CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

27 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: ext4: dax: fix an issue where overflowing extents beyond the inode size occurs during partial writing. The daxiomaprw function does two things in each iteration: it maps the written blocks and copies user data to those blocks. If...

5.5CVSS6.4AI score0.00016EPSS

Exploits0References2

Tenable Nessus•added 2026/05/20 12:0 a.m.•4 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-021596)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-021596 advisory. In the Linux kernel, the following vulnerability has been resolved: ext4: dax: fix overflowing extents beyond inode size when partially writing The daxiomaprw does t...

5.5CVSS5.8AI score0.00016EPSS

Exploits0References3

Veracode•added 2026/05/12 2:12 p.m.•5 views

Improper Memory Buffer Handling

uuid is vulnerable to Improper Memory Buffer Handling. The vulnerability is due to missing validation of buffer size and offset values during UUID generation, which allows an attacker to trigger silent partial writes into caller-provided buffers...

9.3CVSS5.9AI score0.00014EPSS

Exploits1References5Affected Software1

AstraLinux•added 2026/05/03 11:59 p.m.•4 views

Astra Linux - уязвимость в linux-5.15

In the Linux kernel, the following vulnerability has been resolved: ext4: Fixed the issue where idisksize could exceed isize in partially written cases. It is possible for idisksize to exceed isize, triggering a warning. The code includes the following steps: - genericperformwrite: Copied =...

5.5CVSS6.3AI score0.00021EPSS

Exploits0References1

NVD•added 2026/04/24 7:17 p.m.•1 views

CVE-2026-41907

uuid is for the creation of RFC9562 formerly RFC4122 UUIDs. Prior to 14.0.0, v3, v5, and v6 accept external output buffers but do not reject out-of-range writes small buf or large offset. This allows silent partial writes into caller-provided buffers. This vulnerability is fixed in 14.0.0...

9.3CVSS0.00014EPSS

Exploits1References1

EUVD•added 2026/04/24 6:9 p.m.•1 views

EUVD-2026-25600

9.3CVSS5.2AI score0.00014EPSS

Exploits1References1

CVE•added 2026/04/24 6:9 p.m.•114 views

CVE-2026-41907

The CVE affects the uuid implementation used to create RFC9562 UUIDs. Prior to version 14.0.0, v3, v5, and v6 allow silent partial writes by accepting external output buffers without rejecting out-of-range writes (small buffers or large offsets), enabling potential corruption of caller-provided b...

9.3CVSS5.3AI score0.00014EPSS

Exploits1References1Affected Software1

Vulnrichment•added 2026/04/24 6:9 p.m.•1 views

CVE-2026-41907 uuid: Missing buffer bounds check in `v3`/`v5`/`v6` when `buf` is provided

9.3CVSS5.2AI score0.00014EPSS

Exploits1References1

Cvelist•added 2026/04/24 6:9 p.m.•31 views

CVE-2026-41907 uuid: Missing buffer bounds check in `v3`/`v5`/`v6` when `buf` is provided

9.3CVSS0.00014EPSS

Exploits1References1

Positive Technologies•added 2026/04/24 12:0 a.m.•1 views

PT-2026-35061

Name of the Vulnerable Software and Affected Versions uuid versions prior to 14.0.0 Description The software used for creating RFC9562 formerly RFC4122 UUIDs contains an issue where v3, v5, and v6 accept external output buffers but fail to reject out-of-range writes, such as those involving a sma...

9.3CVSS5.4AI score0.00014EPSS

Exploits1References4

OSV•added 2026/04/22 8:53 p.m.•1 views

GHSA-W5HQ-G745-H8PQ uuid: Missing buffer bounds check in v3/v5/v6 when buf is provided

Summary The v3, v5, and v6 API methods not uuid release versions accept external output buffers but do not reject out-of-range writes small buf or large offset. By contrast, v4, v1, and v7 API methods explicitly throw RangeError on invalid bounds. This inconsistency allows silent partial writes...

7.5CVSS5.9AI score0.00014EPSS

Exploits1References11

Tenable Nessus•added 2025/10/27 12:0 a.m.•2 views

Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices Improper Initialization (CVE-2024-50015)

ext4: dax: Overflowing extents beyond inode size when partially writing. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503434; scriptversion"1.3...

5.5CVSS6.7AI score0.00016EPSS

Exploits0References5

Tenable Nessus•added 2025/10/07 12:0 a.m.•3 views

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-405911)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-405911 advisory. In the Linux kernel, the following vulnerability has been resolved: ext4: dax: fix overflowing extents beyond inode size when partially writing The daxiomaprw does t...

5.5CVSS6.2AI score0.00016EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-14942

Malicious code in bioql PyPI...

6.6AI score

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-59919

Malicious code in bioql PyPI...

6.3AI score0.00021EPSS

Exploits0References6

SUSE CVE•added 2025/09/16 11:30 p.m.•1 views

SUSE CVE-2023-53270

In the Linux kernel, the following vulnerability has been resolved: ext4: fix idisksize exceeding isize problem in paritally written case It is possible for idisksize can exceed isize, triggering a warning. genericperformwrite copied = iovitercopyfromuseratomiclen // copied idisksize, newsize //...

6.4CVSS6.4AI score0.00021EPSS

Exploits0References8

NVD•added 2025/09/16 8:15 a.m.•1 views

CVE-2023-53270

5.5CVSS0.00021EPSS

Exploits0References5

OSV•added 2025/09/16 8:15 a.m.•0 views

UBUNTU-CVE-2023-53270

5.5CVSS6.2AI score0.00021EPSS

Exploits0References3

Vulnrichment•added 2025/09/16 8:6 a.m.•1 views

CVE-2023-53270 ext4: fix i_disksize exceeding i_size problem in paritally written case