CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

683 matches found

OSV•added 2025/09/04 4:15 p.m.•2 views

AZL-66899 CVE-2025-38701 affecting package kernel for versions less than 6.6.104.2-1

In the Linux kernel, the following vulnerability has been resolved: ext4: do not BUG when INLINEDATAFL lacks system.data xattr A syzbot fuzzed image triggered a BUGON in ext4updateinlinedata when an inode had the INLINEDATAFL flag set but was missing the system.data extended attribute. Since this...

5.5CVSS5.6AI score0.0002EPSS

Exploits0References1

OSV•added 2025/09/04 4:15 p.m.•0 views

UBUNTU-CVE-2025-38701

5.5CVSS5.9AI score0.0002EPSS

Exploits0References37

Cvelist•added 2025/09/04 3:32 p.m.•7 views

CVE-2025-38701 ext4: do not BUG when INLINE_DATA_FL lacks system.data xattr

0.0002EPSS

Exploits0References9

CVE•added 2025/09/04 3:32 p.m.•23 views

CVE-2025-38701

CVE-2025-38701 relates to ext4 in the Linux kernel where a syzbot-triggered BUG_ON could occur when INLINE_DATA_FL is set but the system.data xattr is missing. The fix replaces BUG_ON with EXT4_ERROR_INODE() in ext4_create_inline_data() and ext4_inline_data_truncate(), and documents reporting a c...

5.5CVSS5.8AI score0.0002EPSS

Exploits0References13Affected Software1

OSV•added 2025/09/04 3:32 p.m.•2 views

CVE-2025-38701 ext4: do not BUG when INLINE_DATA_FL lacks system.data xattr

5.5CVSS5.9AI score0.0002EPSS

Exploits0References14

CNNVD•added 2025/09/04 12:0 a.m.•2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from ext4 not properly handling inline data that lacks the system data extension attribute...

5.5CVSS6.9AI score0.0002EPSS

Exploits0References10

CNVD•added 2025/09/02 12:0 a.m.•1 views

QNAP Qsync Central path traversal vulnerability (CNVD-2025-23640)

QNAP Qsync Central is a private cloud synchronization service launched by QNAP, which is mainly used to achieve real-time synchronization and backup of files between devices. A path traversal vulnerability exists in QNAP Qsync Central, which can be exploited by an attacker to read unexpected file...

7.2CVSS6.8AI score0.00094EPSS

Exploits0References1

RedhatCVE•added 2025/08/31 6:11 p.m.•3 views

CVE-2025-33033

A path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, they can then exploit the vulnerability to read the contents of unexpected files or system data. We have already fixed the vulnerability in the following version: Qsync Central...

7.2CVSS6.8AI score0.00094EPSS

Exploits0References1

OSV•added 2025/08/29 6:15 p.m.•3 views

CVE-2025-33038

6.5CVSS5.8AI score0.00094EPSS

Exploits0References1

NVD•added 2025/08/29 6:15 p.m.•3 views

CVE-2025-33036

7.2CVSS0.00094EPSS

Exploits0References1

NVD•added 2025/08/29 6:15 p.m.•2 views

CVE-2025-33037

7.2CVSS0.00094EPSS

Exploits0References1

NVD•added 2025/08/29 6:15 p.m.•2 views

CVE-2025-33038

7.2CVSS0.00094EPSS

Exploits0References1

Cvelist•added 2025/08/29 5:17 p.m.•5 views

CVE-2025-52861 VioStor

A path traversal vulnerability has been reported to affect VioStor. If a remote attacker gains an administrator account, they can then exploit the vulnerability to read the contents of unexpected files or system data. We have already fixed the vulnerability in the following version: VioStor 5.1.6...

7CVSS0.00498EPSS

Exploits0References1

CVE•added 2025/08/29 5:17 p.m.•14 views

CVE-2025-33037

Affects Qsync Central . Description: a path traversal vulnerability that could allow a remote attacker with a current user account to read files or system data. The issue is classified as a network-based vulnerability with low privileges required and no user interaction, leading to potential disc...

7.2CVSS6.3AI score0.00094EPSS

Exploits0References1Affected Software1

CNNVD•added 2025/08/29 12:0 a.m.•2 views

QNAP Qsync Central 路径遍历漏洞

7.2CVSS6.7AI score0.00094EPSS

Exploits0References3

CNNVD•added 2025/08/29 12:0 a.m.•2 views

QNAP Qsync Central 路径遍历漏洞

QNAP Qsync Central is a cloud-based file synchronization service on NAS from Taiwan, China-based QNAP Technology QNAP. A path traversal vulnerability exists in QNAP Qsync Central versions prior to version 4.5.0.7, which stems from susceptibility to a path traversal attack that could result in...

7.2CVSS6.6AI score0.00094EPSS

Exploits0References3

Positive Technologies•added 2025/08/29 12:0 a.m.•3 views

PT-2025-35279

Name of the Vulnerable Software and Affected Versions: QNAP versions prior to QTS 5.2.5.3145 build 20250526 QNAP versions prior to QuTS hero h5.2.5.3138 build 20250519 Description: A path traversal vulnerability exists in QNAP operating systems. A remote attacker who has obtained a user account c...

5.3CVSS6.4AI score0.00094EPSS

Exploits0References5

CNNVD•added 2025/08/29 12:0 a.m.•1 views

QNAP VioStor 路径遍历漏洞

QNAP VioStor is a software for storing and managing video surveillance systems from Taiwan, China-based QNAP Technology QNAP. A path traversal vulnerability exists in QNAP VioStor, which stems from susceptibility to a path traversal attack that could result in reading unexpected files or system...

7CVSS6.8AI score0.00498EPSS

Exploits0References3

CNNVD•added 2025/08/29 12:0 a.m.•3 views

QNAP Qsync Central 路径遍历漏洞

7.2CVSS6.7AI score0.00094EPSS

Exploits0References3

OSSF Malicious Packages•added 2025/08/26 9:33 a.m.•3 views

Malicious code in import-license-checker (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 c41ca4c8119fa20f7f5915b34de59f879b77fedf237cbbf5a69e46ddbeded428 Package exfiltrates content of .env files to a remote target --- Category: MALICIOUS - The campaign has clearly malicious intent, like infostealers. Campaign:...

7.2AI score

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by