CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15 matches found

OSV•added 2025/10/01 12:15 p.m.•2 views

UBUNTU-CVE-2023-53467

In the Linux kernel, the following vulnerability has been resolved: wifi: rtw89: fix potential leak in rtw89appendprobereqie Do kfreeskbnew before goto out to prevent potential leak...

5.5CVSS5.7AI score0.00013EPSS

Exploits0References6

ATTACKERKB•added 2025/05/06 9:15 a.m.•0 views

CVE-2024-45579

Memory corruption may occur when invoking IOCTL calls from userspace to the camera kernel driver to dump request information, due to a missing memory requirement check...

7.8CVSS5.8AI score0.00068EPSS

Exploits0References2

CNNVD•added 2025/05/06 12:0 a.m.•1 views

Qualcomm Chipsets 输入验证错误漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. An input validation error vulnerability exists in Qualcomm Chipsets, which originates from a Camera kernel driver memory corruption during a user-space call to IOCTL to dump request information...

7.8CVSS6.8AI score0.00068EPSS

Exploits0References1

Hacker One•added 2025/03/18 3:27 p.m.•39 views

AWS VDP: Amazon Kendra Intelligent Ranking Service Reporting "AWS Internal" for CloudTrail Events Generated from FIPS Endpoints

The AWS Kendra Intelligent Ranking service was found to incorrectly report the user-agent and network information as "AWS Internal" for four API endpoints that are FIPS endpoints. This issue can lead to the obscuring of request information that may be used to track down an adversary...

6.9AI score

Exploits0

Prion•added 2023/10/26 2:15 a.m.•16 views

Design/Logic Flaw

An issue was discovered by Elastic whereby sensitive information is recorded in Kibana logs in the event of an error. The issue impacts only Kibana version 8.10.0 when logging in the JSON layout or when the pattern layout is configured to log the %meta pattern. Elastic has released Kibana 8.10.1...

5CVSS7.5AI score0.00395EPSS

Exploits0References2Affected Software1

OSV•added 2022/05/17 2:44 a.m.•33 views

GHSA-3P5R-7CW3-2M67 Exposure of Sensitive Information to an Unauthorized Actor in Apache Tomcat

java/org/apache/catalina/core/AsyncContextImpl.java in Apache Tomcat 7.x before 7.0.40 does not properly handle the throwing of a RuntimeException in an AsyncListener in an application, which allows context-dependent attackers to obtain sensitive request information intended for other application...

2.6CVSS5.5AI score0.08446EPSS

Exploits2References13

OpenVAS•added 2021/04/19 12:0 a.m.•31 views

SUSE: Security Advisory (SUSE-SU-2021:1009-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.1AI score0.93464EPSS

Exploits15References6

Akamai Blog•added 2018/04/25 7:49 p.m.•36 views

Who is doing what on your network?

Over the past few months, while talking to customers, the topic of Zero Trust Architecture keeps coming up. Seemingly everyone is thinking of implementing the model - which we fully encourage! One of the core components of the principle is the ability to inspect and log all network and system...

7.2AI score

Exploits0

OSV•added 2013/07/01 7:8 p.m.•5 views

MGASA-2013-0191 Updated tomcat7 packages fix CVE-2013-2071

2.6CVSS5.7AI score0.08446EPSS

Exploits2References4