CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

AstraLinux•added 6 days ago•4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: can: mcan: mcanclassallocatedev – The spin lock in struct mcanclassdev is not being initialized. This causes issues with spinlocks, as seen in complaints from the kernel, such as when trying to send CAN frames using cansend from...

5.5CVSS6.4AI score0.00146EPSS

AstraLinux•added 6 days ago•9 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: Drivers: tty: serial: Fixed a deadlock in sa1100settermios There is a deadlock in sa1100settermios, as shown below: Thread 1 | Thread 2 | sa1100enablems sa1100settermios | modtimer spinlockirqsave //1 | Wait for a while ... |...

5.5CVSS5.9AI score0.00186EPSS

AstraLinux•added 6 days ago•6 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Fixed a hard lockup issue when reading the rxmonitor from debugfs. During I/O operations and simultaneous reads of /sys/kernel/debug/lpfc/fnX/rxmonitor, a hard lockup similar to the call trace below may occur. The...

5.3AI score0.00206EPSS

AstraLinux•added 6 days ago•4 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, and Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: media: rainshadow-cec: The TOCTOU race condition in raininterrupt has been fixed. In the interrupt handler raininterrupt, the check for buffer fullness on rain-buflen is performed before acquiring rain-buflock. This creates a...

4.7CVSS7AI score0.00125EPSS

AstraLinux•added 6 days ago•5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: net: ioam6: fix OOB and missing lock issues When trace-type.bit6 is set: if trace-type.bit6 ... queue = skbgettxqueuedev, skb; qdisc = rcudereferencequeue-qdisc; This code can lead to an out-of-bounds access of the dev-tx array...

9.1CVSS5.8AI score0.00442EPSS

AstraLinux•added 6 days ago•7 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: smc91x: fixed a broken irq-context in PREEMPTRT When smc91x.c is built with PREEMPTRT, the following error occurs in FVPRevC: 13.055000 smc91x LNRO0003:00 eth0: link up, 10Mbps, half-duplex, lpa 0x0000 13.062137 BUG: The workqueu...

5.5CVSS5.3AI score0.00114EPSS

OSV•added 2026/06/08 5:16 p.m.•4 views

UBUNTU-CVE-2026-46298

In the Linux kernel, the following vulnerability has been resolved: pseries/papr-hvpipe: Fix race with interrupt handler While executing -ioctl handler or -release handler, if an interrupt fires on the same cpu, then we can enter into a deadlock. This patch fixes both these handlers to take...

5.3AI score0.00145EPSS

Exploits0References5

CVE•added 2026/06/08 3:46 p.m.•21 views

CVE-2026-46298

CVE-2026-46298 : In the Linux kernel, a race during ioctl or release handling on pseries/papr-hvpipe could deadlock if an interrupt fires on the same CPU. The fix makes the affected lock usage use spin_lock_irqsave/restore to prevent the deadlock. The issue is resolved by the patch in the cited s...

5.5AI score0.00145EPSS

Positive Technologies•added 2026/06/08 12:0 a.m.•13 views

PT-2026-47370

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified openSUSE Tumbleweed versions prior to kernel-devel-7.0.12-1.1 Description A race condition exists in the pseries/papr-hvpipe component. A deadlock can occur if an interrupt fires on the same CPU whi...

9.1CVSS5.4AI score0.00457EPSS

Exploits1References61

RedhatCVE•added 2026/06/05 7:41 p.m.•5 views

CVE-2025-58707

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Axiomthemes Spin allows PHP Local File Inclusion. This issue affects Spin: from n/a through 1.8...

8.1CVSS5.5AI score0.00337EPSS

NVD•added 2026/06/02 2:16 p.m.•13 views

CVE-2025-58707

8.1CVSS0.00337EPSS

Cvelist•added 2026/06/02 1:48 p.m.•37 views

CVE-2025-58707 WordPress Spin theme <= 1.8 - Local File Inclusion vulnerability

8.1CVSS0.00337EPSS

Vulnrichment•added 2026/06/02 1:48 p.m.•7 views

CVE-2025-58707 WordPress Spin theme <= 1.8 - Local File Inclusion vulnerability

CVE•added 2026/06/02 1:48 p.m.•14 views

CVE-2025-58707

The CVE-2025-58707 issue is a Local File Inclusion vulnerability in the WordPress Spin theme (Spin) versions up to 1.8. It arises from improper handling of filenames for include/require statements in a PHP program, enabling PHP LFI. Affected product: Axiomthemes Spin (WordPress Spin theme

EUVD•added 2026/06/02 1:48 p.m.•11 views

EUVD-2025-210039

ATTACKERKB•added 2026/06/02 1:48 p.m.•9 views

CVE-2025-58707

Positive Technologies•added 2026/06/02 12:0 a.m.•13 views

PT-2026-45740

Name of the Vulnerable Software and Affected Versions Axiomthemes Spin versions prior to 1.8 Description Improper control of filename for include/require statements in the PHP program allows for Local File Inclusion. This occurs when the application fails to properly validate the file path used i...

CNNVD•added 2026/06/02 12:0 a.m.•5 views

Exploits0References5

WordPress plugin Spin 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...

8.1CVSS5.3AI score0.00337EPSS

CNNVD•added 2026/05/28 12:0 a.m.•8 views

Canonical Ubuntu Linux 安全漏洞

Canonical Ubuntu Linux is a Linux operating system developed by the British company Canonical. The Canonical Ubuntu Linux 6.8, 6.17, and 7.0 versions contain security vulnerabilities. These vulnerabilities stem from incorrect sleep behavior when holding spin locks, which may lead to kernel panic ...

5.5CVSS5.8AI score0.00078EPSS