CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

2513 matches found

SUSE CVE•added 2025/07/28 11:22 p.m.•1 views

SUSE CVE-2025-38480

In the Linux kernel, the following vulnerability has been resolved: comedi: Fix use of uninitialized data in insnrwemulatebits For Comedi INSNREAD and INSNWRITE instructions on "digital" subdevices subdevice types COMEDISUBDDI, COMEDISUBDDO, and COMEDISUBDDIO, it is common for the subdevice drive...

5.3CVSS6.5AI score0.00151EPSS

Exploits0References22

OSV•added 2025/07/28 12:15 p.m.•3 views

DEBIAN-CVE-2025-38480

5.5CVSS5.5AI score0.00151EPSS

Exploits0References1

RedHat Linux•added 2025/07/28 8:32 a.m.•11 views

kernel: net/mdiobus: Fix potential out-of-bounds clause 45 read/write access

In the Linux kernel, the following vulnerability has been resolved: net/mdiobus: Fix potential out-of-bounds clause 45 read/write access When using publicly available tools like 'mdio-tools' to read/write data from/to network interface and its PHY via C45 clause 45 mdiobus, there is no verificati...

7.1CVSS6.8AI score0.00161EPSS

Exploits0References5

NVD•added 2025/07/25 3:15 p.m.•5 views

CVE-2025-38422

In the Linux kernel, the following vulnerability has been resolved: net: lan743x: Modify the EEPROM and OTP size for PCI1xxxx devices Maximum OTP and EEPROM size for hearthstone PCI1xxxx devices are 8 Kb and 64 Kb respectively. Adjust max size definitions and return correct EEPROM length based on...

7.8CVSS0.00164EPSS

Exploits0References6

OSV•added 2025/07/25 1:15 p.m.•4 views

UBUNTU-CVE-2025-38388

In the Linux kernel, the following vulnerability has been resolved: firmware: armffa: Replace mutex with rwlock to avoid sleep in atomic context The current use of a mutex to protect the notifier hashtable accesses can lead to issues in the atomic context. It results in the below kernel warnings:...

5.5CVSS5.9AI score0.00117EPSS

Exploits0References28

NVD•added 2025/07/11 5:15 a.m.•9 views

CVE-2025-7401

The Premium Age Verification / Restriction for WordPress plugin for WordPress is vulnerable to arbitrary file read and write due to the existence of an insufficiently protected remote support functionality in remotetunnel.php in all versions up to, and including, 3.0.2. This makes it possible for...

9.8CVSS0.0055EPSS

Exploits2References2

CNNVD•added 2025/07/11 12:0 a.m.•3 views

GIGABYTE Chipsets 安全漏洞

GIGABYTE Chipsets is a series of open source chipsets from GIGABYTE of Taiwan, China. A security vulnerability exists in GIGABYTE Chipsets that originates from an unverified pointer and could lead to arbitrary read/write access and elevation of privilege...

7.8CVSS9.1AI score0.0019EPSS

Exploits0References4

OSV•added 2025/07/10 8:15 p.m.•3 views

DEBIAN-CVE-2025-53630

llama.cpp is an inference of several LLM models in C/C++. Integer Overflow in the ggufinitfromfileimpl function in ggml/src/gguf.cpp can lead to Heap Out-of-Bounds Read/Write. This vulnerability is fixed in commit 26a48ad699d50b6268900062661bd22f3e792579...

9.3CVSS5.2AI score0.00318EPSS

Exploits0References1

OSV•added 2025/07/08 7:15 a.m.•2 views

CVE-2025-25268

An unauthenticated adjacent attacker can modify configuration by sending specific requests to an API-endpoint resulting in read and write access due to missing authentication...

8.8CVSS5.8AI score

Exploits0References1

CNNVD•added 2025/07/08 12:0 a.m.•2 views

PHOENIX CONTACT CHARX SEC-3xxx 访问控制错误漏洞

PHOENIX CONTACT CHARX SEC-3000 etc. are products of PHOENIX CONTACT, Germany.PHOENIX CONTACT CHARX SEC-3000 is an AC Charge Controller.PHOENIX CONTACT CHARX SEC-3050 is an AC Charge Controller.PHOENIX CONTACT CHARX SEC-3100 is an AC Charge Controller. PHOENIX CONTACT CHARX SEC-3100 is an AC charg...

8.8CVSS6.6AI score0.00299EPSS

Exploits0References1

Gitee•added 2025/07/06 3:25 a.m.•99 views

Exploit for Use After Free in Google Android

This is a PoC Proof of Concept application demonstrating the power of an Android kernel arbitrary R/W, targeting CVE-2019-2215. The application is designed to exploit this vulnerability, which allows for arbitrary read and write access to the kernel. The exploit is implemented in the native/poc.c...

7.8CVSS8.7AI score0.72105EPSS

Exploits26

Packet Storm News•added 2025/07/06 12:0 a.m.•3 views

Static Analysis for Detecting Transaction Conflicts in Ethereum Smart Contracts

Ethereum smart contracts operate in a concurrent environment where multiple transactions can be submitted simultaneously. However, the Ethereum Virtual Machine EVM enforces sequential execution of transactions within each block to prevent conflicts arising from concurrent access to the same state...

7.2AI score

Exploits0

SUSE CVE•added 2025/07/03 11:23 p.m.•1 views

SUSE CVE-2025-38111

In the Linux kernel, the following vulnerability has been resolved: net/mdiobus: Fix potential out-of-bounds read/write access When using publicly available tools like 'mdio-tools' to read/write data from/to network interface and its PHY via mdiobus, there is no verification of parameters passed ...

7CVSS6.4AI score0.00179EPSS

Exploits0References59

NVD•added 2025/07/03 9:15 a.m.•5 views

CVE-2025-38110

7.1CVSS0.00161EPSS

Exploits0References4

OSV•added 2025/07/03 9:15 a.m.•8 views

DEBIAN-CVE-2025-38110

7.1CVSS5.7AI score0.00161EPSS

Exploits0References1

OSV•added 2025/07/03 9:15 a.m.•4 views

DEBIAN-CVE-2025-38111