CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

118 matches found

AlmaLinux•added 2024/08/08 12:0 a.m.•92 views

Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: powerpc: Fix access beyond end of drmem array CVE-2023-52451 kernel: efivarfs: force RO when remounting if SetVariable is not supported CVE-2023-52463 kernel: tracing: Restructure...

9.8CVSS7.6AI score0.00301EPSS

Exploits2References322

Cvelist•added 2024/07/30 7:46 a.m.•15 views

CVE-2024-42126 powerpc: Avoid nmi_enter/nmi_exit in real mode interrupt.

In the Linux kernel, the following vulnerability has been resolved: powerpc: Avoid nmienter/nmiexit in real mode interrupt. nmienter/nmiexit touches per cpu variables which can lead to kernel crash when invoked during real mode interrupt handling e.g. early HMI/MCE interrupt handler if percpu...

0.00012EPSS

Exploits0References6

Vulnrichment•added 2024/07/30 7:46 a.m.•20 views

CVE-2024-42126 powerpc: Avoid nmi_enter/nmi_exit in real mode interrupt.

6.7AI score0.00012EPSS

Exploits0References6

Positive Technologies•added 2024/06/19 12:0 a.m.•2 views

PT-2024-5043

Name of the Vulnerable Software and Affected Versions: TinyMCE versions prior to 5.11.0 LTS TinyMCE versions prior to 6.8.4 TinyMCE versions prior to 7.2.0 Description: A cross-site scripting XSS vulnerability was discovered in TinyMCE’s content extraction code. When using the noneditable regexp...

9.3CVSS6.7AI score0.50951EPSS

Exploits6References25

SUSE CVE•added 2024/05/28 3:33 a.m.•1 views

SUSE CVE-2021-47429

In the Linux kernel, the following vulnerability has been resolved: powerpc/64s: Fix unrecoverable MCE calling async handler from NMI The machine check handler is not considered NMI on 64s. The early handler is the true NMI handler, and then it schedules the machinecheckexception handler to run...

6CVSS6.3AI score0.00026EPSS

Exploits0References9

NVD•added 2024/05/21 3:15 p.m.•16 views

CVE-2021-47429

5.5CVSS6.4AI score0.00026EPSS

Exploits0References2

OSV•added 2024/05/21 3:15 p.m.•9 views

CVE-2021-47429

5.5CVSS6.4AI score

Exploits0References2

OSV•added 2024/05/21 3:15 p.m.•0 views

UBUNTU-CVE-2021-47429

5.5CVSS6.6AI score0.00026EPSS

Exploits0References5

Vulnrichment•added 2024/05/21 3:4 p.m.•21 views

CVE-2021-47429 powerpc/64s: Fix unrecoverable MCE calling async handler from NMI

6.8AI score0.00026EPSS

Exploits0References2

Cvelist•added 2024/05/21 3:4 p.m.•19 views

CVE-2021-47429 powerpc/64s: Fix unrecoverable MCE calling async handler from NMI

6.3AI score0.00026EPSS

Exploits0References2

UbuntuCve•added 2024/05/19 9:15 a.m.•25 views

CVE-2024-35876

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

6.7AI score

Exploits0References9

CVE•added 2024/05/19 8:34 a.m.•162 views

CVE-2024-35876

CVE-2024-35876 is not rejected in the connected documents. It is listed in Red Hat advisory RHSA-2025:1658 (kernel update) as CVE-2024-35876 affecting the Linux kernel, specifically noting an issue in x86/mce where the mce_sysfs_mutex should be acquired in set_bank(). The MiracleLinux/Nessus entr...

6.8AI score

Exploits0

NVD•added 2024/04/02 7:15 a.m.•18 views

CVE-2024-26674

In the Linux kernel, the following vulnerability has been resolved: x86/lib: Revert to ASMEXTABLEUA for get,putuser fixups During memory error injection test on kernels = v6.4, the kernel panics like below. However, this issue couldn't be reproduced on kernels getusernocheck4+0x6/0x20 mce: Hardwa...

7.1CVSS6.5AI score0.00018EPSS

Exploits0References3

Vulnrichment•added 2024/04/02 7:1 a.m.•29 views

CVE-2024-26674 x86/lib: Revert to _ASM_EXTABLE_UA() for {get,put}_user() fixups

6.9AI score0.00018EPSS

Exploits0References3

CVE•added 2024/04/02 7:1 a.m.•158 views

CVE-2024-26674

CVE-2024-26674 affects the Linux kernel x86/mm code, specifically a fixup path for get_user()/put_user(). In kernel builds >= 6.4 memory-error-injection can trigger a machine-check and panic due to a revert from _ASM_EXTABLE_UA() to a more generic fixup type. The issue arose when MCA handling ...

7.1CVSS6.7AI score0.00018EPSS

Exploits0References3Affected Software1

UbuntuCve•added 2024/04/02 12:0 a.m.•38 views

CVE-2024-26674

7.1CVSS6.4AI score0.00018EPSS

Exploits0References10

CNNVD•added 2023/11/15 12:0 a.m.•3 views

Tiny Technologies TinyMCE Security Vulnerability

Tiny Technologies TinyMCE is a rich text editor from Tiny Technologies, USA. A security vulnerability exists in Tiny Technologies TinyMCE, which stems from a mutated cross-site scripting mXSS vulnerability in the undo/redo function and other APIs and plugins. Affected products and versions: TinyM...

6.1CVSS6.2AI score0.02076EPSS

Exploits0References4

F5 Networks•added 2023/02/21 6:33 p.m.•75 views

K17269881: Intel MCE vulnerability CVE-2018-12207

Security Advisory Description Improper invalidation for page table updates by a virtual guest operating system for multiple IntelR Processors may allow an authenticated user to potentially enable denial of service of the host system via local access. CVE-2018-12207 Impact A privileged guest user...

6.5CVSS6.6AI score0.00262EPSS

Exploits0Affected Software13

OSV•added 2023/01/17 7:1 p.m.•8 views

GSD-2023-1001292 x86/MCE/AMD: Clear DFR errors found in THR handler

x86/MCE/AMD: Clear DFR errors found in THR handler This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.163 by commit...

7.2AI score

Exploits0

OSV•added 2023/01/17 6:25 p.m.•9 views

GSD-2023-1000944 x86/MCE/AMD: Clear DFR errors found in THR handler

7.2AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by