CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

67 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-5.10, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: LoongArch: BPF: Fixed the jump offset calculation in tailcall operations. The additional call to bpfintjitcompile skips the JIT context initialization. This effectively skips the offset calculation, resulting in outoffset being s...

5.5CVSS6.6AI score0.00026EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: misc: fastrpc: Fix for copy buffer page size For non-registered buffers, the fastrpc driver copies the buffer and passes it to the remote subsystem. There is a problem with the current implementation of page size calculation, ...

7.8CVSS6.5AI score0.00012EPSS

Exploits0References2

OSV•added 2026/04/24 3:16 p.m.•0 views

DEBIAN-CVE-2026-31553

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Fix the descriptor address in kvmatswapdesc Using "u64 user hva + offset" to get the virtual addresses of S1/S2 descriptors looks really wrong, if offset is not zero. What we want to get for swapping is hva + offset,...

8.8CVSS5.3AI score0.00017EPSS

Exploits0References1

ATTACKERKB•added 2026/04/24 2:35 p.m.•1 views

CVE-2026-31553

5.3AI score0.00017EPSS

Exploits0References3Affected Software1

CVE•added 2026/04/24 2:35 p.m.•4 views

CVE-2026-31553

CVE-2026-31553 affects the Linux kernel KVM on arm64. The issue stems from computing descriptor addresses in __kvm_at_swap_desc() using (u64 __user )hva + offset, which miscomputes when offset ≠ 0, effectively performing offset 8. The correction is to use hva + offset to obtain the correct S1/S2 ...

8.8CVSS5.3AI score0.00017EPSS

Exploits0References2Affected Software1

SUSE CVE•added 2026/04/23 1:25 a.m.•4 views

SUSE CVE-2026-31478

In the Linux kernel, the following vulnerability has been resolved: ksmbd: replace hardcoded hdr2len with offsetof in smb2calcmaxoutbuflen After this commit e2b76ab8b5c9 "ksmbd: add support for read compound", response buffer management was changed to use dynamic iov array. In the new design,...

9.8CVSS5.8AI score0.00097EPSS

Exploits0References4

EUVD•added 2026/03/18 6:31 p.m.•1 views

EUVD-2026-12898

In the Linux kernel, the following vulnerability has been resolved: gve: Fix stats report corruption on queue count change The driver and the NIC share a region in memory for stats reporting. The NIC calculates its offset into this region based on the total size of the stats region and the size o...

5.7AI score0.00021EPSS

Exploits0References8

UbuntuCve•added 2026/03/18 6:16 p.m.•3 views

CVE-2026-23262

7.8CVSS5.8AI score0.00021EPSS

Exploits0References15

CVE•added 2026/03/18 5:41 p.m.•8 views

CVE-2026-23262

CVE-2026-23262 affects the Linux kernel gve driver when queue counts are changed. The NIC and driver share a region in memory for stats reporting; the NIC calculates its offset into this region using the total stats size and the NIC’s own stats size. When the queue count increases, the driver res...

7.8CVSS5.7AI score0.00021EPSS

Exploits0References7Affected Software1

OSV•added 2026/03/18 5:41 p.m.•2 views

CVE-2026-23262 gve: Fix stats report corruption on queue count change

7.8CVSS5.8AI score0.00021EPSS

Exploits0References10

Cvelist•added 2026/03/18 5:41 p.m.•23 views

CVE-2026-23262 gve: Fix stats report corruption on queue count change

0.00021EPSS

Exploits0References7

GithubExploit•added 2026/02/08 2:57 p.m.•122 views

picoCTF_2025_pie_time

PIE Exploit Challenge Exploiting a PIE Position Independent...

5.7AI score

Exploits0