEGV was detected in the SortByPTypeProcess::Execute function in the Assimp library during fuzz testing with AddressSanitizer. The crash occurred due to a read access to an invalid memory address 0x1000c9714971...

6.2CVSS0.00038EPSS

Exploits1References1

Cvelist•added 2024/10/24 12:0 a.m.•19 views

CVE-2024-48426

0.00038EPSS

Exploits1References1

CVE•added 2024/10/24 12:0 a.m.•55 views

CVE-2024-48426

The connected documents describe CVE-2024-48426 affecting the Assimp library, specifically a segmentation fault in SortByPTypeProcess::Execute triggered by a read access to an invalid memory address during fuzz testing with AddressSanitizer (address 0x1000c9714971). Impact is crash of the applica...

6.2CVSS6.9AI score0.00038EPSS

Exploits1References1Affected Software1

Debian CVE•added 2024/10/24 12:0 a.m.•10 views

CVE-2024-48426

6.2CVSS6.3AI score0.00038EPSS

Exploits1

CNNVD•added 2024/10/24 12:0 a.m.•2 views

assimp 安全漏洞

assimp is an assimp open source library. It is used to import and export various 3D model formats. A security vulnerability exists in assimp that stems from allowing read access to an invalid memory address 0x1000c9714971...

6.2CVSS6.1AI score0.00038EPSS

Exploits1References2

CNNVD•added 2024/08/13 12:0 a.m.•2 views

AMD Graphics Driver 安全漏洞

AMD Graphics Driver is an integrated graphics driver from Ultraviolet Semiconductor AMD. A security vulnerability exists in AMD Graphics Driver that stems from insufficient DRAM address validation, which could allow a privileged attacker to read from an invalid DRAM address into SRAM, resulting i...

6CVSS6.5AI score0.00034EPSS

Exploits0References2

Github Security Blog•added 2023/03/13 8:49 p.m.•9 views

`out_reference::Out::from_raw` should be `unsafe`

Out::fromraw in affected versions allows writing a value to invalid memory address without requiring unsafe. The soundness issue has been addressed by making Out::fromraw an unsafe function...

4.7AI score

Exploits0References3Affected Software1

Debian CVE•added 2022/12/22 12:0 a.m.•46 views

CVE-2022-38475

An attacker could have written a value to the first element in a zero-length JavaScript array. Although the array was zero-length, the value was not written to an invalid memory address. This vulnerability affects Firefox 104...

6.5CVSS8.1AI score0.00273EPSS

Exploits0

Tenable Nessus•added 2022/10/13 12:0 a.m.•26 views

Ubuntu 16.04 ESM / 18.04 LTS : AdvanceCOMP vulnerabilities (USN-5671-1)

The remote Ubuntu 16.04 ESM / 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5671-1 advisory. It was discovered that AdvanceCOMP did not properly manage memory of function beuint32read under certain circumstances. If a user were tricke...

7.8CVSS5.6AI score0.00314EPSS

Exploits2References3

OSV•added 2022/08/25 8:15 p.m.•14 views

CVE-2020-27798

An invalid memory address reference was discovered in the adjABS function in plxelf.cpp in UPX 4.0.0 via a crafted Mach-O file...

5.5CVSS6.7AI score

Exploits0References1