CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

AstraLinux•added 2026/01/13 2:1 p.m.•2 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: ksmbd: Fixed a race condition in the RPC handle list access mechanism. The sess-rpchandlelist XArray manages RPC handles within a ksmbd session. Access to this list is intended to be protected by sess-rpclock a rwsemaphore...

4.7CVSS6.2AI score0.00121EPSS

Exploits0References2

Microsoft CVE•added 2025/10/31 8:3 a.m.•3 views

ksmbd: transport_ipc: validate payload size before reading handle

...

5.5CVSS7AI score0.00166EPSS

Exploits0

CVE•added 2025/09/04 3:33 p.m.•36 views

CVE-2025-38728

CVE-2025-38728 : Linux kernel SMB3/kdmbd (ksmbd) mount path vulnerability. The issue stems from a missing check in parse_server_interfaces() under KASAN, enabling a slab-out-of-bounds read during a ksmbd mount. The bug is reported in the CIFS/SMB3 path with a read of size 4 at a kernel address du...

7.1CVSS5.8AI score0.0014EPSS

Exploits0References8Affected Software1

BDU FSTEC•added 2025/08/11 12:0 a.m.•9 views

The vulnerability of the `ksmbd_krb5_authenticate()` function in the `ksmbd` component of the Linux operating system allows a hacker to induce a service failure.

The vulnerability of the ksmbdkrb5authenticate function in the ksmbd component of the Linux operating system is related to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker to trigger a denial-of-service attack...

5.5CVSS5.9AI score0.00482EPSS

Exploits0References12Affected Software6

Microsoft CVE•added 2025/03/14 7:0 a.m.•2 views

ksmbd: fix integer overflows on 32 bit systems

...

5.5CVSS7.4AI score0.00202EPSS

Exploits0

Microsoft CVE•added 2025/01/29 8:0 a.m.•4 views

ksmbd: fix slab-use-after-free in smb3_preauth_hash_rsp

...

7.8CVSS7.7AI score0.00243EPSS

Exploits0