CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

128 matches found

OSV•added 2021/04/13 9:35 p.m.•4 views

USN-4912-1 linux-oem-5.6 vulnerabilities

Piotr Krysiuk discovered that the BPF JIT compiler for x86 in the Linux kernel did not properly validate computation of branch displacements in some situations. A local attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2021-29154 It was...

8.8CVSS7AI score0.02417EPSS

Exploits5References15

Tenable Nessus•added 2021/03/10 12:0 a.m.•231 views

EulerOS Virtualization for ARM 64 3.0.2.0 : kernel (EulerOS-SA-2021-1386)

According to the versions of the kernel packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - A locking inconsistency issue was discovered in the tty subsystem of the Linux kernel through 5.9.13...

9.8CVSS7.5AI score0.06692EPSS

Exploits11References22

Tenable Nessus•added 2021/02/11 12:0 a.m.•61 views

SUSE SLES12 Security Update : kernel (SUSE-SU-2021:0408-1)

This update for the Linux Kernel 4.4.180-94121 fixes several issues. The following security issues were fixed : CVE-2020-36158: Fixed a potential remote code execution in the Marvell mwifiex driver bsc1180562. CVE-2020-0465: Fixed multiple missing bounds checks in hid-multitouch.c that could have...

8.8CVSS7.5AI score0.02209EPSS

Exploits3References18

Tenable Nessus•added 2021/01/25 12:0 a.m.•105 views

openSUSE Security Update : the Linux Kernel (openSUSE-2021-60)

The openSUSE Leap 15.2 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : - CVE-2020-27835: A use after free in the Linux kernel infiniband hfi1 driver was found in the way user calls Ioctl after open dev file and fork. A local user could use thi...

9.8CVSS7.6AI score0.06563EPSS

Exploits9References133

Tenable Nessus•added 2021/01/25 12:0 a.m.•379 views

openSUSE Security Update : the Linux Kernel (openSUSE-2021-75)

The openSUSE Leap 15.1 kernel was updated to receive various security and bugfixes. The following security bugs were fixed : - CVE-2020-29568: An issue was discovered in Xen through 4.14.x. Some OSes such as Linux, FreeBSD, and NetBSD are processing watch events using a single thread. If the even...

9.8CVSS7.4AI score0.06563EPSS

Exploits7References96

NVD•added 2020/12/14 10:15 p.m.•18 views

CVE-2020-0465

In various methods of hid-multitouch.c, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android...

7.2CVSS7.5AI score0.00268EPSS

Exploits0References1

OSV•added 2020/12/14 10:15 p.m.•3 views

DEBIAN-CVE-2020-0465

6.8CVSS6.3AI score0.00268EPSS

Exploits0References1

ATTACKERKB•added 2020/12/14 10:15 p.m.•3 views

CVE-2020-0465

7.2CVSS7.7AI score0.00268EPSS

Exploits0References2

Debian CVE•added 2020/12/14 9:51 p.m.•49 views

CVE-2020-0465

7.2CVSS6.4AI score0.00268EPSS

Exploits0

Tenable Nessus•added 2019/10/15 12:0 a.m.•26 views

Debian DLA-1959-1 : xtrlock security update

It was discovered that multitouch devices were not being disabled by the 'xtrlock' screen locking utility. xtrlock did not block multitouch events so an attacker could still input and thus control various programs such as Chromium, etc. via so-called 'multitouch' events including pan scrolling,...

4.6CVSS5.1AI score0.00364EPSS

Exploits0References4

Debian•added 2019/10/14 8:49 p.m.•82 views

[SECURITY] [DLA 1959-1] xtrlock security update

Package : xtrlock Version : 2.6+deb8u1 CVE ID : CVE-2016-10894 Debian Bug : 830726 It was discovered that multitouch devices were not being disabled by the "xtrlock" screen locking utility. xtrlock did not block multitouch events so an attacker could still input and thus control various programs...

4.6CVSS4.6AI score0.00364EPSS

Exploits0

NVD•added 2019/08/16 3:15 a.m.•16 views

CVE-2016-10894

xtrlock through 2.10 does not block multitouch events. Consequently, an attacker at a locked screen can send input to and thus control various programs such as Chromium via events such as pan scrolling, "pinch and zoom" gestures, or even regular mouse clicks by depressing the touchpad once and th...

4.6CVSS4.6AI score0.00364EPSS

Exploits0References2

OSV•added 2019/08/16 3:15 a.m.•1 views

DEBIAN-CVE-2016-10894

4.6CVSS6.9AI score0.00364EPSS

Exploits0References1

OSV•added 2019/08/16 3:15 a.m.•7 views

CVE-2016-10894

4.6CVSS4.7AI score

Exploits0References2

Prion•added 2019/08/16 3:15 a.m.•12 views

Design/Logic Flaw

2.1CVSS6.9AI score0.00364EPSS

Exploits0References2Affected Software2

UbuntuCve•added 2019/08/16 3:15 a.m.•26 views

CVE-2016-10894

4.6CVSS5.9AI score0.00364EPSS

Exploits0References2

OSV•added 2019/08/16 3:15 a.m.•0 views

UBUNTU-CVE-2016-10894

4.6CVSS5.8AI score0.00364EPSS

Exploits0References3

Cvelist•added 2019/08/16 3:0 a.m.•25 views

CVE-2016-10894

4.6AI score0.00364EPSS

Exploits0References2

CVE•added 2019/08/16 3:0 a.m.•143 views

CVE-2016-10894

The CVE-2016-10894 issue affects xtrlock up to version 2.10, where multitouch input is not blocked. An attacker at a locked screen can inject input to programs (e.g., Chromium) via multitouch events such as pan scrolling, pinch/zoom, or by issuing mouse clicks after depressing the touchpad with a...

4.6CVSS4.5AI score0.00364EPSS

Exploits0References2Affected Software1

Debian CVE•added 2019/08/16 3:0 a.m.•19 views

CVE-2016-10894

4.6CVSS2.6AI score0.00364EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by