CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

AstraLinux•added 2026/05/03 11:59 p.m.•1 views

Astra Linux - уязвимость в linux-5.10, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: fs/proc: fixed a UAF in procreaddirde. The pde is erased from the subdir rbtree through rberase, but the node is not set to EMPTY, which may lead to UAF access. We should use RBCLEARNODE to set the erased node to EMPTY. Then,...

5.9AI score0.03752EPSS

Exploits2References2

Tenable Nessus•added 2026/04/17 12:0 a.m.•2 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007455)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007455 advisory. In the Linux kernel, the following vulnerability has been resolved: fs/proc: fix uaf in procreaddirde Pde is erased from subdir rbtree through rberase, but not set...

5.9AI score0.03752EPSS

Exploits2References4

SUSE CVE•added 2026/03/25 4:55 p.m.•1 views

SUSE CVE-2026-23385

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: clone set on flush only Syzbot with fault injection triggered a failing memory allocation with GFPKERNEL which results in a WARN splat: iter.err WARNING: net/netfilter/nftablesapi.c:845 at...

5.5CVSS5.7AI score0.00017EPSS

Exploits0References3

NVD•added 2026/03/25 11:16 a.m.•1 views

CVE-2026-23385

5.5CVSS0.00017EPSS

Exploits0References3

Tenable Nessus•added 2026/01/22 12:0 a.m.•3 views

Azure Linux 3.0 Security Update: hyperv-daemons (CVE-2024-27058)

The version of hyperv-daemons installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-27058 advisory. - In the Linux kernel, the following vulnerability has been resolved: tmpfs: fix race on handling dquo...

4.7CVSS5.3AI score0.00048EPSS

OSV•added 2025/12/09 1:16 a.m.•0 views

UBUNTU-CVE-2023-53813

In the Linux kernel, the following vulnerability has been resolved: ext4: fix rbtree traversal bug in ext4mbusepreallocated During allocations, while looking for preallocationsPA in the per inode rbtree, we can't do a direct traversal of the tree because ext4mbdiscardgrouppreallocation can...

5.8AI score0.00026EPSS

CVE•added 2025/12/09 12:1 a.m.•10 views

CVE-2023-53813

CVE-2023-53813 concerns linux kernel ext4 preallocation handling. The issue arises in ext4 during PA (preallocated area) search in the per-inode rb-tree: a direct traversal can miss entries because ext4_mb_discard_group_preallocation() may concurrently delete a PA, potentially causing a BUG_ON wh...

6.2AI score0.00026EPSS

CNNVD•added 2025/12/09 12:0 a.m.•1 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from ext4mbusepreallocated not handling rbtree traversals correctly, which could lead to overlapping preallocated...

8.6AI score0.00026EPSS

Exploits0References3

SUSE CVE•added 2025/12/08 12:23 a.m.•1 views

SUSE CVE-2025-40271

In the Linux kernel, the following vulnerability has been resolved: fs/proc: fix uaf in procreaddirde Pde is erased from subdir rbtree through rberase, but not set the node to EMPTY, which may result in uaf access. We should use RBCLEARNODE set the erased node to EMPTY, then pdesubdirnext will...

5.2CVSS6.5AI score0.03752EPSS

Exploits2References26

RedhatCVE•added 2025/12/07 9:55 p.m.•2 views

CVE-2025-40271

7CVSS5.2AI score0.03752EPSS

Exploits2References4

OSV•added 2025/12/06 10:15 p.m.•0 views

UBUNTU-CVE-2025-40271

6.2AI score0.03752EPSS

Exploits2References36

Debian CVE•added 2025/12/06 9:50 p.m.•4 views

CVE-2025-40271

5.3AI score0.03752EPSS

Exploits2

Positive Technologies•added 2025/10/04 12:0 a.m.•1 views

PT-2025-40708

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the netfilter module, specifically in the nft set rbtree function, related to element insertion. A null dereference can occur during element...

6.3AI score0.00017EPSS

Exploits0References9

RedHat Linux•added 2025/08/27 10:41 a.m.•2 views

kernel: sch_hfsc: make hfsc_qlen_notify() idempotent

In the Linux kernel, the following vulnerability has been resolved: schhfsc: make hfscqlennotify idempotent hfscqlennotify is not idempotent either and not friendly to its callers, like fqcodeldequeue. Let's make it idempotent to ease qdisctreereducebacklog callers' life: 1. updatevf decreases...

RedHat Linux•added 2025/08/27 12:10 a.m.•1 views

kernel: sch_hfsc: make hfsc_qlen_notify() idempotent

RedHat Linux•added 2025/08/25 1:42 a.m.•4 views

kernel: sch_hfsc: make hfsc_qlen_notify() idempotent

Tenable Nessus•added 2025/08/12 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2024-27058

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: tmpfs: fix race on handling dquot rbtree A syzkaller reproducer found a race while attemptin...

4.7CVSS5.6AI score0.00048EPSS

OSV•added 2025/07/04 1:15 p.m.•6 views

AZL-72763 CVE-2025-38177 affecting package kernel for versions less than 5.15.200.1-1