CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

21 matches found

AstraLinux•added 2026/05/03 11:59 p.m.•9 views

Astra Linux – Vulnerability in Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: cifs: fixed a underflow issue in parseserverinterfaces. In this loop, we iterate through the buffer. After processing each item, we check whether the sizeleft is greater than the minimum size required. However, the problem arises...

6.7CVSS5.7AI score0.00407EPSS

Exploits0References2

Tenable Nessus•added 2026/04/17 12:0 a.m.•5 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007290)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007290 advisory. In the Linux kernel, the following vulnerability has been resolved: cifs: fix underflow in parseserverinterfaces In this loop, we step through the buffer and after...

6.7CVSS6.4AI score0.00407EPSS

Exploits0References4

AstraLinux•added 2025/11/01 10:54 a.m.•6 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: smb3: fixed an issue where a slab out-of-bounds condition could occur during mount to ksmbd. With KASAN enabled, it is possible to encounter a slab out-of-bounds condition during mount to ksmbd due to a missing check in the...

7.1CVSS7AI score0.0014EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-26741

Malicious code in bioql PyPI...

6.3AI score0.0014EPSS

Exploits0References6

Tenable Nessus•added 2025/09/06 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2025-38728

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - smb3: fix for slab out of bounds on mount to ksmbd With KASAN enabled, it is possible to get a slab out of bounds during mount to ksmbd due to missing check in...

7.1CVSS7.1AI score0.0014EPSS

Exploits0References4

SUSE CVE•added 2025/09/04 11:23 p.m.•10 views

SUSE CVE-2025-38728

In the Linux kernel, the following vulnerability has been resolved: smb3: fix for slab out of bounds on mount to ksmbd With KASAN enabled, it is possible to get a slab out of bounds during mount to ksmbd due to missing check in parseserverinterfaces see below: BUG: KASAN: slab-out-of-bounds in...

5.5CVSS6.2AI score0.0014EPSS

Exploits0References22

OSV•added 2025/09/04 4:15 p.m.•6 views

AZL-73845 CVE-2025-38728 affecting package kernel 5.15.200.1-1

7.1CVSS5.6AI score0.0014EPSS

Exploits0References1

OSV•added 2025/09/04 4:15 p.m.•11 views

AZL-66875 CVE-2025-38728 affecting package kernel for versions less than 6.6.104.2-1

7.1CVSS5.6AI score0.0014EPSS

Exploits0References1

CVE•added 2025/09/04 3:33 p.m.•36 views

CVE-2025-38728

CVE-2025-38728 : Linux kernel SMB3/kdmbd (ksmbd) mount path vulnerability. The issue stems from a missing check in parse_server_interfaces() under KASAN, enabling a slab-out-of-bounds read during a ksmbd mount. The bug is reported in the CIFS/SMB3 path with a read of size 4 at a kernel address du...

7.1CVSS5.8AI score0.0014EPSS

Exploits0References8Affected Software1

Microsoft CVE•added 2025/09/03 10:6 p.m.•8 views

cifs: fix underflow in parse_server_interfaces()

...

6.7CVSS7AI score0.00407EPSS

Exploits0

BDU FSTEC•added 2025/04/14 12:0 a.m.•4 views

The vulnerability of the `parse_server_interfaces()` function in the `fs/smb/client/smb2ops.c` module allows a hacker to compromise the integrity of protected information or cause service failures for the SMB kernel client of the Linux operating system.

The vulnerability of the parseserverinterfaces function in the fs/smb/client/smb2ops.c module, which is part of the SMB client support in Linux operating systems, involves a numerical port escape or cyclic shift vulnerability. Exploiting this vulnerability could allow an attacker to compromise th...

7.1CVSS6.5AI score0.00407EPSS

Exploits0References36Affected Software5

SUSE Linux•added 2024/10/15 7:3 p.m.•3 views

Security update for the Linux Kernel (Live Patch 46 for SLE 15 SP2)

This update for the Linux Kernel 5.3.18-15020024183 fixes several issues. The following security issues were fixed: CVE-2024-35861: Fixed potential UAF in cifssignalcifsdforreconnect bsc1225312. CVE-2021-47291: ipv6: fix another slab-out-of-bounds in fib6nhflushexceptions bsc1227651...

7.8CVSS7.9AI score0.01166EPSS

Exploits2References72

RedHat Linux•added 2024/08/15 5:34 a.m.•4 views

kernel: cifs: fix underflow in parse_server_interfaces()

In the Linux kernel, the following vulnerability has been resolved: cifs: fix underflow in parseserverinterfaces In this loop, we step through the buffer and after each item we check if the sizeleft is greater than the minimum size we need. However, the problem is that "bytesleft" is type ssizet...

6.7CVSS6.6AI score0.00407EPSS

Exploits0References5

OSV•added 2024/07/11 11:33 a.m.•15 views

SUSE-SU-2024:2407-1 Security update for the Linux Kernel RT (Live Patch 15 for SLE 15 SP5)

This update for the Linux Kernel 5.15.21-1505001355 fixes several issues. The following security issues were fixed: - CVE-2024-26923: Fixed false-positive lockdep splat for spinlock in unixgc bsc1223683. - CVE-2024-26828: Fixed underflow in parseserverinterfaces bsc1223363...

6.7CVSS7.1AI score0.00407EPSS

Exploits0References5

RedHat Linux•added 2024/05/29 8:56 a.m.•2 views

kernel: cifs: fix underflow in parse_server_interfaces()

6.7CVSS6.6AI score0.00407EPSS

Exploits0References5

RedHat Linux•added 2024/05/29 8:15 a.m.•2 views

kernel: cifs: fix underflow in parse_server_interfaces()

6.7CVSS6.6AI score0.00407EPSS

Exploits0References5

SUSE CVE•added 2024/04/19 2:18 a.m.•3 views

SUSE CVE-2024-26828