Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7500 matches found

OSV
OSVadded 2025/08/19 5:15 p.m.1 views

DEBIAN-CVE-2025-38568

In the Linux kernel, the following vulnerability has been resolved: net/sched: mqprio: fix stack out-of-bounds write in tc entry parsing TCAMQPRIOTCENTRYINDEX is validated using NLAPOLICYMAXNLAU32, TCQOPTMAXQUEUE, which allows the value TCQOPTMAXQUEUE 16. This leads to a 4-byte out-of-bounds stac...

7.8CVSS6.1AI score0.00024EPSS
Exploits0References1
OSV
OSVadded 2025/08/19 5:15 p.m.0 views

UBUNTU-CVE-2025-38568

In the Linux kernel, the following vulnerability has been resolved: net/sched: mqprio: fix stack out-of-bounds write in tc entry parsing TCAMQPRIOTCENTRYINDEX is validated using NLAPOLICYMAXNLAU32, TCQOPTMAXQUEUE, which allows the value TCQOPTMAXQUEUE 16. This leads to a 4-byte out-of-bounds stac...

7.8CVSS6.4AI score0.00024EPSS
Exploits0References30
OSV
OSVadded 2025/08/19 5:3 p.m.3 views

CVE-2025-38604 wifi: rtl818x: Kill URBs before clearing tx status queue

In the Linux kernel, the following vulnerability has been resolved: wifi: rtl818x: Kill URBs before clearing tx status queue In rtl8187stop move the call of usbkillanchoredurbs before clearing btxstatus.queue. This change prevents callbacks from using already freed skb due to anchor was not kille...

5.5CVSS5.7AI score0.00024EPSS
Exploits0References14
CVE
CVEadded 2025/08/19 5:3 p.m.42 views

CVE-2025-38604

CVE-2025-38604 affects the Linux kernel RTL8187 family via a race in rtl8187_stop() where usb_kill_anchored_urbs() must be invoked before clearing b_tx_status.queue to avoid callbacks using freed skbs. The upstream fix changes the sequence to kill URBs prior to freeing the tx-status skb, addressi...

5.5CVSS6.7AI score0.00024EPSS
Exploits0References11Affected Software1
Debian CVE
Debian CVEadded 2025/08/19 5:3 p.m.5 views

CVE-2025-38604

In the Linux kernel, the following vulnerability has been resolved: wifi: rtl818x: Kill URBs before clearing tx status queue In rtl8187stop move the call of usbkillanchoredurbs before clearing btxstatus.queue. This change prevents callbacks from using already freed skb due to anchor was not kille...

5.5CVSS5.3AI score0.00024EPSS
Exploits0
Debian CVE
Debian CVEadded 2025/08/19 5:3 p.m.3 views

CVE-2025-38603

Removed by vendor...

6.8AI score
Exploits0
CVE
CVEadded 2025/08/19 5:3 p.m.17 views

CVE-2025-38603

The connected Nessus entry provides concrete details for CVE-2025-38603: it affects the Linux kernel’s amdgpu driver, specifically a slab-use-after-free in amdgpu_userq_mgr_fini. The issue could occur when amdgpu_fpriv is freed in amdgpu_driver_postclose_kms() and later accessed in amdgpu_drm_rel...

7.1AI score
Exploits0
Cvelist
Cvelistadded 2025/08/19 5:3 p.m.6 views

CVE-2025-38603

...

Exploits0
OSV
OSVadded 2025/08/19 5:3 p.m.6 views

CVE-2025-38594 iommu/vt-d: Fix UAF on sva unbind with pending IOPFs

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Fix UAF on sva unbind with pending IOPFs Commit 17fce9d2336d "iommu/vt-d: Put iopf enablement in domain attach path" disables IOPF on device by removing the device from its IOMMU's IOPF queue when the last IOPF-capabl...

7.8CVSS6.3AI score0.00029EPSS
Exploits0References5
Cvelist
Cvelistadded 2025/08/19 5:3 p.m.6 views

CVE-2025-38582 RDMA/hns: Fix double destruction of rsv_qp

In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix double destruction of rsvqp rsvqp may be double destroyed in error flow, first in freemrinit, and then in hnsroceexit. Fix it by moving the freemrinit call into hnsrocev2init. listdel corruption, ffff589732eb9b50-ne...

0.00025EPSS
Exploits0References4
CVE
CVEadded 2025/08/19 5:3 p.m.45 views

CVE-2025-38582

CVE-2025-38582 affects the Linux kernel RDMA/hns (hns_roce) stack. The root cause is a double destruction of rsv_qp: free_mr_init() can run twice (once in free_mr_init() during error flow and again in hns_roce_exit()), leading to LIST_POISON1 corruption in the qP destroy path. The fix moves the f...

