CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

66 matches found

AstraLinux•added 2026/06/19 11:10 a.m.•1 views

Astra Linux – Vulnerability in Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: iwcxgb4: A potential NULL dereference in c4iwfillrescmidentry has been fixed. This condition must match the previous “if epcp-state == LISTEN” exactly to avoid a NULL dereference of either “listenep” or “ep”. The problem is that...

5.5CVSS5.8AI score0.00146EPSS

Exploits0References2

AstraLinux•added 2026/06/19 11:10 a.m.•4 views

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: wext: Added an additional check for the number of channels returned by ioctlsock, SIOCSIWSCAN,..., to ensure that this number does not exceed IWMAXFREQUENCIES. Invalid requests will be rejected with the error...

5.5CVSS6.1AI score0.00233EPSS

Exploits0References2

AstraLinux•added 2026/06/19 11:10 a.m.•5 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: wifi: Avoid exposing kernel data to user space through struct iwpoint struct iwpoint contains a 32-bit field on 64-bit architectures. c struct iwpoint void user pointer; / Pointer to the data in user space / u16 length; / Number ...

3.3CVSS5.2AI score0.00117EPSS

Exploits0References1

OSV•added 2026/01/23 4:15 p.m.•7 views

AZL-78452 CVE-2026-22978 affecting package kernel for versions less than 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: wifi: avoid kernel-infoleak from struct iwpoint struct iwpoint has a 32bit hole on 64bit arches. struct iwpoint void user pointer; / Pointer to the data in user space / u16 length; / number of fields or size in bytes / u16 flags;...

3.3CVSS5.6AI score0.00117EPSS

Exploits0References1

NVD•added 2026/01/23 4:15 p.m.•7 views

CVE-2026-22978

3.3CVSS0.00117EPSS

Exploits0References7

ATTACKERKB•added 2026/01/23 3:24 p.m.•5 views

CVE-2026-22978

5.2AI score0.00117EPSS

Exploits0References8Affected Software1

CVE•added 2026/01/23 3:24 p.m.•34 views

CVE-2026-22978

The CVE-2026-22978 issue lies in the Linux kernel wifi code where struct iw_point exposes a 32‑bit hole on 64‑bit arches, enabling kernel-infoleak to user space. The fix is to zero the iw_point structure before user-space access. This remediation is present in upstream kernel fixes (noted with ke...

3.3CVSS5.3AI score0.00117EPSS

Exploits0References7Affected Software1

Debian CVE•added 2026/01/23 3:24 p.m.•5 views

CVE-2026-22978

3.3CVSS4.6AI score0.00117EPSS

Exploits0

Tenable Nessus•added 2026/01/23 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2026-22978

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wifi: avoid kernel-infoleak from struct iwpoint struct iwpoint has a 32bit hole on 64bit arches. struct iwpoint void user pointer; / Pointer to the data in user...

3.3CVSS4.8AI score0.00117EPSS

Exploits0References3

Positive Technologies•added 2026/01/01 12:0 a.m.•10 views

PT-2026-4478

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel related to the iw point structure within the Wi-Fi subsystem. The iw point structure contains a 32-bit hole on 64-bit architectures. This can lead to th...

3.3CVSS5.4AI score0.00117EPSS

Exploits0

NVD•added 2025/12/24 1:16 p.m.•4 views

CVE-2023-54055

In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Fix memory leak of PBLE objects On rmmod of irdma, the PBLE object memory is not being freed. PBLE object memory are not statically pre-allocated at function initialization time unlike other HMC objects. PBLEs objects...

0.00206EPSS

Exploits0References4

OSV•added 2025/11/11 10:56 p.m.•1 views

MAL-2025-134479 Malicious code in iwan-lodeh27-sluey (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1e2f30ca3f30b9c59ea499f7ea8b7aa8f73e0b0e3e41ea85b0e60cca9fb2f87d This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score

Exploits0

EUVD•added 2025/11/11 3:19 p.m.•1 views

EUVD-2025-90946

Malicious code in iwan-sasag65-miaww npm...

6.6AI score

Exploits0

OSSF Malicious Packages•added 2025/11/11 3:48 a.m.•2 views

Malicious code in nina-naget74-sukiwir (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1a517037c561a8d9f98202b63e834196af789f5957272699d4d433610d0d4ff1 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score

Exploits0

EUVD•added 2025/11/10 5:21 p.m.•2 views

EUVD-2025-47558

Malicious code in galih-nasi47-sukiwir npm...

6.6AI score

Exploits0

EUVD•added 2025/11/10 5:21 p.m.•2 views

EUVD-2025-48717

Malicious code in arif-takokak43-sukiwir npm...

6.6AI score

Exploits0