CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

107 matches found

RedhatCVE•added 2026/06/11 2:59 a.m.•7 views

CVE-2026-45328

ESF-IDF is the Espressif Internet of Things IOT Development Framework. In versions 5.5.4 and 6.0, the esptee component exposes secure-service wrappers in espsecureservices.c and espsecureservicesiram.c that bridge calls from the user application i.e. the REE to TEE-protected hardware peripherals...

9.3CVSS5.3AI score0.00126EPSS

Exploits0References1

NVD•added 2026/06/10 2:16 a.m.•10 views

CVE-2026-45328

9.3CVSS0.00126EPSS

Exploits0References7

CVE•added 2026/06/10 12:33 a.m.•24 views

CVE-2026-45328

The CVE concerns ESF-IDF’s ESP-IDF esp_tee component. In versions 5.5.4 and 6.0, the secure-service wrappers in esp_secure_services.c and esp_secure_services_iram.c bridge calls from the REE to TEE-protected peripherals (AES, SHA, ECC, HMAC, SPI, MMU, WDT) and security features (attestation, OTA,...

9.3CVSS5.3AI score0.00126EPSS

Exploits0References7Affected Software1

EUVD•added 2026/06/10 12:33 a.m.•9 views

EUVD-2026-35916

9.3CVSS5.3AI score0.00126EPSS

Exploits0References7

Vulnrichment•added 2026/06/10 12:33 a.m.•7 views

CVE-2026-45328 ESF-IDF: Out-of-Bounds Write in ESP-TEE Secure Service Wrappers

9.3CVSS5.3AI score0.00126EPSS

Exploits0References7

Positive Technologies•added 2026/06/10 12:0 a.m.•12 views

PT-2026-48350

ESF-IDF is the Espressif Internet of Things IOT Development Framework. In versions 5.5.4 and 6.0, the esp tee component exposes secure-service wrappers in esp secure services.c and esp secure services iram.c that bridge calls from the user application i.e. the REE to TEE-protected hardware...

9.3CVSS5.3AI score0.00126EPSS

Exploits0References8

OSV•added 2026/06/05 6:24 p.m.•5 views

OPENSUSE-SU-2026:20912-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 16.0 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2023-20585: iommu/amd: Use maximum Event log buffer size when SNP is enabled on Family 0x19 bsc1243603. - CVE-2026-3150: bcache: fix cacheddev.sbbio use-after-free and...

9.8CVSS6.9AI score0.005EPSS

Exploits5References83

SUSE CVE•added 2026/04/25 1:39 a.m.•4 views

SUSE CVE-2026-31568

In the Linux kernel, the following vulnerability has been resolved: s390/mm: Add missing secure storage access fixups for donated memory There are special cases where secure storage access exceptions happen in a kernel context for pages that don't have the PGarch1 bit set. That bit is set for...

5.5CVSS5.5AI score0.00124EPSS

Exploits0References7

RedhatCVE•added 2026/04/24 6:3 p.m.•2 views

CVE-2026-31568

A flaw was found in the Linux kernel. This vulnerability, located in the s390/mm component, is due to missing secure storage access fixups for memory donated to the Ultravisor. When secure storage access exceptions occur for such memory, the kernel can enter an unresolvable loop. This can lead to...

7.1CVSS5.3AI score0.00124EPSS

Exploits0References4

OSV•added 2026/04/24 3:16 p.m.•4 views

DEBIAN-CVE-2026-31568

7.1CVSS5.3AI score0.00124EPSS

Exploits0References1

NVD•added 2026/04/24 3:16 p.m.•5 views

CVE-2026-31568

7.1CVSS0.00124EPSS

Exploits0References3

UbuntuCve•added 2026/04/24 3:16 p.m.•3 views

CVE-2026-31568

7.1CVSS5.4AI score0.00124EPSS

Exploits0References5

EUVD•added 2026/04/24 2:35 p.m.•2 views

EUVD-2026-25461

5.4AI score0.00124EPSS

Exploits0References3

Debian CVE•added 2026/04/24 2:35 p.m.•3 views

CVE-2026-31568

7.1CVSS5.2AI score0.00124EPSS

Exploits0

Cvelist•added 2026/04/24 2:35 p.m.•26 views

CVE-2026-31568 s390/mm: Add missing secure storage access fixups for donated memory

0.00124EPSS

Exploits0References3

CVE•added 2026/04/24 2:35 p.m.•18 views

CVE-2026-31568

Summary: CVE-2026-31568 affects the Linux kernel s390/mm, where donated memory to the Ultravisor lacked PG_arch_1-safe export handling. The root cause is that secure storage access exceptions can occur for such pages, previously mid-flight exporting the page via arch_make_folio_accessible() would...

7.1CVSS5.4AI score0.00124EPSS

Exploits0References3Affected Software1

Positive Technologies•added 2026/04/24 12:0 a.m.•5 views

PT-2026-34920

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the s390 architecture memory management where secure storage access exceptions occur in a kernel context for pages lacking the PG arch 1 bit. This bit is absent on...

7.1CVSS5.4AI score0.00124EPSS

Exploits0References99

Tenable Nessus•added 2026/04/24 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2026-31568

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - s390/mm: Add missing secure storage access fixups for donated memory There are special cases where secure storage access exceptions happen in a kernel context f...

7.1CVSS5.8AI score0.00124EPSS

Exploits0References4

CNNVD•added 2026/04/13 12:0 a.m.•3 views

Crypt::SecretBuffer 安全漏洞

Crypt::SecretBuffer is a cryptographic buffer module developed by NERDVANA’s individual developers, designed for secure storage and memory protection of sensitive data. Versions of Crypt::SecretBuffer prior to 0.019 contained security vulnerabilities, which were due to susceptibility to timing...

7.5CVSS5.9AI score0.00396EPSS

Exploits0References2

RedhatCVE•added 2026/01/09 10:5 a.m.•9 views

CVE-2019-20590

An issue was discovered on Samsung mobile devices with O8.x Qualcomm chipsets software. There is an integer underflow in the Secure Storage Trustlet. The Samsung ID is SVE-2019-13952 July 2019...

9.8CVSS7AI score0.00443EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by