CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: powerpc64/ftrace: fix clobbered r15 during livepatching While r15 is clobbered always with...

7.8CVSS6.4AI score0.00135EPSS

Exploits0References2

Positive Technologies•added 2025/08/06 12:0 a.m.•5 views

PT-2025-32145

Name of the Vulnerable Software and Affected Versions ThrottleStop.sys version 3.0.0.0 ThrottleStop.sys affected versions not specified Description The ThrottleStop.sys driver exposes two IOCTL interfaces that allow arbitrary read and write access to physical memory through the MmMapIoSpace...

8.7CVSS6AI score0.08963EPSS

Exploits8References29

BDU FSTEC•added 2025/07/28 12:0 a.m.•4 views

The vulnerability of the seg6 component in the Linux operating system’s kernel allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the seg6 component in the Linux operating system’s kernel relates to access to an uninitialized pointer. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

7CVSS6.4AI score0.00137EPSS

Exploits0References16Affected Software9

Gitee•added 2025/07/27 4:59 a.m.•96 views

pwn2own2018

Pwn2Own 2018: Safari + macOS Safari RCE, sandbox escape, and LPE to kernel for macOS 10.13.3. Usage Install nasm and tornado: brew install nasm pip3 install tornado Check config.py if you want to change the host or ports. Afterwards start the server with ./server.py and navigate to the shown URL...

7.8AI score

Exploits0

RedhatCVE•added 2025/05/23 7:58 a.m.•14 views

CVE-2024-33032

Memory corruption when the user application modifies the same shared memory asynchronously when kernel is accessing it...

6.7CVSS7.1AI score0.00103EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 8:41 p.m.•6 views

CVE-2021-0942

The path in this case is a little bit convoluted. The end result is that via an ioctl an untrusted app can control the ui32PageIndex offset in the expression:sPA.uiAddr = pagetophyspsOSPageArrayData-pagearrayui32PageIndex;With the current PoC this crashes as an OOB read. However, given that the O...

9.8CVSS6.6AI score0.00314EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 6:21 p.m.•4 views

CVE-2021-22326

A component of the HarmonyOS has a Privilege Dropping / Lowering Errors vulnerability. Local attackers may exploit this vulnerability to obtain Kernel space read/write capability...

7.1CVSS6.8AI score0.00158EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 8:6 a.m.•6 views

CVE-2019-13047

kernel/sys/syscall.c in ToaruOS through 1.10.9 has incorrect access control in syssysfunc case 9 for TOARUSYSFUNCSETHEAP, allowing arbitrary kernel pages to be mapped into user land, leading to root access...

7.8CVSS7AI score0.00455EPSS

Exploits1References1

RedhatCVE•added 2025/05/21 10:41 p.m.•6 views

CVE-2002-2016

User-mode Linux UML 2.4.17-8 does not restrict access to kernel address space, which allows local users to execute arbitrary code...

7.2CVSS7.2AI score0.01144EPSS

Exploits1References1

Positive Technologies•added 2025/05/12 12:0 a.m.•1 views

PT-2025-20769 · Apple · Macos Ventura +8

Name of the Vulnerable Software and Affected Versions: watchOS versions prior to 11.5 macOS Sonoma versions prior to 14.7.6 tvOS versions prior to 18.5 iPadOS versions prior to 17.7.7 iOS versions prior to 18.5 iPadOS versions prior to 18.5 macOS Sequoia versions prior to 15.5 visionOS versions...

7.1CVSS6.7AI score0.0083EPSS

Exploits0References24

Tenable Nessus•added 2025/03/06 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2025-21650

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: net: hns3: fixed hclgefetchpfreg accesses bar space out of bounds issue The TQP BAR space is...

7.8CVSS5.8AI score0.00197EPSS

Exploits0References3

Tenable Nessus•added 2025/03/05 12:0 a.m.•9 views

Linux Distros Unpatched Vulnerability : CVE-2024-44954

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ALSA: line6: Fix racy access to midibuf There can be concurrent accesses to line6 midibuf from both the URB completion callback and the rawmidi API access. This...

4.7CVSS6.5AI score0.0017EPSS

Exploits0References3

Tenable Nessus•added 2025/03/04 12:0 a.m.•8 views

Linux Distros Unpatched Vulnerability : CVE-2018-7755

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the fdlockedioctl function in drivers/block/floppy.c in the Linux kernel through 4.15.7. The floppy driver will copy a kernel pointer...

5.5CVSS6.4AI score0.00694EPSS

Exploits1References3

Tenable Nessus•added 2025/03/03 12:0 a.m.•9 views

Linux Distros Unpatched Vulnerability : CVE-2011-4080

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The sysrqsysctlhandler function in kernel/sysctl.c in the Linux kernel before 2.6.39 does not require the CAPSYSADMIN capability to modify the dmesgrestrict...

4CVSS5.6AI score0.00349EPSS

Exploits0References2