CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3095 matches found

Vulnrichment•added 2024/06/19 1:48 p.m.•16 views

CVE-2024-38604 block: refine the EOF check in blkdev_iomap_begin

In the Linux kernel, the following vulnerability has been resolved: block: refine the EOF check in blkdeviomapbegin blkdeviomapbegin rounds down the offset to the logical block size before stashing it in iomap-offset and checking that it still is inside the inode size. Check the isize check to th...

6.9AI score0.00207EPSS

Exploits0References4

OpenVAS•added 2024/06/07 12:0 a.m.•26 views

Ubuntu: Security Advisory (USN-6810-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.7CVSS5.1AI score0.01372EPSS

Exploits0References2

Ubuntu•added 2024/06/06 1:57 a.m.•53 views

USN-6813-1: OpenJDK 21 vulnerabilities

It was discovered that the Hotspot component of OpenJDK 21 incorrectly handled certain exceptions with specially crafted long messages. An attacker could possibly use this issue to cause a denial of service. CVE-2024-21011 It was discovered that OpenJDK 21 incorrectly performed reverse DNS query...

3.7CVSS6.9AI score0.01372EPSS

Exploits0

OSV•added 2024/06/06 1:57 a.m.•4 views

USN-6813-1 openjdk-21 vulnerabilities

3.7CVSS6.9AI score0.01372EPSS

Exploits0References5

Tenable Nessus•added 2024/06/06 12:0 a.m.•27 views

Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 23.10 : OpenJDK 17 vulnerabilities (USN-6812-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS / 23.10 host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6812-1 advisory. It was discovered that the Hotspot component of OpenJDK 17 incorrectly handled certain exceptions with specially crafted...

3.7CVSS6.9AI score0.01372EPSS

Exploits0References5

OSV•added 2024/06/05 8:15 p.m.•20 views

CVE-2024-5171

Integer overflow in libaom internal function imgallochelper can lead to heap buffer overflow. This function can be reached via 3 callers: Calling aomimgalloc with a large value of the dw, dh, or align parameter may result in integer overflows in the calculations of buffer sizes and offsets and so...

9.8CVSS7.5AI score

Exploits0References4

AlpineLinux•added 2024/06/03 1:30 p.m.•20 views

CVE-2024-5197

There exists interger overflows in libvpx in versions prior to 1.14.1. Calling vpximgalloc with a large value of the dw, dh, or align parameter may result in integer overflows in the calculations of buffer sizes and offsets and some fields of the returned vpximaget struct may be invalid. Calling...

9.1CVSS6.7AI score0.00814EPSS

Exploits1

Cvelist•added 2024/06/03 1:30 p.m.•35 views

CVE-2024-5197 Integer overflow in libvpx

5.9CVSS6.3AI score0.00814EPSS

Exploits1References2

UbuntuCve•added 2024/05/30 4:15 p.m.•18 views

CVE-2024-36884

In the Linux kernel, the following vulnerability has been resolved: iommu/arm-smmu: Use the correct type in nvidiasmmucontextfault This was missed because of the function pointer indirection. nvidiasmmucontextfault is also installed as a irq function, and the 'void ' was changed to a struct...

5.5CVSS6.3AI score0.00208EPSS

Exploits0References9

Cvelist•added 2024/05/30 3:28 p.m.•30 views

CVE-2024-36891 maple_tree: fix mas_empty_area_rev() null pointer dereference

In the Linux kernel, the following vulnerability has been resolved: mapletree: fix masemptyarearev null pointer dereference Currently the code calls masstart followed by masdataend if the maple state is MASTART, but masstart may return with the maple state node == NULL. This will lead to a null...

6.5AI score0.00227EPSS

Exploits0References4

OSV•added 2024/05/30 3:15 p.m.•0 views

UBUNTU-CVE-2024-36019

In the Linux kernel, the following vulnerability has been resolved: regmap: maple: Fix cache corruption in regcachemapledrop When keeping the upper end of a cache block entry, the entry array must be indexed by the offset from the base register of the block, i.e. max - mas.index. The code was...

7.1CVSS6.7AI score0.0024EPSS

Exploits0References10

OSV•added 2024/05/28 4:15 p.m.•3 views

CVE-2024-24959

Several out-of-bounds write vulnerabilities exist in the Programming Software Connection FileSystem API functionality of AutomationDirect P3-550E 1.2.10.9. Specially crafted network packets can lead to heap-based memory corruption. An attacker can send malicious packets to trigger these...

8.2CVSS5.9AI score0.00542EPSS

Exploits1References2

OSV•added 2024/05/28 4:15 p.m.•2 views

CVE-2024-24956

8.2CVSS5.9AI score

Exploits0References2

OSV•added 2024/05/28 4:15 p.m.•3 views

CVE-2024-24957

8.2CVSS6AI score0.00489EPSS

Exploits1References2

NVD•added 2024/05/28 4:15 p.m.•15 views

CVE-2024-24955

8.2CVSS8.4AI score0.00489EPSS

Exploits1References2

NVD•added 2024/05/28 4:15 p.m.•11 views

CVE-2024-24957

8.2CVSS8.4AI score0.00489EPSS

Exploits1References2

OSV•added 2024/05/28 4:15 p.m.•3 views

CVE-2024-24946

A heap-based buffer overflow vulnerability exists in the Programming Software Connection CurrDir functionality of AutomationDirect P3-550E 1.2.10.9. A specially crafted network packet can lead to denial of service. An attacker can send an unauthenticated packet to trigger these vulnerability.This...

8.2CVSS6.1AI score0.00785EPSS

Exploits1References2

OSV•added 2024/05/28 4:15 p.m.•2 views

CVE-2024-24954

8.2CVSS6AI score0.00542EPSS

Exploits1References2

Cvelist•added 2024/05/28 3:30 p.m.•14 views

CVE-2024-24954

8.2CVSS8.4AI score0.00542EPSS

Exploits1References2

Vulnrichment•added 2024/05/28 3:30 p.m.•15 views

CVE-2024-24959