CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2025/11/14 11:49 p.m.•6 views

CVE-2025-9317 AVEVA Edge Use of a Broken or Risky Cryptographic Algorithm

The vulnerability, if exploited, could allow a miscreant with read access to Edge Project files or Edge Offline Cache files to reverse engineer Edge users' app-native or Active Directory passwords through computational brute-forcing of weak hashes...

8.4CVSS0.00086EPSS

EUVD•added 2025/11/14 11:49 p.m.•3 views

EUVD-2025-197663

8.4CVSS6.3AI score0.00086EPSS

SUSE CVE•added 2025/11/14 12:24 a.m.•2 views

SUSE CVE-2025-40163

In the Linux kernel, the following vulnerability has been resolved: sched/deadline: Stop dlserver before CPU goes offline IBM CI tool reported kernel warning1 when running a CPU removal operation through drmgr2. i.e "drmgr -c cpu -r -q 1" WARNING: CPU: 0 PID: 0 at kernel/sched/cpudeadline.c:219...

6.4AI score0.00161EPSS

Tenable Nessus•added 2025/11/14 12:0 a.m.•1 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990913)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990913 advisory. In the Linux kernel, the following vulnerability has been resolved: crypto: pcrypt - Call crypto layer directly when padatadoparallel return -EBUSY Since commit...

5.5CVSS6.1AI score0.00185EPSS

RedHat Linux•added 2025/11/13 7:30 p.m.•5 views

Moderate: Red Hat Security Advisory: Red Hat build of Keycloak 26.4.4 Images Security Update

New images are available for Red Hat build of Keycloak 26.4.4 and Red Hat build of Keycloak 26.4.4 Operator, running on OpenShift Container Platform Red Hat build of Keycloak is an integrated sign-on solution, available as a Red Hat JBoss Middleware for OpenShift containerized image. The Red Hat...

6.8CVSS5.8AI score0.00456EPSS

RedHat Linux•added 2025/11/13 5:51 p.m.•1 views

keycloak: org.keycloak:keycloak-services: User can refresh offline session even after client's offline_access scope was removed

A flaw was found in Keycloak. An offline session continues to be valid when the offlineaccess scope is removed from the client. The refresh token is accepted and you can continue to request new tokens for the session. As it can lead to a situation where an administrator removes the scope, and...

5.4CVSS5.7AI score0.00249EPSS

Exploits0References5

RedHat Linux•added 2025/11/13 5:51 p.m.•7 views

Moderate: Red Hat Security Advisory: Red Hat build of Keycloak 26.4.4 Security Update

New Red Hat build of Keycloak 26.4.4 packages are available from the Customer Portal Red Hat build of Keycloak 26.4.4 is a standalone server, based on the Keycloak project, that provides authentication and standards-based single sign-on capabilities for web and mobile applications. Security fixes...

6.8CVSS5.8AI score0.00456EPSS

RedhatCVE•added 2025/11/13 4:44 p.m.•5 views

CVE-2025-40163

5.5AI score0.00161EPSS

Tenable Nessus•added 2025/11/13 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2025-40163

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: sched/deadline: Stop dlserver before CPU goes offline IBM CI tool reported kernel warning1...

5.7AI score0.00161EPSS

Exploits0References2

EUVD•added 2025/11/12 12:30 p.m.•1 views

EUVD-2025-124920

5.8AI score0.00161EPSS

NVD•added 2025/11/12 11:15 a.m.•4 views

CVE-2025-40163

0.00161EPSS

OSV•added 2025/11/12 11:15 a.m.•4 views

UBUNTU-CVE-2025-40163

5.7AI score0.00161EPSS

Exploits0References9

Cvelist•added 2025/11/12 10:26 a.m.•7 views

CVE-2025-40163 sched/deadline: Stop dl_server before CPU goes offline

0.00161EPSS

CVE•added 2025/11/12 10:26 a.m.•18 views

CVE-2025-40163

In CVE-2025-40163, concrete details show a Linux kernel fix for sched/deadline: the dl_server must be stopped before a CPU goes offline to avoid a spurious hrtimer warning when a CPU is removed (drmgr -c cpu -r -q 1). The root cause was dl_server hrtimer enqueued near CPU offline, with cpu_presen...

5.9AI score0.00161EPSS

Debian CVE•added 2025/11/12 10:26 a.m.•3 views

CVE-2025-40163

5.2AI score0.00161EPSS

Exploits0

OSV•added 2025/11/12 10:26 a.m.•4 views

CVE-2025-40163 sched/deadline: Stop dl_server before CPU goes offline

6.2AI score0.00161EPSS

Exploits0References5

Tenable Nessus•added 2025/11/12 12:0 a.m.•1 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990882)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990882 advisory. In the Linux kernel, the following vulnerability has been resolved: genirq/cpuhotplug, x86/vector: Prevent vector leak during CPU offline The absence of IRQDMOVEPCNT...

5.5CVSS6.2AI score0.00258EPSS

NVD•added 2025/11/11 9:15 p.m.•1 views

CVE-2025-40760

A vulnerability has been identified in Altair Grid Engine All versions V2026.0.0. Affected products do not properly handle error messages and discloses sensitive password hash information when processing user authentication requests. This could allow a local attacker to extract password hashes fo...

6.8CVSS0.0012EPSS

Vulnrichment•added 2025/11/11 8:20 p.m.•2 views

CVE-2025-40760

6.8CVSS6.2AI score0.0012EPSS