Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 9:19 a.m.2 views

CVE-2021-22556

The Security Team discovered an integer overflow bug that allows an attacker with code execution to issue memory cache invalidation operations on pages that they don’t own, allowing them to control kernel memory from userspace. We recommend upgrading to kernel version 4.1 or beyond...

7.8CVSS7.8AI score0.00016EPSS
Exploits0References1
SUSE CVE
SUSE CVEadded 2024/03/06 4:34 a.m.1 views

SUSE CVE-2023-52562

In the Linux kernel, the following vulnerability has been resolved: mm/slabcommon: fix slabcaches list corruption after kmemcachedestroy After the commit in Fixes:, if a module that created a slab cache does not release all of its allocated objects before destroying the cache at rmmod time, we...

5.5CVSS7.5AI score0.00018EPSS
Exploits0References3
Veracode
Veracodeadded 2019/06/03 12:25 a.m.28 views

Side-channel Attack

httpd is vulnerable to side-channel attack. An implementation flaw was discovered in multiple cryptographic libraries that allows a side-channel based attacker to recover ECDSA or DSA private keys. When these cryptographic libraries use the private key to create a signature, such as for a TLS or...

4.7CVSS5.6AI score0.00296EPSS
Exploits1References24Affected Software6
RedHat Linux
RedHat Linuxadded 2018/10/30 6:56 p.m.2 views

hw: cpu: speculative store bypass

An industry-wide issue was found in the way many modern microprocessor designs have implemented speculative execution of Load & Store instructions a commonly used performance optimization. It relies on the presence of a precisely-defined instruction sequence in the privileged code as well as the...

5.5CVSS7AI score0.46733EPSS
Exploits2References9
Mageia
Mageiaadded 2018/07/01 10:17 p.m.39 views

Updated libcrypt packages fix a security vulnerability

Updated libgcrypt packages fix security vulnerability: When libgcrypt uses the private key to create a signature, such as for a TLS or SSH connection, it inadvertently leaks information through memory caches. An unprivileged attacker running on the same machine can collect the information from a...

4.7CVSS2.6AI score0.00296EPSS
Exploits1References3
ArchLinux
ArchLinuxadded 2018/06/16 12:0 a.m.40 views

[ASA-201806-10] libgcrypt: private key recovery

Arch Linux Security Advisory ASA-201806-10 ========================================== Severity: High Date : 2018-06-16 CVE-ID : CVE-2018-0495 Package : libgcrypt Type : private key recovery Remote : No Link : https://security.archlinux.org/AVG-719 Summary ======= The package libgcrypt before...

4.7CVSS0.2AI score0.00296EPSS
Exploits1References5
The Hacker News
The Hacker Newsadded 2012/11/05 8:18 p.m.6 views

Cross-VM Side-channel attacks against cryptography keys

A group of researchers has developed a side-channel attack targeting virtual machines that could pose a threat to cloud computing environments. Side-channel attacks against cryptography keys have, until now, been limited to physical machines, this attack is the first such attack demonstrated on a...

6.6AI score
Exploits0
FreeBSD
FreeBSDadded 2005/05/13 12:0 a.m.35 views

kernel -- information disclosure when using HTT

Problem description and impact When running on processors supporting Hyper-Threading Technology, it is possible for a malicious thread to monitor the execution of another thread. Information may be disclosed to local users, allowing in many cases for privilege escalation. For example, on a...

5.6CVSS6.5AI score0.00143EPSS
Exploits0References1
Rows per page
Query Builder