CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2025/05/23 2:52 a.m.•2 views

CVE-2023-0202

NVIDIA DGX A100 SBIOS contains a vulnerability where an attacker may modify arbitrary memory of SMRAM by exploiting the GenericSio and LegacySmmSredir SMM APIs. A successful exploit of this vulnerability may lead to denial of service, escalation of privileges, and information disclosure...

7.8CVSS7.1AI score0.00041EPSS

Veracode•added 2025/04/23 1:57 p.m.•5 views

Denial Of Service (DoS)

vllm is vulnerable to Denial of Service DoS. The vulnerability is due to unbounded in-memory cache growth due to allowing unique schema requests to continually populate the grammar cache, potentially exhausting system RAM...

7AI score

Exploits0

Tenable Nessus•added 2025/03/06 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2024-49878

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: resource: fix regionintersects vs addmemorydrivermanaged On a system with CXL memory, the...

5.5CVSS6.4AI score0.00021EPSS

Tenable Nessus•added 2024/12/13 12:0 a.m.•8 views

CBL Mariner 2.0 Security Update: kernel (CVE-2024-49878)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-49878 advisory. - In the Linux kernel, the following vulnerability has been resolved: resource: fix regionintersects vs...

5.5CVSS6.5AI score0.00021EPSS

SUSE CVE•added 2024/11/20 3:49 a.m.•1 views

SUSE CVE-2024-50303

In the Linux kernel, the following vulnerability has been resolved: resource,kexec: walksystemramresrev must retain resource flags walksystemramresrev erroneously discards resource flags when passing the information to the callback. This causes systems with IORESOURCESYSRAMDRIVERMANAGED memory to...

5.5CVSS7.5AI score0.00011EPSS

NVD•added 2024/11/19 6:15 p.m.•5 views

CVE-2024-50303

5.5CVSS0.00011EPSS

OSV•added 2024/11/19 6:15 p.m.•1 views

DEBIAN-CVE-2024-50303

5.5CVSS5.9AI score0.00011EPSS

CVE•added 2024/11/19 5:19 p.m.•121 views

CVE-2024-50303

CVE-2024-50303 affects the Linux kernel: walk_system_ram_res_rev discards resource flags when passing information to the callback, causing IORESOURCE_SYSRAM_DRIVER_MANAGED memory to be selected for kexec buffers if located above normal RAM. This can lead to undefined behavior after reboot or a cr...

5.5CVSS6.2AI score0.00011EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2024/11/19 5:19 p.m.•1 views

CVE-2024-50303 resource,kexec: walk_system_ram_res_rev must retain resource flags

7.5AI score0.00011EPSS

CNNVD•added 2024/11/19 12:0 a.m.•2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a resource flag reservation in walksystemramresrev...

5.5CVSS6.5AI score0.00011EPSS

OSV•added 2024/10/21 6:15 p.m.•1 views

DEBIAN-CVE-2024-49878

In the Linux kernel, the following vulnerability has been resolved: resource: fix regionintersects vs addmemorydrivermanaged On a system with CXL memory, the resource tree /proc/iomem related to CXL memory may look like something as follows. 490000000-50fffffff : CXL Window 0 490000000-50fffffff ...

5.5CVSS6.1AI score0.00021EPSS

Cvelist•added 2024/10/21 6:1 p.m.•10 views

CVE-2024-49878 resource: fix region_intersects() vs add_memory_driver_managed()

0.00021EPSS

Exploits0References8

NVD•added 2024/05/21 4:15 p.m.•17 views

CVE-2023-52825

In the Linux kernel, the following vulnerability has been resolved: drm/amdkfd: Fix a race condition of vram buffer unref in svm code prange-svmbo unref can happen in both mmu callback and a callback after migrate to system ram. Both are async call in different tasks. Sync svmbo unref operation t...

5.5CVSS6.6AI score0.00015EPSS

Exploits0References5

OSV•added 2024/05/21 4:15 p.m.•1 views

DEBIAN-CVE-2023-52825

5.5CVSS5.6AI score0.00015EPSS

OSV•added 2023/11/14 7:15 p.m.•1 views

CVE-2022-23820

Failure to validate the AMD SMM communication buffer may allow an attacker to corrupt the SMRAM potentially leading to arbitrary code execution...

9.8CVSS6.4AI score0.00151EPSS

CNNVD•added 2023/04/11 12:0 a.m.•2 views

Insyde InsydeH2O 缓冲区错误漏洞

Insyde InsydeH2O is a C-language source from Insyde Corporation of Taiwan, which implements the new technology "EFI/UEFI" specification designed to replace the traditional BIOS Basic Input/Output System. A security vulnerability exists in Insyde InsydeH2O with kernel versions 5.0 to 5.5, which...

8.4CVSS7.8AI score0.0024EPSS

OSV•added 2022/11/14 11:15 p.m.•3 views

CVE-2022-34325

DMA transactions which are targeted at input buffers used for the StorageSecurityCommandDxe software SMI handler could cause SMRAM corruption through a TOCTOU attack. DMA transactions which are targeted at input buffers used for the software SMI handler used by the StorageSecurityCommandDxe drive...

7.8CVSS5.8AI score0.00038EPSS