CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7456 matches found

EUVD•added 2025/11/13 6:2 p.m.•2 views

EUVD-2025-175342

A vulnerability was detected in SourceCodester Patients Waiting Area Queue Management System 1.0. The affected element is the function getPatientAppointment of the file /php/apipatientcheckin.php. Performing manipulation of the argument appointmentID results in sql injection. It is possible to...

7.5CVSS7.3AI score0.00032EPSS

Exploits1References5

RedhatCVE•added 2025/11/13 4:2 p.m.•4 views

CVE-2025-40166

In the Linux kernel, the following vulnerability has been resolved: drm/xe/guc: Check GuC running state before deregistering exec queue In normal operation, a registered exec queue is disabled and deregistered through the GuC, and freed only after the GuC confirms completion. However, if the driv...

4.5CVSS5.2AI score0.00026EPSS

Exploits0References4

RedhatCVE•added 2025/11/13 4:2 p.m.•1 views

CVE-2025-40140

In the Linux kernel, the following vulnerability has been resolved: net: usb: Remove disruptive netifwakequeue in rtl8150setmulticast syzbot reported WARNING in rtl8150startxmit/usbsubmiturb. This is the sequence of events that leads to the warning: rtl8150startxmit netifstopqueue;...

5.5CVSS5.9AI score0.00066EPSS

Exploits0References4

RedhatCVE•added 2025/11/13 2:12 p.m.•3 views

CVE-2025-40125

In the Linux kernel, the following vulnerability has been resolved: blk-mq: check kobject stateinsysfs before deleting in blkmqunregisterhctx In blkmqupdatenrhwqueues the return value of blkmqsysfsregisterhctxs is not checked. If sysfs creation for hctx fails, later changing the number of hwqueue...

5.5CVSS5.9AI score0.00066EPSS

Exploits0References4

Microsoft CVE•added 2025/11/13 1:2 a.m.•4 views

blk-mq: fix potential deadlock while nr_requests grown

...

7AI score0.00028EPSS

Exploits0

SUSE CVE•added 2025/11/13 12:24 a.m.•5 views

SUSE CVE-2025-40140

3.3CVSS6.5AI score0.00066EPSS

Exploits0References20

SUSE CVE•added 2025/11/13 12:24 a.m.•3 views

SUSE CVE-2025-40146

In the Linux kernel, the following vulnerability has been resolved: blk-mq: fix potential deadlock while nrrequests grown Allocate and free schedtags while queue is freezed can deadlock1, this is a long term problem, hence allocate memory before freezing queue and free memory after queue is...

6.6AI score0.00028EPSS

Exploits0References3

Packet Storm•added 2025/11/13 12:0 a.m.•129 views

📄 Patients Waiting Area Queue Management System 1.0 SQL Injection

Patients Waiting Area Queue Management System version 1.0 suffers from a remote SQL injection vulnerability. Exploit Title: Patients Waiting Area Queue Management System v1.0 - SQL Injection Exploit Author: Deva Parekh pr0f Date: October 23, 2025 Vendor Homepage:...

8.2AI score0.00052EPSS

Exploits3

Positive Technologies•added 2025/11/13 12:0 a.m.•4 views

PT-2025-46877

Name of the Vulnerable Software and Affected Versions SourceCodester Patients Waiting Area Queue Management System version 1.0 Description A flaw exists in the software that allows for remote SQL injection. The issue is located in the getPatientAppointment function within the /php/api patient...

7.5CVSS7AI score0.00032EPSS

Exploits1References6

RedHat Linux•added 2025/11/12 6:1 p.m.•3 views

python-kdcproxy: Remote DoS via unbounded TCP upstream buffering

If an attacker causes kdcproxy to connect to an attacker-controlled KDC server e.g. through server-side request forgery, they can exploit the fact that kdcproxy does not enforce bounds on TCP response length to conduct a denial-of-service attack. While receiving the KDC's response, kdcproxy copie...

5.9CVSS5.9AI score0.00086EPSS

Exploits0References6

OSV•added 2025/11/12 5:30 p.m.•2 views

USN-7835-6 linux-aws-6.8 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PowerPC architecture; - x86 architecture; - ACPI drivers; - Ublk userspace block driver; -...

8.8CVSS6.7AI score0.00125EPSS

Exploits1References60

OSV•added 2025/11/12 5:15 p.m.•2 views

AZL-70181 CVE-2025-59089 affecting package python-kdcproxy 0.4.2-5

5.9CVSS5.9AI score0.00086EPSS

Exploits0References1

OSV•added 2025/11/12 5:15 p.m.•2 views

AZL-70171 CVE-2025-59089 affecting package python-kdcproxy 1.0.0-18

5.9CVSS5.9AI score0.00086EPSS

Exploits0References1

OSV•added 2025/11/12 5:15 p.m.•0 views

UBUNTU-CVE-2025-59089

5.9CVSS6AI score0.00086EPSS

Exploits0References9

RedhatCVE•added 2025/11/12 4:40 p.m.•3 views

CVE-2025-59089

5.9CVSS6.4AI score0.00086EPSS

Exploits0References4

Cvelist•added 2025/11/12 4:40 p.m.•8 views

CVE-2025-59089 Python-kdcproxy: remote dos via unbounded tcp upstream buffering

5.9CVSS0.00086EPSS

Exploits0References17

CVE•added 2025/11/12 4:40 p.m.•15 views

CVE-2025-59089

CVE-2025-59089 is a DoS in python-kdcproxy caused by unbounded TCP buffering and permissive handling of response chunks, enabling memory/CPU exhaustion when kdcproxy connects to attacker-controlled KDCs. Related issue CVE-2025-59088 concerns SSRF via DNS SRV discovery for realms, allowing probing...

5.9CVSS6.7AI score0.00086EPSS

Exploits0References17

RedHat Linux•added 2025/11/12 4:32 p.m.•3 views

python-kdcproxy: Remote DoS via unbounded TCP upstream buffering

5.9CVSS5.9AI score0.00086EPSS

Exploits0References6

RedHat Linux•added 2025/11/12 4:20 p.m.•4 views

python-kdcproxy: Remote DoS via unbounded TCP upstream buffering

5.9CVSS5.9AI score0.00086EPSS

Exploits0References6

RedHat Linux•added 2025/11/12 3:26 p.m.•3 views

python-kdcproxy: Remote DoS via unbounded TCP upstream buffering