7.8CVSS7.1AI score0.00025EPSS
Exploits0References4Affected Software1
CVE
CVEadded 2025/08/19 5:2 p.m.20 views

CVE-2025-38570

CVE-2025-38570 is described in the initial document as a Linux kernel issue in the fbnic AF_XDP path, where a UaF occurs in xsk_bind() due to NAPI handling: NAPI is freed and the NAPI pointer is not cleared from the queue after a device open failure. The report indicates a local attack vector wit...

7.8CVSS7AI score0.00019EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVEadded 2025/08/19 5:2 p.m.4 views

CVE-2025-38570

In the Linux kernel, the following vulnerability has been resolved: eth: fbnic: unlink NAPIs from queues on error to open CI hit a UaF in fbnic in the AFXDP portion of the queues.py test. The UaF is in the skmarknapiidonce call in xskbind, NAPI has been freed. Looks like the device failed to open...

7.8CVSS6.1AI score0.00019EPSS
Exploits0
Vulnrichment
Vulnrichmentadded 2025/08/19 5:2 p.m.2 views

CVE-2025-38568 net/sched: mqprio: fix stack out-of-bounds write in tc entry parsing

In the Linux kernel, the following vulnerability has been resolved: net/sched: mqprio: fix stack out-of-bounds write in tc entry parsing TCAMQPRIOTCENTRYINDEX is validated using NLAPOLICYMAXNLAU32, TCQOPTMAXQUEUE, which allows the value TCQOPTMAXQUEUE 16. This leads to a 4-byte out-of-bounds stac...

6.5AI score0.00024EPSS
Exploits0References5
Debian CVE
Debian CVEadded 2025/08/19 5:2 p.m.3 views

CVE-2025-38568

In the Linux kernel, the following vulnerability has been resolved: net/sched: mqprio: fix stack out-of-bounds write in tc entry parsing TCAMQPRIOTCENTRYINDEX is validated using NLAPOLICYMAXNLAU32, TCQOPTMAXQUEUE, which allows the value TCQOPTMAXQUEUE 16. This leads to a 4-byte out-of-bounds stac...

7.8CVSS6.1AI score0.00024EPSS
Exploits0
OSV
OSVadded 2025/08/19 5:2 p.m.4 views

CVE-2025-38568 net/sched: mqprio: fix stack out-of-bounds write in tc entry parsing

In the Linux kernel, the following vulnerability has been resolved: net/sched: mqprio: fix stack out-of-bounds write in tc entry parsing TCAMQPRIOTCENTRYINDEX is validated using NLAPOLICYMAXNLAU32, TCQOPTMAXQUEUE, which allows the value TCQOPTMAXQUEUE 16. This leads to a 4-byte out-of-bounds stac...

7.8CVSS6.2AI score0.00024EPSS
Exploits0References8
CVE
CVEadded 2025/08/19 5:2 p.m.40 views

CVE-2025-38568

In the Linux kernel, net/sched: mqprio: fix stack out-of-bounds write in tc entry parsing (CVE-2025-38568). The TCA_MQPRIO_TC_ENTRY_INDEX policy allowed up to TC_QOPT_MAX_QUEUE (16), causing a 4-byte out-of-bounds write in the fp[] stack array. The fix changes the policy to allow only up to TC_QO...

7.8CVSS7.2AI score0.00024EPSS
Exploits0References5Affected Software1
Cvelist
Cvelistadded 2025/08/19 5:2 p.m.7 views

CVE-2025-38568 net/sched: mqprio: fix stack out-of-bounds write in tc entry parsing

In the Linux kernel, the following vulnerability has been resolved: net/sched: mqprio: fix stack out-of-bounds write in tc entry parsing TCAMQPRIOTCENTRYINDEX is validated using NLAPOLICYMAXNLAU32, TCQOPTMAXQUEUE, which allows the value TCQOPTMAXQUEUE 16. This leads to a 4-byte out-of-bounds stac...

0.00024EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2025/08/19 1:19 p.m.2 views

kernel: net_sched: hfsc: Fix a UAF vulnerability in class handling

In the Linux kernel, the following vulnerability has been resolved: netsched: hfsc: Fix a UAF vulnerability in class handling This patch fixes a Use-After-Free vulnerability in the HFSC qdisc class handling. The issue occurs due to a time-of-check/time-of-use condition in hfscchangeclass when...

7.8CVSS6.5AI score0.00037EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2025/08/19 9:59 a.m.4 views

kernel: tls: always refresh the queue when reading sock

In the Linux kernel, the following vulnerability has been resolved: tls: always refresh the queue when reading sock After recent changes in net-next TCP compacts skbs much more aggressively. This unearthed a bug in TLS where we may try to operate on an old skb when checking if all skbs in the que...

7.8CVSS6.8AI score0.00071EPSS
Exploits0References5
Rows per page
Query Builder