CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

32 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•4 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Do not hold the nilock lock when calling truncatesetsize. syzbot reports a hung task during the call to douseraddrfault 1. There is a silent deadlock between the PGlocked bit and the nilock lock. Since the...

5.5CVSS5.7AI score0.00022EPSS

Exploits0References1

RedhatCVE•added 2026/01/26 3:10 p.m.•4 views

CVE-2026-24406

iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Versions 2.3.1.1 and below have a Heap Buffer Overflow vulnerability in CIccTagNamedColor2::SetSize. This occurs when user-controllable input is unsafely incorporated into ICC profi...

8.8CVSS5.8AI score0.00206EPSS

Exploits1References1

NVD•added 2026/01/24 1:15 a.m.•1 views

CVE-2026-24406

8.8CVSS0.00206EPSS

Exploits1References3

CVE•added 2026/01/24 1:2 a.m.•9 views

CVE-2026-24406

The CVE-2026-24406 entry concerns iccDEV, which provides ICC color management profile tooling. A Heap Buffer Overflow exists in CIccTagNamedColor2::SetSize() for versions 2.3.1.1 and earlier, triggered when user-controlled input is unsafely incorporated into ICC profile data or other binary blobs...

8.8CVSS5.6AI score0.00206EPSS

Exploits1References3Affected Software1

Positive Technologies•added 2026/01/24 12:0 a.m.•5 views

PT-2026-4548

8.8CVSS5.6AI score0.00206EPSS

Exploits1References4

CNNVD•added 2026/01/24 12:0 a.m.•2 views

iccDEV security vulnerability

iccDEV is an open-source color configuration code library developed by the International Color Consortium. Versions of iccDEV prior to 2.3.1.1 contained security vulnerabilities. These vulnerabilities stemmed from a heap buffer overflow in the CIccTagNamedColor2::SetSize function, which could lea...

8.8CVSS6.1AI score0.00206EPSS

Exploits1References4

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2023-59813

Malicious code in bioql PyPI...

6.3AI score0.00022EPSS

Exploits0References5

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2022-6964

Malicious code in bioql PyPI...

7.5CVSS8.1AI score0.00064EPSS

Exploits0References6

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2023-59938

Malicious code in bioql PyPI...

6.3AI score0.00009EPSS

Exploits0References4

SUSE CVE•added 2025/09/18 11:40 p.m.•1 views

SUSE CVE-2023-53163

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: don't hold nilock when calling truncatesetsize syzbot is reporting hung task at douseraddrfault 1, for there is a silent deadlock between PGlocked bit and nilock lock. Since filemapupdatepage calls filemapreadfolio afte...

5.5CVSS6.5AI score0.00022EPSS

Exploits0References3

SUSE CVE•added 2025/09/16 11:29 p.m.•1 views

SUSE CVE-2023-53323

In the Linux kernel, the following vulnerability has been resolved: ext2/dax: Fix ext2setsize when len is page aligned PAGEALIGNx macro gives the next highest value which is multiple of pagesize. But if x is already page aligned then it simply returns x. So, if x passed is 0 in daxzerorange...

5.5CVSS6.5AI score0.00009EPSS

Exploits0References15

RedhatCVE•added 2025/09/16 5:54 p.m.•2 views

CVE-2023-53323

7CVSS5.8AI score0.00009EPSS

Exploits0References4