CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

AstraLinux•added 5 days ago•3 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: batman-adv: The unmanaged ELP worker is removed. The ELP worker needs to calculate new metric values for all “reachable” neighbors via an interface. Some of the metric calculation functions require locks, which may need to be...

5.5CVSS6.2AI score0.00191EPSS

AstraLinux•added 5 days ago•3 views

Astra Linux – Vulnerability in Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: IB/mad: Do not call to functions that might sleep while in atomic context. Tracepoints are not allowed to sleep. As a result, the following error is generated due to a call to ibquerypkey in atomic context. WARNING: CPU: 0 PID:...

5.5CVSS5.7AI score0.00143EPSS

EUVD•added 2026/06/09 11:52 a.m.•9 views

EUVD-2026-35406

In the Linux kernel, the following vulnerability has been resolved: KVM: arm64: Reassign nestedmmus array behind mmulock kvm-arch.nestedmmus is walked under kvm-mmulock, including from the MMU notifier path kvmunmapgfnrange - kvmnesteds2unmap, which can run at any time. kvmvcpuinitnested...

5.6AI score0.0013EPSS

CVE•added 2026/06/09 11:48 a.m.•16 views

CVE-2017-20243

CVE-2017-20243 concerns the WordPress Car Park Booking Plugin. The initial report states a time-based SQL injection vulnerability in the plugin (version cited as of 17 Oct 2017) that allows unauthenticated attackers to manipulate database queries via the space_id parameter. By sending crafted GET...

8.8CVSS5.7AI score0.00262EPSS

EUVD•added 2026/06/09 11:48 a.m.•5 views

EUVD-2017-18969

WordPress Car Park Booking Plugin version 13 October 17 contains a time-based SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the spaceid parameter. Attackers can send GET requests to the booking-page endpoint with...

8.8CVSS5.7AI score0.00262EPSS

RedhatCVE•added 2026/06/05 7:39 p.m.•7 views

CVE-2026-7493

The Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin plugin for WordPress is vulnerable to denial of service in all versions up to, and including, 1.6.11.5. This is due to a publicly accessible REST API endpoint /wp-json/ssa/v1/async that calls PHP's sleep function on a...

5.3CVSS5.4AI score0.0035EPSS

RedhatCVE•added 2026/06/05 7:37 p.m.•6 views

CVE-2026-47334

Ubuntu Linux 6.8, 6.17 and 7.0 contain AppArmor SAUCE patches which incorrectly sleep while holding a spinlock in notification handling code. The bug can be triggered by an unprivileged local user and can result in kernel panic or deadlock...

5.5CVSS5.4AI score0.00078EPSS

Tenable Nessus•added 2026/06/03 12:0 a.m.•9 views

Linux Distros Unpatched Vulnerability : CVE-2026-47334

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Ubuntu Linux 6.8, 6.17 and 7.0 contain AppArmor SAUCE patches which incorrectly sleep while holding a spinlock in notification handling code. The bug can be...

5.5CVSS5.9AI score0.00078EPSS

Tenable Nessus•added 2026/06/03 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2026-46041

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - greybus: gb-beagleplay: fix sleep in atomic context in hdlctxframes hdlcappend calls usleeprange to wait for circular buffer space, but it is called with...

5.5CVSS6.2AI score0.00122EPSS

NVD•added 2026/05/28 7:16 p.m.•16 views

CVE-2026-47334

5.5CVSS0.00078EPSS

ATTACKERKB•added 2026/05/28 6:28 p.m.•8 views

CVE-2026-47334

5.5CVSS5.8AI score0.00078EPSS

Exploits0References2Affected Software1

CVE•added 2026/05/28 6:28 p.m.•33 views

CVE-2026-47334

The CVE-2026-47334 entry affects Ubuntu Linux versions 6.8, 6.17 and 7.0 where AppArmor SAUCE patches sleep while holding a spinlock in notification handling code. The underlying issue is a spinlock misuse in the notification path triggered by an unprivileged local user, which can lead to kernel ...

5.5CVSS5.8AI score0.00078EPSS

Exploits0References1Affected Software1

SUSE CVE•added 2026/05/28 3:53 a.m.•8 views

SUSE CVE-2026-46041

In the Linux kernel, the following vulnerability has been resolved: greybus: gb-beagleplay: fix sleep in atomic context in hdlctxframes hdlcappend calls usleeprange to wait for circular buffer space, but it is called with txproducerlock a spinlock held via hdlctxframes -...

5.5CVSS5.9AI score0.00122EPSS

CNNVD•added 2026/05/28 12:0 a.m.•7 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the automatic dimming code in the HID applet b-kbd calling backlightdevicesetbrightness within...

5.9AI score0.00128EPSS