CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

399 matches found

Packet Storm•added 2026/01/28 12:0 a.m.•169 views

📄 Qualcomm CVP Kernel Pointer Leak

The Qualcomm CVP driver exposes kernel pointers to userland by returning a hashed session ID derived from a kernel pointer using hash32ptr. This function is not a cryptographic hash but a reversible fold that XORs the upper and lower 32 bits of the pointer. Due to predictable ARM64 kernel virtual...

5.5CVSS5.8AI score0.00012EPSS

Exploits2

RedhatCVE•added 2026/01/23 9:14 p.m.•3 views

CVE-2026-23763

VB-Audio Matrix and Matrix Coconut versions ending in 1.0.2.2 and 2.0.2.2 and earlier, respectively, contain a local privilege escalation vulnerability in the VBMatrix VAIO virtual audio driver vbmatrixvaio64win10.sys. The driver allocates a 128-byte non-paged pool buffer and, upon receiving IOCT...

8.5CVSS6.1AI score0.00006EPSS

Exploits0References1

NVD•added 2026/01/22 5:16 p.m.•2 views

CVE-2026-23763

8.5CVSS0.00006EPSS

Exploits0References5

Tenable Nessus•added 2026/01/16 12:0 a.m.•1 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000915)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000915 advisory. The acpinsevaluate function in drivers/acpi/acpica/nseval.c in the Linux kernel through 4.12.9 does not flush the operand cache and causes a kernel stack dump, which...

5.5CVSS6.3AI score0.00014EPSS

Exploits0References10

Tenable Nessus•added 2026/01/16 12:0 a.m.•2 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003710)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003710 advisory. An issue was discovered in the fdlockedioctl function in drivers/block/floppy.c in the Linux kernel through 4.15.7. The floppy driver will copy a kernel pointer to...

5.5CVSS6.5AI score0.00006EPSS

Exploits1References16

Tenable Nessus•added 2026/01/16 12:0 a.m.•1 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001302)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001302 advisory. An issue was discovered in the fdlockedioctl function in drivers/block/floppy.c in the Linux kernel through 4.15.7. The floppy driver will copy a kernel pointer to...

5.5CVSS6.5AI score0.00006EPSS

Exploits1References4

CVE•added 2026/01/15 12:0 a.m.•4 views

CVE-2025-67246

A local information disclosure in the Ludashi driver (pre-5.1025) due to insufficient access control in the IOCTL handler. The driver exposes a device interface to unprivileged users, accepts attacker-controlled structures containing the lower 4 GB of physical addresses, maps arbitrary physical m...

7.3CVSS5.4AI score0.00019EPSS

Exploits1References3Affected Software1

RedhatCVE•added 2026/01/09 12:30 p.m.•3 views

CVE-2023-40082

In modifyfornextstage of fdt.rs, there is a possible way to render KASLR ineffective due to improperly used crypto. This could lead to remote escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

9.8CVSS7.3AI score0.01975EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 9:14 a.m.•9 views

CVE-2022-23467

OpenRazer is an open source driver and user-space daemon to control Razer device lighting and other features on GNU/Linux. Using a modified USB device an attacker can leak stack addresses of the razerattrreaddpistages, potentially bypassing KASLR. To exploit this vulnerability an attacker would...

4.6CVSS6.6AI score0.00034EPSS

Exploits0References1