CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

5.5CVSS5.7AI score0.00123EPSS

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: s390/syscalls: Added a spectre boundary for the syscall dispatch table. The s390 syscall number is directly controlled by the user space, but there is no arrayindexnospec boundary to prevent access beyond the syscall function...

Exploits0References1

7.1CVSS5.8AI score0.0026EPSS

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: um: Fixed an out-of-bounds read in LDT setup syscallstubdata expects the datacount parameter to be the number of longs, not bytes. ================================================================== BUG: KASAN: Out-of-bounds acces...

Exploits0References1

7CVSS5.3AI score0.00126EPSS

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: RISCV: Sanitizing syscall table indexing under speculation The syscall number is a user-controlled value used to index into the syscall table. Use arrayindexnospec to clamp this value after the bounds check, to prevent speculativ...

Exploits0References1

5.5CVSS6.1AI score0.011EPSS

Astra Linux - уязвимость в linux

An information disclosure vulnerability exists in the /proc/pid/syscall functionality of Linux Kernel 5.1 Stable and 5.4.66. More specifically, this issue has been introduced in v5.1-rc4 commit 631b7abacd02b88f4b0795c08b54ad4fc3e7c7c0 and is still present in v5.10-rc4, so it’s likely that all...

Exploits1References2

AstraLinux•added 2026/05/03 11:59 p.m.•6 views

Astra Linux - уязвимость в linux-5.15

In the Linux kernel, the following vulnerability has been resolved: hugetlbfs: don't delete error page from pagecache This change is very similar to the change that was made for shmem 1, and it solves the same problem but for HugeTLBFS instead. Currently, when poison is found in a HugeTLB page, t...

5.5CVSS6.5AI score0.00159EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 5.15

In the Linux kernel before version 6.6.7, a untrusted VMM could trigger the int80 syscall handling at any given point. This issue is related to the files arch/x86/coco/tdx/tdx.c and arch/x86/mm/memencryptamd.c...

8.8CVSS6.4AI score0.00278EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•1 views

Astra Linux – Vulnerability found in Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: powerpc/47x: Fixed the crash that occurred during the 47x syscall return. Eddie reported that newer kernels crashed during boot on his 476FSP2 system: - The kernel attempted to execute the user page b7ee2000 – a potential...

5.5CVSS6AI score0.00222EPSS

Exploits0References2

GithubExploit•added 2026/05/01 1:24 a.m.•74 views

sigma_rule_for_copyfail

Copy Fail Detection — CVE-2026-31431 Detection engineering pr...

7.8CVSS6AI score0.94016EPSS

Exploits227

GithubExploit•added 2026/04/30 2:28 p.m.•79 views

Exploit for CVE-2026-31431

copyfail-rs A Rust implementation of the Copy Fail exploi...

7.8CVSS6.2AI score0.94016EPSS

Exploits227

GithubExploit•added 2026/04/30 1:47 a.m.•113 views

Exploit for CVE-2026-31431

Copy-Fail Exploit CVE-2026-31431 Local privilege escalation...

7.8CVSS5.6AI score0.94016EPSS

Exploits227

Packet Storm News•added 2026/04/30 12:0 a.m.•5 views

WOOTdroid: Whole-System Online On-Device Tracing for Android

System auditing on Android faces two problems. First, existing syscall tracers lose events under load, silently overwriting entries faster than a user space reader can drain them. Second, security-relevant application behavior is mediated through Binder, Android's kernel IPC mechanism, and is...

5.8AI score

Exploits0

RedHat Linux•added 2026/04/29 5:54 p.m.•6 views

golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root

A flaw was found in the internal/syscall/unix package in the Go standard library. If the target of the Root.Chmod function is replaced with a symbolic link during execution, specifically after Root.Chmod checks the target but before acting, the chmod operation will be performed on the file the...

RedHat Linux•added 2026/04/29 1:32 p.m.•4 views

golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root

RedHat Linux•added 2026/04/29 1:13 p.m.•4 views

golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root

RedHat Linux•added 2026/04/29 1:9 p.m.•5 views

golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root

RedHat Linux•added 2026/04/29 8:11 a.m.•9 views

Important: Red Hat Security Advisory: grafana-pcp security update

An update for grafana-pcp is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability fr...

7.5CVSS7.3AI score0.00449EPSS

Exploits0References4

RedHat Linux•added 2026/04/29 7:37 a.m.•5 views

golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root

RedHat Linux•added 2026/04/24 2:38 a.m.•3 views

golang: internal/syscall/unix: Root.Chmod can follow symlinks out of the root