CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

25 matches found

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux – Vulnerability in Linux 5.10, Linux, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: wifi: brcmfmac: Fixed a potential stack-out-of-bounds situation in brcmfcpreinitdcmds. This patch addresses a read operation that may lead to a stack-out-of-bounds condition, occurring when a buffer that is not null-terminated...

7.8CVSS5.9AI score0.00153EPSS

Exploits0References2

Tenable Nessus•added 2025/12/31 12:0 a.m.•2 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993176)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993176 advisory. In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Fix potential stack-out-of-bounds in brcmfcpreinitdcmds This patch fixes a...

7.8CVSS6.7AI score0.00153EPSS

Exploits0References4

EUVD•added 2025/10/22 3:31 p.m.•4 views

EUVD-2023-60026

In the Linux kernel, the following vulnerability has been resolved: s390/crypto: use vector instructions only if available for ChaCha20 Commit 349d03ffd5f6 "crypto: s390 - add crypto library interface for ChaCha20" added a library interface to the s390 specific ChaCha20 implementation. However no...

4.7AI score0.00176EPSS

Exploits0References4

NVD•added 2025/10/04 4:15 p.m.•7 views

CVE-2023-53582

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: ensure CLM version is null-terminated to prevent stack-out-of-bounds Fix a stack-out-of-bounds read in brcmfmac that occurs when 'buf' that is not null-terminated is passed as an argument of strreplace in...

5.5CVSS0.00142EPSS

Exploits0References7

OSV•added 2025/10/04 4:15 p.m.•1 views

UBUNTU-CVE-2023-53582

5.5CVSS6AI score0.00142EPSS

Exploits0References10

Cvelist•added 2025/10/04 3:43 p.m.•9 views

CVE-2023-53582 wifi: brcmfmac: ensure CLM version is null-terminated to prevent stack-out-of-bounds

0.00142EPSS

Exploits0References7

SUSE CVE•added 2025/09/17 11:31 p.m.•2 views

SUSE CVE-2022-50258

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Fix potential stack-out-of-bounds in brcmfcpreinitdcmds This patch fixes a stack-out-of-bounds read in brcmfmac that occurs when 'buf' that is not null-terminated is passed as an argument of strsep in...

7CVSS6.5AI score0.00153EPSS

Exploits0References11

OSV•added 2025/09/15 2:15 p.m.•0 views

UBUNTU-CVE-2022-50258

7.8CVSS6AI score0.00153EPSS

Exploits0References11

Cvelist•added 2025/09/15 2:2 p.m.•5 views

CVE-2022-50258 wifi: brcmfmac: Fix potential stack-out-of-bounds in brcmf_c_preinit_dcmds()

0.00153EPSS

Exploits0References8

OSV•added 2025/09/15 2:2 p.m.•2 views

CVE-2022-50258 wifi: brcmfmac: Fix potential stack-out-of-bounds in brcmf_c_preinit_dcmds()

7.8CVSS6.2AI score0.00153EPSS

Exploits0References11

Positive Technologies•added 2025/09/15 12:0 a.m.•2 views

PT-2025-37512

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: This issue resolves a stack-out-of-bounds read in brcmfmac that occurs when a null-terminated buffer is not passed as an argument of strsep in the brcmf c preinit dcmds function. The...

6.2AI score0.00153EPSS

Exploits0References10

NVD•added 2025/07/08 7:15 a.m.•4 views

CVE-2025-41667

A low privileged remote attacker with file access can replace a critical file used by the arp-preinit script to get read, write and execute access to any file on the device...

8.8CVSS0.00502EPSS

Exploits0References1

Vulnrichment•added 2025/07/08 7:3 a.m.•2 views

CVE-2025-41667 Phoenix Contact: File access due to the replacement of a critical file used by the arp-preinit script

A low privileged remote attacker with file access can replace a critical file used by the arp-preinit script to get read, write and execute access to any file on the device...

8.8CVSS7.3AI score0.00502EPSS

Exploits0References1

CNNVD•added 2025/07/08 12:0 a.m.•2 views

PHOENIX CONTACT多款产品后置链接漏洞

PHOENIX CONTACT AXC F 1152 and others are a controller device from PHOENIX CONTACT, Germany. A post-link vulnerability exists in several PHOENIX CONTACT products, which can be exploited by a low-privileged remote attacker to gain read, write, and execute privileges to arbitrary files on the devic...

8.8CVSS7.3AI score0.00502EPSS

Exploits0References1

Positive Technologies•added 2025/07/08 12:0 a.m.•2 views

PT-2025-28351 · Phoenix Contact · Axc F 1152 +4

Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: A low privileged remote attacker with file access can replace a critical file used by the arp-preinit script to get read, write and execute access to any file on the device. Recommendations:...

8.8CVSS6.4AI score0.00502EPSS

Exploits0References4

OSV•added 2024/04/01 9:15 a.m.•1 views

DEBIAN-CVE-2024-26653

In the Linux kernel, the following vulnerability has been resolved: usb: misc: ljca: Fix double free in error handling path When auxiliarydeviceadd returns error and then calls auxiliarydeviceuninit, callback function ljcaauxdevrelease calls kfreeauxdev-dev.platformdata to free the parameter data...

7.8CVSS5.3AI score0.00236EPSS

Exploits0References1

RedHat Linux•added 2023/11/07 9:3 a.m.•2 views

kernel: wifi: brcmfmac: Fix potential stack-out-of-bounds in brcmf_c_preinit_dcmds()

7.8CVSS6.8AI score0.00153EPSS

Exploits0References5

OSV•added 2022/07/14 8:15 p.m.•4 views

CVE-2022-32317

The MPlayer Project v1.5 was discovered to contain a heap use-after-free resulting in a double free in the preinit function at libvo/vov4l2.c. This vulnerability can lead to a Denial of Service DoS via a crafted file. The device=strdup statement is not executed on every call. Note: This has been...

5.5CVSS5.7AI score0.00753EPSS

Exploits1References3