CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

515 matches found

Fedora•added 2025/05/28 1:56 a.m.•6 views

[SECURITY] Fedora 42 Update: nodejs22-22.15.1-1.fc42

Node.js is a platform built on Chrome's JavaScript runtime \ for easily building fast, scalable network applications. \ Node.js uses an event-driven, non-blocking I/O model that \ makes it lightweight and efficient, perfect for data-intensive \ real-time applications that run across distributed...

7.5CVSS7.6AI score0.00727EPSS

Exploits0

Fedora•added 2025/05/11 2:31 a.m.•8 views

[SECURITY] Fedora 41 Update: nodejs22-22.15.0-2.fc41

8.3CVSS6.5AI score0.00523EPSS

Exploits0

Fedora•added 2025/05/11 1:16 a.m.•14 views

[SECURITY] Fedora 42 Update: nodejs22-22.15.0-2.fc42

8.3CVSS6.5AI score0.00523EPSS

Exploits0

Fedora•added 2025/05/07 4:0 a.m.•26 views

[SECURITY] Fedora 41 Update: nodejs20-20.19.1-1.fc41

8.3CVSS6.5AI score0.00523EPSS

Exploits0

OSV•added 2025/05/01 2:9 p.m.•7 views

CVE-2022-49767 9p/trans_fd: always use O_NONBLOCK read/write

In the Linux kernel, the following vulnerability has been resolved: 9p/transfd: always use ONONBLOCK read/write syzbot is reporting hung task at p9fdclose 1, for p9muxpollstop from p9conndestroy from p9fdclose is failing to interrupt already started kernelread from p9fdread from p9readwork and/or...

5.5CVSS6AI score0.0016EPSS

Exploits0References11

Positive Technologies•added 2025/05/01 12:0 a.m.•3 views

PT-2025-18484 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability has been resolved in the Linux kernel. The issue is related to the 9p protocol and file descriptor handling. Specifically, when the file descriptor refers to a pipe, th...

8.8CVSS7.5AI score0.01301EPSS

Exploits3References504

Tenable Nessus•added 2025/03/05 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2021-47505

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: aio: fix use-after-free due to missing POLLFREE handling signalfdpoll and binderpoll are...

7.8CVSS6.2AI score0.00252EPSS

Exploits0References2

OSV•added 2025/01/27 7:21 a.m.•9 views

BIT-RUBY-MIN-2020-10933

An issue was discovered in Ruby 2.5.x through 2.5.7, 2.6.x through 2.6.5, and 2.7.0. If a victim calls BasicSocketreadnonblockrequestedsize, buffer, exception: false, the method resizes the buffer to fit the requested size, but no data is copied. Thus, the buffer string provides the previous valu...

5.3CVSS6.3AI score0.02515EPSS

Exploits1References5

OSV•added 2024/12/20 1:8 p.m.•6 views

OESA-2024-2579 undertow security update

Java web server using non-blocking IO Security Fixes: Description: Product Security received a report that Undertow might incorrectly re-use an HTTP request header value from a previous stream for a request associated with a subsequent stream on the same HTTP/2 connection. The issue is linked to...

7AI score

Exploits0References2

OpenVAS•added 2024/11/21 12:0 a.m.•8 views

openSUSE Security Advisory (SUSE-SU-2024:4036-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS7.1AI score0.08665EPSS

Exploits1References4

OSV•added 2024/11/15 12:20 p.m.•4 views

OESA-2024-2419 undertow security update

Java web server using non-blocking IO Security Fixes: A flaw was found in Undertow package. Using the FormAuthenticationMechanism, a malicious user could trigger a Denial of Service by sending crafted requests, leading the server to an OutofMemory error, exhausting the server's memory.CVE-2023-19...

7.5CVSS6.7AI score0.01292EPSS

Exploits0References2

RedHat Linux•added 2024/11/12 9:11 a.m.•3 views

kernel: aio: fix use-after-free due to missing POLLFREE handling

In the Linux kernel, the following vulnerability has been resolved: aio: fix use-after-free due to missing POLLFREE handling signalfdpoll and binderpoll are special in that they use a waitqueue whose lifetime is the current task, rather than the struct file as is normally the case. This is okay f...

7.8CVSS6.8AI score0.00252EPSS

Exploits0References5

Fedora•added 2024/11/11 5:9 a.m.•16 views

[SECURITY] Fedora 40 Update: squid-6.12-2.fc40

Squid is a high-performance proxy caching server for Web clients, supporting FTP and HTTP data objects. Unlike traditional caching software, Squid handles all requests in a single, non-blocking, I/O-driven process. Squid keeps meta data and especially hot objects cached in RAM, caches DNS lookups...

7.5CVSS7.4AI score0.45289EPSS

Exploits0

Fedora•added 2024/11/11 1:45 a.m.•15 views

[SECURITY] Fedora 39 Update: squid-6.12-2.fc39

7.5CVSS7.4AI score0.45289EPSS

Exploits0

SUSE CVE•added 2024/10/22 2:49 a.m.•1 views

SUSE CVE-2024-50065

In the Linux kernel, the following vulnerability has been resolved: ntfs3: Change to non-blocking allocation in ntfsdhash dhash is done while under "rcu-walk" and should not sleep. getname allocates using GFPKERNEL, having the possibility to sleep when under memory pressure. Change the allocation...

5.5CVSS7.7AI score0.00217EPSS

Exploits0References5

OSV•added 2024/10/21 8:15 p.m.•0 views

DEBIAN-CVE-2024-50065

5.5CVSS5.7AI score0.00217EPSS

Exploits0References1

OSV•added 2024/10/21 8:15 p.m.•0 views

UBUNTU-CVE-2024-50065

5.5CVSS6.2AI score0.00217EPSS

Exploits0References20