CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

88 matches found

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: vfio/mdev: Fixed a null-ptr-deref bug for mdevunregisterparent Inject a fault while probing mdpy.ko. If the kstrdup function fails in kobjectaddinternal, which occurs in kobjectinitandadd, mdevtypeadd, parentcreatesysfsfiles, it...

5.5CVSS5.9AI score0.00018EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•5 views

Astra Linux - уязвимость в linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: Most: usb: hdmprobe: Fixed the call to putdevice before device initialization. The early error path in hdmprobe can lead to a call to errfreemdev before &mdev-dev has been initialized using deviceinitialize. Calling...

5.7AI score0.0004EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•4 views

Astra Linux - уязвимость в linux-5.15

A flaw was discovered in the MCTP protocol within the Linux kernel. The function mctpunregister reclaims the device’s related resources when a netcard is detached. However, a running program may be unaware of this flaw, leading to a use-after-free of the mdev-addrs object, which could potentially...

4.7CVSS6.7AI score0.00008EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•8 views

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: s390/vfio-ap: The entire AP matrix is always filtered. The vfioapmdevfiltermatrix function is called whenever a new adapter or domain is assigned to the mdev. The purpose of this function is to update the guest’s AP configuration...

7.5CVSS6.1AI score0.00061EPSS

Exploits0References2

SUSE CVE•added 2025/12/17 12:24 a.m.•1 views

SUSE CVE-2025-68249

In the Linux kernel, the following vulnerability has been resolved: most: usb: hdmprobe: Fix calling putdevice before device initialization The early error path in hdmprobe can jump to errfreemdev before &mdev-dev has been initialized with deviceinitialize. Calling putdevice&mdev-dev there trigge...

5.5CVSS6.4AI score0.0004EPSS

Exploits0References21

EUVD•added 2025/12/16 3:30 p.m.•1 views

EUVD-2025-203647

5.9AI score0.0004EPSS

Exploits0References8

OSV•added 2025/12/16 3:15 p.m.•0 views

UBUNTU-CVE-2025-68249

5.7AI score0.0004EPSS

Exploits0References39

UbuntuCve•added 2025/12/16 3:15 p.m.•3 views

CVE-2025-68249

5.7AI score0.0004EPSS

Exploits0References38

OSV•added 2025/12/16 2:32 p.m.•2 views

CVE-2025-68249 most: usb: hdm_probe: Fix calling put_device() before device initialization

6.3AI score0.0004EPSS

Exploits0References10

RedhatCVE•added 2025/12/05 4:14 p.m.•1 views

CVE-2025-40223

In the Linux kernel, the following vulnerability has been resolved: most: usb: Fix use-after-free in hdmdisconnect hdmdisconnect calls mostderegisterinterface, which eventually unregisters the MOST interface device with deviceunregisteriface-dev. If that drops the last reference, the device core...

6AI score0.00058EPSS

Exploits0References4

SUSE CVE•added 2025/12/05 12:26 a.m.•1 views

SUSE CVE-2025-40223

5.5CVSS6.6AI score0.00058EPSS

Exploits0References21

NVD•added 2025/12/04 4:16 p.m.•1 views

CVE-2025-40223

0.00058EPSS

Exploits0References7

OSV•added 2025/12/04 4:16 p.m.•2 views

UBUNTU-CVE-2025-40223

5.8AI score0.00058EPSS

Exploits0References39

CVE•added 2025/12/04 3:31 p.m.•6 views

CVE-2025-40223

In CVE-2025-40223, the Linux kernel MOST/hdm_disconnect path could suffer use-after-free or double-free when unregistering the MOST interface device. The fix relocates frees of mdev-owned allocations into release_mdev() so they run once when the device is truly released, and removes redundant put...

6.2AI score0.00058EPSS

Exploits0References7

Cvelist•added 2025/12/04 3:31 p.m.•14 views

CVE-2025-40223 most: usb: Fix use-after-free in hdm_disconnect

0.00058EPSS

Exploits0References7

Tenable Nessus•added 2025/12/04 12:0 a.m.•1 views

Linux Distros Unpatched Vulnerability : CVE-2025-40223

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - most: usb: Fix use-after-free in hdmdisconnect hdmdisconnect calls mostderegisterinterface, which eventually unregisters the MOST interface device with...

5.9AI score0.00058EPSS

Exploits0References2

Positive Technologies•added 2025/10/10 12:0 a.m.•2 views

PT-2025-49050

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the MOST Media Over Serial Transport USB subsystem, specifically in the hdm disconnect function. This function, when called, can lead to a...

4.4CVSS6.5AI score0.00058EPSS

Exploits0

OSV•added 2025/05/21 10:9 a.m.•1 views

SUSE-SU-2025:01633-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2022-49111: Bluetooth: Fix use after free in hcisendacl bsc1237984. - CVE-2025-21726: padata: avoid UAF for reorderwork bsc1238865. - CVE-2025-21785: arm64:...

7.8CVSS6.8AI score0.00592EPSS

Exploits5References36

SUSE CVE•added 2024/03/13 4:22 a.m.•1 views

SUSE CVE-2024-26620

In the Linux kernel, the following vulnerability has been resolved: s390/vfio-ap: always filter entire AP matrix The vfioapmdevfiltermatrix function is called whenever a new adapter or domain is assigned to the mdev. The purpose of the function is to update the guest's AP configuration by filteri...

7.7CVSS6AI score0.00061EPSS

Exploits0References11

OSV•added 2024/03/11 6:15 p.m.•0 views

UBUNTU-CVE-2024-26620

7.5CVSS6.1AI score0.00061EPSS

Exploits0References15

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by