CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1350 matches found

NVD•added 2025/12/08 2:15 a.m.•5 views

CVE-2023-53769

In the Linux kernel, the following vulnerability has been resolved: virt/coco/sev-guest: Double-buffer messages The encryption algorithms read and write directly to shared unencrypted memory, which may leak information as well as permit the host to tamper with the message integrity. Instead, copy...

0.00104EPSS

Exploits0References4

NVD•added 2025/12/08 2:15 a.m.•5 views

CVE-2022-50628

In the Linux kernel, the following vulnerability has been resolved: drm/gud: Fix UBSAN warning UBSAN complains about invalid value for bool: 101.165172 drm Initialized gud 1.0.0 20200422 for 2-3.2:1.0 on minor 1 101.213360 gud 2-3.2:1.0: drm fb1: guddrmfb frame buffer device 101.213426 usbcore:...

0.00166EPSS

Exploits0References3

Cvelist•added 2025/12/08 1:19 a.m.•23 views

CVE-2023-53769 virt/coco/sev-guest: Double-buffer messages

0.00104EPSS

Exploits0References4

OSV•added 2025/12/08 1:19 a.m.•5 views

CVE-2023-53769 virt/coco/sev-guest: Double-buffer messages

6.2AI score0.00104EPSS

Exploits0References7

Positive Technologies•added 2025/12/08 12:0 a.m.•14 views

PT-2025-49499

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The encryption algorithms within the kernel’s virt/coco/sev-guest component directly read from and write to shared unencrypted memory. This practice could potentially expose information...

7.8CVSS6.8AI score0.00465EPSS

Exploits2References844

CNNVD•added 2025/12/08 12:0 a.m.•2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from direct manipulation of shared memory, which could lead to information disclosure or integrity corruption...

5.6AI score0.00104EPSS

Exploits0References6

RedhatCVE•added 2025/12/07 9:55 p.m.•5 views

CVE-2025-40276

In the Linux kernel, the following vulnerability has been resolved: drm/panthor: Flush shmem writes before mapping buffers CPU-uncached The shmem layer zeroes out the new pages using cached mappings, and if we don't CPU-flush we might leave dirty cachelines behind, leading to potential data leaks...

6AI score0.0017EPSS

Exploits0References4

Cvelist•added 2025/12/06 9:50 p.m.•15 views

CVE-2025-40276 drm/panthor: Flush shmem writes before mapping buffers CPU-uncached

0.0017EPSS

Exploits0References3

CNNVD•added 2025/12/06 12:0 a.m.•4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from drm panthor not properly flushing shmem writes, which could lead to a data leak...

6AI score0.0017EPSS

Exploits0References4

Positive Technologies•added 2025/12/06 12:0 a.m.•6 views

PT-2025-49377

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the drm/panthor subsystem related to shared memory shmem handling. Specifically, the shmem layer zeroes out new pages using cached mappings. Witho...

5.6AI score0.00544EPSS

Exploits3References393

OSV•added 2025/12/01 12:0 a.m.•4 views

PUB-A-441512848

In trustyffamemreclaim of shared-mem-smcall.c, there is a possible memory corruption due to uninitialized data. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

7.8CVSS6.9AI score0.00068EPSS

Exploits0References1

Tenable Nessus•added 2025/11/13 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2025-64345

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Wasmtime is a runtime for WebAssembly. Prior to version 38.0.4, 37.0.3, 36.0.3, and 24.0.5, Wasmtime's Rust embedder API contains an unsound interaction where a...

1.8CVSS5.5AI score0.00094EPSS

Exploits0References3

OSV•added 2025/11/12 10:15 p.m.•2 views

DEBIAN-CVE-2025-64345

Wasmtime is a runtime for WebAssembly. Prior to version 38.0.4, 37.0.3, 36.0.3, and 24.0.5, Wasmtime's Rust embedder API contains an unsound interaction where a WebAssembly shared linear memory could be viewed as a type which provides safe access to the host Rust to the contents of the linear...

1.8CVSS5.4AI score0.00094EPSS

Exploits0References1

NVD•added 2025/11/12 10:15 p.m.•5 views

CVE-2025-64345

1.8CVSS0.00094EPSS

Exploits0References6

OSV•added 2025/11/12 10:15 p.m.•1 views

UBUNTU-CVE-2025-64345

1.8CVSS5.8AI score0.00094EPSS

Exploits0References8

OSV•added 2025/11/12 9:36 p.m.•4 views

GHSA-HC7M-R6V8-HG9Q Wasmtime provides unsound API access to a WebAssembly shared linear memory

Impact Wasmtime's Rust embedder API contains an unsound interaction where a WebAssembly shared linear memory could be viewed as a type which provides safe access to the host Rust to the contents of the linear memory. This is not sound for shared linear memories, which could be modified in paralle...

1.8CVSS6.5AI score0.00094EPSS

Exploits0References9

Github Security Blog•added 2025/11/12 9:36 p.m.•9 views

Wasmtime provides unsound API access to a WebAssembly shared linear memory

1.8CVSS6.6AI score0.00094EPSS

Exploits0References9Affected Software1

CVE•added 2025/11/12 9:25 p.m.•19 views

CVE-2025-64345

CVE-2025-64345 affects Wasmtime (WebAssembly runtime). The Rust embedder API allows an unsound view of shared WebAssembly linear memory as a safe host-access type, enabling potential data races when memories are shared across threads. Fixed in patch releases for all supported versions (notably 24...

1.8CVSS6.1AI score0.00094EPSS

Exploits0References6