CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1035 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в u-boot

In Das U-Boot through 2022.07-rc5, an integer signedness error and resulting stack-based buffer overflow occur in the “i2c md” command, which allows for the corruption of the return address pointer of the doi2cmd function...

9.8CVSS7.6AI score0.01668EPSS

Exploits1References2

AstraLinux•added 2026/05/03 11:59 p.m.•4 views

Astra Linux – Vulnerability in Linux 5.15

A issue was discovered in the net/ceph/messengerv2.c file within the Linux kernel before version 6.4.5. There is an integer signedness error, which leads to a buffer overflow and remote code execution via the HELLO command or one of the AUTH frames. This occurs due to an untrusted length value...

8.8CVSS7.6AI score0.54577EPSS

Exploits1References2

OSV•added 2026/04/21 4:16 p.m.•4 views

DEBIAN-CVE-2017-20230

Storable versions before 3.05 for Perl has a stack overflow. The retrievehook function stored the length of the class name into a signed integer but in read operations treated the length as unsigned. This allowed an attacker to craft data that could trigger the overflow...

10CVSS5.5AI score0.00641EPSS

Exploits0References1

SUSE CVE•added 2026/04/17 12:31 p.m.•5 views

SUSE CVE-2003-0972

Integer signedness error in ansi.c for GNU screen 4.0.1 and earlier, and 3.9.15 and earlier, allows local users to execute arbitrary code via a large number of ";" semicolon characters in escape sequences, which leads to a buffer overflow...

10CVSS6.5AI score0.03401EPSS

Exploits0References3

VulnCheck KEV•added 2026/02/09 12:0 a.m.•11 views

VulnCheck KEV: CVE-2010-3437

Integer signedness error in the pktfinddevfromminor function in drivers/block/pktcdvd.c in the Linux kernel before 2.6.36-rc6 allows local users to obtain sensitive information from kernel memory or cause a denial of service invalid pointer dereference and system crash via a crafted index value i...

6.6CVSS7.2AI score0.02416EPSS

In wildExploits7References2

Tenable Nessus•added 2026/01/15 12:0 a.m.•2 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002514)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002514 advisory. Integer signedness error in the ozhcdgetdesccnf function in drivers/staging/ozwpan/ozhcd.c in the OZWPAN driver in the Linux kernel through 4.0.5 allows remote...

9CVSS8.4AI score0.07123EPSS

Exploits0References10

Tenable Nessus•added 2026/01/14 12:0 a.m.•3 views

MiracleLinux 3 : libpng-1.2.10-16.0.1.AXS3 (AXSA:2012-447:02)

The remote MiracleLinux 3 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2012-447:02 advisory. The libpng package contains a library of functions for creating and manipulating PNG Portable Network Graphics image format files. PNG is a bit-mapped graphic...

8.8CVSS8.2AI score0.73164EPSS

Exploits1References2

RedhatCVE•added 2026/01/09 10:6 a.m.•5 views

CVE-2019-20561

An issue was discovered on Samsung mobile devices with N7.x, O8.x, and P9.0 Exynos chipsets software. The bootloader has an integer signedness error. The Samsung ID is SVE-2019-15230 October 2019...

9.8CVSS7.2AI score0.00535EPSS

Exploits0References1

RedhatCVE•added 2026/01/07 9:49 a.m.•9 views

CVE-2022-27882

slaacd in OpenBSD 6.9 and 7.0 before 2022-03-22 has an integer signedness error and resultant heap-based buffer overflow triggerable by a crafted IPv6 router advertisement. NOTE: privilege separation and pledge can prevent exploitation...

7.5CVSS7.5AI score0.01877EPSS

Exploits1References1

EUVD•added 2025/11/24 3:30 p.m.•4 views

EUVD-2025-198714

Integer signedness error in tlsverifycallback in src/coapopenssl.c in OISM libcoap 4.3.5 allows remote attackers to cause a denial of service via a crafted TLS certificate that causes i2dX509 to return -1 and be misused as a malloc size parameter...

7.5CVSS6.2AI score0.00219EPSS

Exploits0References3