CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedHat Linux•added 2022/11/15 11:55 a.m.•0 views

kernel: RDMA/irdma: Fix sleep from invalid context BUG

In the Linux kernel, the following vulnerability has been resolved: RDMA/irdma: Fix sleep from invalid context BUG Taking the qosmutex to process RoCEv2 QP's on netdev events causes a kernel splat. Fix this by removing the handling for RoCEv2 in irdmacmteardownconnections that uses the mutex. Thi...

5.5CVSS6.3AI score0.00111EPSS

OSV•added 2022/11/14 7:23 p.m.•8 views

GSD-2022-1007294 mwifiex: fix sleep in atomic context bugs caused by dev_coredumpv

mwifiex: fix sleep in atomic context bugs caused by devcoredumpv This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.137 by commit...

OSV•added 2022/11/14 7:6 p.m.•10 views

GSD-2022-1007102 mwifiex: fix sleep in atomic context bugs caused by dev_coredumpv

OSV•added 2022/11/14 6:45 p.m.•9 views

GSD-2022-1006853 mwifiex: fix sleep in atomic context bugs caused by dev_coredumpv

Positive Technologies•added 2022/11/14 12:0 a.m.•2 views

PT-2022-35549 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.137 Description: The issue is related to sleep in atomic context bugs caused by dev coredump. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kernel versions...

7.2AI score

RedHat Linux•added 2022/11/08 9:32 a.m.•2 views

kernel: scsi: qla2xxx: Fix scheduling while atomic

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix scheduling while atomic The driver makes a call into midlayer fcremoteportdelete which can put the thread to sleep. The thread that originates the call is in interrupt context. The combination of the two trigge...

5.5CVSS6.3AI score0.00016EPSS

RedHat Linux•added 2022/11/08 9:32 a.m.•1 views

kernel: PM: domains: Fix sleep-in-atomic bug caused by genpd_debug_remove()

5.5CVSS6.6AI score0.00024EPSS

RedHat Linux•added 2022/11/08 9:32 a.m.•1 views

kernel: RDMA/irdma: Fix sleep from invalid context BUG

5.5CVSS6.3AI score0.00111EPSS

OSV•added 2022/10/31 9:15 p.m.•2 views

CVE-2022-3059

The application was vulnerable to multiple instances of SQL injection authenticated and unauthenticated through a vulnerable parameter. Due to the stacked query support, complex SQL commands could be crafted and injected into the vulnerable parameter and using a sleep based inferential SQL...

7.5CVSS5.8AI score0.00325EPSS

Prion•added 2022/10/31 9:15 p.m.•18 views

Sql injection

5CVSS7.9AI score0.00325EPSS

Exploits0References1Affected Software1

Positive Technologies•added 2022/10/31 12:0 a.m.•2 views

PT-2022-20193 · Red Os · Red Os

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: The issue allows for SQL injection, both authenticated and unauthenticated, through a vulnerable parameter. This parameter can be used to craft and inject complex SQL commands due t...

9.8CVSS8AI score0.006EPSS

Exploits1References3

Citrix•added 2022/10/13 12:0 a.m.•4 views

AlwaysOn VPN session is not re-established after sleep mode

When windows clients come out of Sleep mode and sometimes on boot, the Gateway VPN client is not connecting to the Gateway. This can usually be resolved by disabling/enabling the WiFi connection or rebooting the client machine. The Setup has "Always On " VPN mode and Machine-tunnel...

7.1AI score

Openbugbounty•added 2022/10/10 9:26 a.m.•13 views

sleep-wellness.org Cross Site Scripting vulnerability OBB-2988333

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Positive Technologies•added 2022/10/09 12:0 a.m.•2 views

PT-2022-34806 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.71 Description: The issue is related to the drm/gma500 component, where sleeping function calls from invalid contexts result in errors. The actual impact and potential for attacks have not been confirmed...

7.2AI score

Metasploit•added 2022/09/28 7:51 p.m.•213 views

Mobile Mouse RCE

This module utilizes the Mobile Mouse Server by RPA Technologies, Inc protocol to deploy a payload and run it from the server. This module will only deploy a payload if the server is set without a password default. Tested against 3.6.0.4, current at the time of module writing Module Options msf u...

9.8CVSS7.1AI score0.66495EPSS

Exploits2

OSV•added 2022/09/17 12:33 a.m.•5 views

GSD-2022-1005858 mwifiex: fix sleep in atomic context bugs caused by dev_coredumpv

OSV•added 2022/09/17 12:11 a.m.•13 views

GSD-2022-1005604 mwifiex: fix sleep in atomic context bugs caused by dev_coredumpv

Positive Technologies•added 2022/09/17 12:0 a.m.•1 views

PT-2022-34034 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.138 Description: The issue is related to the Linux Kernel, specifically concerning the ipq8074 component. It involves a potential security vulnerability where the gcc sleep clk src is not properly disabled...

Positive Technologies•added 2022/09/17 12:0 a.m.•2 views

PT-2022-34365 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to 4.19.256 Description: The issue is related to the Linux Kernel, specifically concerning the ipq8074 component. It involves a potential security vulnerability where the gcc sleep clk src is not properly disabled...