CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2025/12/18 2:39 p.m.•2 views

SUSE-SU-2025:4484-1 Security update for postgresql15

This update for postgresql15 fixes the following issues: Upgraded to 15.15: - CVE-2025-12817: Fixed missing check for CREATE privileges on the schema in CREATE STATISTICS bsc1253332 - CVE-2025-12818: Fixed integer overflow in allocation-size calculations within libpq bsc1253333 Other fixes: - Use...

5.9CVSS6.1AI score0.00061EPSS

EUVD•added 2025/12/16 3:30 p.m.•2 views

EUVD-2025-203656

In the Linux kernel, the following vulnerability has been resolved: nilfs2: avoid having an active sctimer before freeing sci Because kthreadstop did not stop sctask properly and returned -EINTR, the sctimer was not properly closed, ultimately causing the problem 1 reported by syzbot when freeing...

6AI score0.00024EPSS

Exploits0References4

OSV•added 2025/12/16 3:15 p.m.•0 views

UBUNTU-CVE-2025-68240

5.7AI score0.00024EPSS

Exploits0References11

UbuntuCve•added 2025/12/16 3:15 p.m.•2 views

CVE-2025-68240

5.7AI score0.00024EPSS

Exploits0References10

UbuntuCve•added 2025/12/16 2:15 p.m.•1 views

CVE-2025-68214

In the Linux kernel, the following vulnerability has been resolved: timers: Fix NULL function pointer race in timershutdownsync There is a race condition between timershutdownsync and timer expiration that can lead to hitting a WARNON in expiretimers. The issue occurs when timershutdownsync clear...

4.7CVSS5.8AI score0.00007EPSS

Exploits0References23

ATTACKERKB•added 2025/12/16 1:57 p.m.•2 views

CVE-2025-68214

5.1AI score0.00007EPSS

Exploits0References7Affected Software1

OSV•added 2025/12/16 1:57 p.m.•1 views

CVE-2025-68214 timers: Fix NULL function pointer race in timer_shutdown_sync()

4.7CVSS6.2AI score0.00007EPSS

Exploits0References9

Positive Technologies•added 2025/12/16 12:0 a.m.•2 views

PT-2025-51627

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists within the timer subsystem, specifically in the timer shutdown sync function, potentially leading to a kernel warning. This occurs when the timer function pointer...

4.7CVSS6.5AI score0.00007EPSS

Exploits0

Tenable Nessus•added 2025/12/16 12:0 a.m.•3 views

SUSE SLES15 Security Update : postgresql15 (SUSE-SU-2025:4406-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:4406-1 advisory. Upgraded to 15.15: - CVE-2025-12817: Fixed missing check for CREATE privileges on the schema in CREATE STATISTICS bsc1253332 -...

5.9CVSS5.9AI score0.00061EPSS

Exploits0References7

CNNVD•added 2025/12/16 12:0 a.m.•1 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a competing condition between timershutdownsync and timer expiration, which could result in WARNON being trigger...

4.7CVSS6.2AI score0.00007EPSS

SUSE Linux•added 2025/12/15 2:23 p.m.•2 views

Security update for postgresql15

This update for postgresql15 fixes the following issues: Upgraded to 15.15: CVE-2025-12817: Fixed missing check for CREATE privileges on the schema in CREATE STATISTICS bsc1253332 CVE-2025-12818: Fixed integer overflow in allocation-size calculations within libpq bsc1253333 Other fixes: Use...

Cvelist•added 2025/12/15 12:0 a.m.•18 views

CVE-2025-55901

TOTOLINK A3300R V17.0.0cu.596B20250515 is vulnerable to command injection in the function NTPSyncWithHost via the hosttime parameter...

0.00359EPSS

Exploits1References2

Positive Technologies•added 2025/12/15 12:0 a.m.•3 views

PT-2025-51256

Name of the Vulnerable Software and Affected Versions TOTOLINK A3300R version V17.0.0cu.596 B20250515 Description The TOTOLINK A3300R router firmware contains a command injection flaw in the NTPSyncWithHost function. The issue is triggered through the host time parameter. This allows for potentia...

6.5CVSS7.4AI score0.00359EPSS

Exploits1References6

SUSE Linux•added 2025/12/12 1:36 p.m.•4 views

Security update for postgresql16

This update for postgresql16 fixes the following issues: Upgraded to 16.11: CVE-2025-12817: Fixed missing check for CREATE privileges on the schema in CREATE STATISTICS bsc1253332 CVE-2025-12818: Fixed integer overflow in allocation-size calculations within libpq bsc1253333 Other fixes: Use...

OSV•added 2025/12/12 1:35 p.m.•2 views

SUSE-SU-2025:4387-1 Security update for postgresql16

This update for postgresql16 fixes the following issues: Upgraded to 16.11: - CVE-2025-12817: Fixed missing check for CREATE privileges on the schema in CREATE STATISTICS bsc1253332 - CVE-2025-12818: Fixed integer overflow in allocation-size calculations within libpq bsc1253333 Other fixes: - Use...

5.9CVSS7.1AI score0.00061EPSS

SUSE Linux•added 2025/12/12 1:34 p.m.•3 views

Security update for postgresql16

OSV•added 2025/12/12 1:34 p.m.•6 views

SUSE-SU-2025:4386-1 Security update for postgresql16

5.9CVSS7.1AI score0.00061EPSS

SUSE CVE•added 2025/12/12 12:26 a.m.•2 views

SUSE CVE-2025-41115

SCIM provisioning was introduced in Grafana Enterprise and Grafana Cloud in April to improve how organizations manage users and teams in Grafana by introducing automated user lifecycle management. In Grafana versions 12.x where SCIM provisioning is enabled and configured, a vulnerability in user...

10CVSS6.7AI score0.00057EPSS

Exploits1References2

SUSE Linux•added 2025/12/11 7:6 p.m.•2 views

Security update for postgresql15