CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

Github Security Blog•added 2026/05/05 7:27 p.m.•5 views

gix and gitoxide: unvalidated submodule name traverses out of .git/modules and redirects state() / open() to another repository

Summary attachments: pocs.zip Submodule names coming from .gitmodules are exposed as unvalidated names and are later reused to derive the submodule git directory as: /modules/ Because the submodule name is joined directly as a filesystem path component, a name such as ../../../escaped-target.git...

5.9AI score

Exploits0References2Affected Software2

Tenable Nessus•added 2025/11/05 12:0 a.m.•1 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989020)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989020 advisory. In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix possible crash in bnxthwrmsetcoal During the error recovery sequence, the rtnllock is...

5.5CVSS6AI score0.0005EPSS

Exploits0References4

Tenable Nessus•added 2025/08/15 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2022-49869

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix possible crash in bnxthwrmsetcoal During the error recovery sequence, the rtnllo...

5.5CVSS6.1AI score0.0005EPSS

Exploits0References2

SUSE CVE•added 2025/05/03 2:53 a.m.•1 views

SUSE CVE-2022-49869

In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix possible crash in bnxthwrmsetcoal During the error recovery sequence, the rtnllock is not held for the entire duration and some datastructures may be freed during the sequence. Check for the BNXTSTATEOPEN flag instead...

4.7CVSS6.1AI score0.0005EPSS

Exploits0References9