CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: DR, prevent potential error pointer dereference The drdomainaddvportcap function generally returns NULL on error but sometimes we want it to return ERRPTR-EBUSY so the caller can retry. The problem here is that "ret" ca...

5.5CVSS6.1AI score0.00214EPSS

Exploits0References8

Debian CVE•added 2024/12/27 12:0 a.m.•7 views

CVE-2024-56520

An issue was discovered in tc-lib-pdf-font before 2.6.4, as used in TCPDF before 6.8.0 and other products. Fonts are mishandled, e.g., FontBBox for Type 1 and TrueType fonts is misparsed...

7.3CVSS5.2AI score0.00519EPSS

Exploits0

OSV•added 2024/12/25 5:57 a.m.•1 views

BELL-CVE-2024-53158

Bulletin has no description...

5.5CVSS7.2AI score0.00257EPSS

Exploits0References1

OSV•added 2024/12/20 11:8 p.m.•7 views

CGA-59MJ-P5QC-FPGV

Bulletin has no description...

5.3CVSS6.2AI score0.00842EPSS

Exploits0

OSV•added 2024/12/20 8:8 p.m.•7 views

CGA-2489-J9R3-XX48

Bulletin has no description...

5.3CVSS6.2AI score0.00842EPSS

Exploits0

OSV•added 2024/12/20 10:8 a.m.•7 views

CGA-PJQ3-4GJH-F2VX

Bulletin has no description...

5.3CVSS6.2AI score0.00842EPSS

Exploits0

OSV•added 2024/12/20 5:57 a.m.•1 views

BELL-CVE-2024-53580

Bulletin has no description...

7.5CVSS7.4AI score0.00893EPSS

Exploits1References1

Positive Technologies•added 2024/12/11 12:0 a.m.•2 views

PT-2024-10372

Name of the Vulnerable Software and Affected Versions GStreamer versions prior to 1.24.10 Description The issue is related to an out-of-bounds OOB read in the qtdemux parse svq3 stsd data function within qtdemux.c. Specifically, in the FOURCC SMI case, seqh size is read from the input file withou...

9.1CVSS6.8AI score0.01139EPSS

Exploits0References191

Github Security Blog•added 2024/12/09 3:30 a.m.•23 views

Predictable results in nanoid generation when given non-integer values

When nanoid is called with a fractional value, there were a number of undesirable effects: 1. in browser and non-secure, the code infinite loops on while size-- 2. in node, the value of poolOffset becomes fractional, causing calls to nanoid to return zeroes until the pool is next filled 3. if the...

4.3CVSS4.8AI score0.00666EPSS

Exploits0References7Affected Software1

Citrix•added 2024/12/03 12:0 a.m.•5 views

ADC: Unable to delete backup files from GUI

Customer sees 50 backup files on NetScaler GUI whereas same files are not visible on /var/nssysbackup directory. Whenever trying to delete the backup files from GUI it shows "ERROR: Backup file does not exist."...

7.1AI score

Exploits0

Citrix•added 2024/11/26 12:0 a.m.•4 views

ADC: Unable to initialize FIPS

After going through the steps to initialize the FIPS module, after the last reboot, the FIPS still shows as not configured...

7.1AI score

Exploits0

NVD•added 2024/11/22 4:15 p.m.•21 views

CVE-2024-51072

An issue in KIA Seltos vehicle instrument cluster with software and hardware v1.0 allows attackers to cause a Denial of Service DoS via ECU reset UDS service. NOTE: this is disputed by the Supplier because the findings came from a potentially unrealistic test environment an isolated ECU part that...

5.3CVSS0.002EPSS

Exploits0References3

OSV•added 2024/11/19 5:59 a.m.•3 views

BELL-CVE-2023-39180

Bulletin has no description...

7.5CVSS4AI score0.01381EPSS

Exploits0References1

OSV•added 2024/11/12 6:0 a.m.•1 views

BELL-CVE-2024-50262

Bulletin has no description...

7.8CVSS8AI score0.00269EPSS

Exploits0References1