CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

72393 matches found

CVE•added 2026/05/27 12:57 p.m.•13 views

CVE-2026-46063

The CVE-2026-46063 issue affects the Linux kernel (x86/shstk) where a deadlock could occur during sigreturn while popping the shadow stack frame. The root cause was reading the shadow stack with the mmap lock held; a page fault could trigger a recursive mmap lock acquisition, risking deadlock if ...

5.8AI score0.00024EPSS

Exploits0References5

Cvelist•added 2026/05/27 12:57 p.m.•30 views

CVE-2026-46063 x86/shstk: Prevent deadlock during shstk sigreturn

In the Linux kernel, the following vulnerability has been resolved: x86/shstk: Prevent deadlock during shstk sigreturn During sigreturn the shadow stack signal frame is popped. The kernel does this by reading the shadow stack using normal read accesses. When it can't assume the memory is shadow...

0.00024EPSS

Exploits0References5

SUSE CVE•added 2026/05/27 12:57 p.m.•7 views

SUSE CVE-2026-49014

In GDAL 3.1.0 through 3.13.0, scanForGeometryContainers in the netCDF driver allows code execution via a stack-based buffer overflow. It reads a geometry attribute into a fixed-size stack buffer without validating the attribute length. The attacker embeds the exploit as an oversized geometry...

7.4CVSS6.7AI score0.00014EPSS

Exploits0References3

CVE•added 2026/05/27 12:18 p.m.•11 views

CVE-2026-45957

CVE-2026-45957 affects the Linux kernel where removing recursion-protection from __rcu_read_unlock() can cause a deadloop when raise_softirq_irqoff() is invoked with ftrace enabled during rcu_read_unlock_special(). The issue, observed as a deadlock trace in trace.c, was fixed by commits that refo...

5.8AI score0.00024EPSS

Exploits0References5

Cvelist•added 2026/05/27 12:16 p.m.•34 views

CVE-2026-45876 arm64/gcs: Fix error handling in arch_set_shadow_stack_status()

In the Linux kernel, the following vulnerability has been resolved: arm64/gcs: Fix error handling in archsetshadowstackstatus allocgcs returns an error-encoded pointer on failure, which comes from dommap, not NULL. The current NULL check fails to detect errors, which could lead to using an invali...

0.00022EPSS

Exploits0References3

CVE•added 2026/05/27 12:16 p.m.•11 views

CVE-2026-45876

In the Linux kernel, arm64/gcs fixes error handling in arch_set_shadow_stack_status. alloc_gcs() now detects error-encoded pointers returned by do_mmap() (not NULL) via IS_ERR_VALUE(), aligning with the check in gcs_alloc_thread_stack. The previous NULL-based check could fail to detect errors, ri...

5.8AI score0.00022EPSS

Exploits0References3

Debian CVE•added 2026/05/27 12:16 p.m.•7 views

CVE-2026-45876

5.7AI score0.00022EPSS

Exploits0

Cvelist•added 2026/05/27 12:14 p.m.•31 views

CVE-2025-71306 ima: Fix stack-out-of-bounds in is_bprm_creds_for_exec()

In the Linux kernel, the following vulnerability has been resolved: ima: Fix stack-out-of-bounds in isbprmcredsforexec KASAN reported a stack-out-of-bounds access in imaappraisemeasurement from isbprmcredsforexec: BUG: KASAN: stack-out-of-bounds in imaappraisemeasurement+0x12dc/0x16a0 Read of siz...

0.00024EPSS

Exploits0References2

CVE•added 2026/05/27 12:14 p.m.•9 views

CVE-2025-71306

CVE-2025-71306 documents a stack-out-of-bounds access in the Linux kernel related to ima_appraise_measurement invoked from is_bprm_creds_for_exec. The bug arises from miscalculated offsets when using container_of on the file pointer, resulting in an out-of-bounds read on the stack. The fix adds a...

5.8AI score0.00024EPSS

Exploits0References2

Debian CVE•added 2026/05/27 12:14 p.m.•5 views

CVE-2025-71306

5.7AI score0.00024EPSS

Exploits0

SUSE CVE•added 2026/05/27 6:14 a.m.•3 views

SUSE CVE-2019-9719

A stack-based buffer overflow in the subtitle decoder in Libav 12.3 allows attackers to corrupt the stack via a crafted video file in Matroska format, because srttoass in libavcodec/srtdec.c misuses snprintf. NOTE: Third parties dispute that this is a vulnerability because “no evidence of a...

8.8CVSS7.7AI score0.00516EPSS

Exploits1References3

SUSE CVE•added 2026/05/27 4:13 a.m.•5 views

SUSE CVE-2023-43632

As noted in the “VTPM.md” file in the eve documentation, “VTPM is a server listening on port 8877 in EVE, exposing limited functionality of the TPM to the clients. VTPM allows clients to execute tpm2-tools binaries from a list of hardcoded options” The communication with this server is done using...

9.9CVSS7.3AI score0.00072EPSS

Exploits0References3

Snyk•added 2026/05/27 3:23 a.m.•9 views

Stack-based Buffer Overflow

Overview Affected versions of this package are vulnerable to Stack-based Buffer Overflow via the scanForGeometryContainers function. An attacker can achieve arbitrary code execution by supplying a crafted NetCDF file containing an oversized geometry attribute, which is read into a fixed-size stac...

7.8CVSS6.4AI score0.00014EPSS

Exploits0References2

NVD•added 2026/05/27 2:16 a.m.•13 views

CVE-2026-9631

A vulnerability was detected in UTT HiPER 1250GW up to 3.2.7-210907-180535. Affected by this vulnerability is the function strcpy of the file /goform/formConfigFastDirectionW of the component Web Management Interface. Performing a manipulation of the argument Profile results in stack-based buffer...

9CVSS0.00046EPSS

Exploits0References4