CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

In the Linux kernel, the following vulnerability has been resolved: scsi: iscsitcp: Check that sock is valid before iscsisetparam The validity of sock should be checked before assignment to avoid incorrect values. Commit 57569c37f0ad "scsi: iscsi: iscsitcp: Fix null-ptr-deref while calling...

5.5CVSS5.7AI score0.00017EPSS

Exploits0References8

Cvelist•added 2025/10/01 11:45 a.m.•5 views

CVE-2022-50459 scsi: iscsi: iscsi_tcp: Fix null-ptr-deref while calling getpeername()

In the Linux kernel, the following vulnerability has been resolved: scsi: iscsi: iscsitcp: Fix null-ptr-deref while calling getpeername Fix a NULL pointer crash that occurs when we are freeing the socket at the same time we access it via sysfs. The problem is that: 1. iscsiswtcpconngetparam and...

0.00017EPSS

Exploits0References5

Cvelist•added 2025/10/01 11:45 a.m.•6 views

CVE-2022-50455

...

Exploits0

CVE•added 2025/09/30 12:0 a.m.•9 views

CVE-2025-52050

CVE-2025-52050 affects Frappe ERPNext 15.57.5. The vulnerability is in function get_loyalty_program_details_with_points() (loyalty_program.py) and is caused by SQL injection via the expiry_date parameter, allowing an attacker to extract all information from databases. The connected documents prov...

6.5CVSS6.9AI score0.00041EPSS

Exploits1References2Affected Software1

CVE•added 2025/09/15 2:49 p.m.•13 views

CVE-2022-50334

CVE-2022-50334: In the Linux kernel, hugetlbfs_parse_param() dereferenced param->string when a zero-length fs parameter could yield null, due to vfs_parse_fs_string setting string to NULL. This NULL-ptr-deref was triggered when illegal parameters like size=, were parsed. The fix adds a sanity ...

5.5CVSS6AI score0.00019EPSS

Exploits0References6Affected Software1

Vulnrichment•added 2025/09/15 2:46 p.m.•1 views

CVE-2023-53252 Bluetooth: use RCU for hci_conn_params and iterate safely in hci_sync

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: use RCU for hciconnparams and iterate safely in hcisync hciupdateacceptlistsync iterates over hdev-pendleconns and hdev-pendlereports, and waits for controller events in the loop body, without holding hdev lock...

6.1AI score0.00019EPSS

Exploits0References3

CNNVD•added 2025/09/15 12:0 a.m.•1 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel, which stems from a null pointer dereference in the hugetlbfsparseparam function...

5.5CVSS6.2AI score0.00019EPSS

Exploits0References6

CNNVD•added 2025/09/15 12:0 a.m.•2 views

SourceCodester Pet Grooming Management Software 代码问题漏洞

SourceCodester Pet Grooming Management Software is a SourceCodester open source pet grooming management system. A code issue vulnerability exists in version 1.0 of SourceCodester Pet Grooming Management Software, which stems from an incorrect manipulation of the parameter websiteimage in the file...

8.8CVSS6.5AI score0.00098EPSS

Exploits1References5

Tenable Nessus•added 2025/09/10 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2016-1000006

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - hhvm before 3.12.11 has a use-after-free in the serializememoizeparam and ResourceBundle::construct functions. CVE-2016-1000006 Note that Nessus relies on the...

9.8CVSS8.3AI score0.005EPSS

Exploits0References2

Amazon•added 2025/09/08 12:0 a.m.•4 views

Medium: libssh

Issue Overview: The privatekeyfromfile uses an uninitialized variable under certain conditions, such as if the file specified by the filename argument doesn't exist. This causes the code to return an invalid private key. This defect, in turn, might cause signing failure. The bug might also cause ...

8.1CVSS6.9AI score0.01231EPSS

Exploits0