Lucene search
+L

2856 matches found

GithubExploit
GithubExploit
added 2026/04/30 9:43 a.m.107 views

Exploit for CVE-2026-31431

CVE-2026-31431 Copy Fail Detection Toolkit Detection and an...

7.8CVSS6.4AI score0.96267EPSS
Exploits230
NVD
NVD
added 2026/04/30 9:16 a.m.5 views

CVE-2026-39457

When exchanging data over a socket, libnv uses select2 to wait for data to arrive. However, it does not verify whether the provided socket descriptor fits in select2's file descriptor set size limit of FDSETSIZE 1024. An attacker who is able to force a libnv application to allocate large file...

7.8CVSS0.00151EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/30 8:1 a.m.3 views

CVE-2026-39457

When exchanging data over a socket, libnv uses select2 to wait for data to arrive. However, it does not verify whether the provided socket descriptor fits in select2's file descriptor set size limit of FDSETSIZE 1024. An attacker who is able to force a libnv application to allocate large file...

7.8CVSS5.3AI score0.00151EPSS
Exploits0References2
GithubExploit
GithubExploit
added 2026/04/30 1:49 a.m.217 views

Exploit for CVE-2026-31431

Copy-Fail CVE-2026-31431 Static Go PoC This repository contai...

7.8CVSS5.4AI score0.96267EPSS
Exploits230
FreeBSD Advisory
FreeBSD Advisory
added 2026/04/29 12:0 a.m.6 views

FreeBSD-SA-26:13.exec

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 ============================================================================= FreeBSD-SA-26:13.exec Security Advisory The FreeBSD Project Topic: Local privilege escalation via execve Category: core Module: execve2 Announced: 2026-04-29 Credits: Ryan...

7.8CVSS6.2AI score0.00179EPSS
Exploits1
EUVD
EUVD
added 2026/04/24 2:35 p.m.12 views

EUVD-2026-25447

In the Linux kernel, the following vulnerability has been resolved: futex: Require sysfutexrequeue to have identical flags Nicholas reported that his LLM found it was possible to create a UaF when sysfutexrequeue is used with different flags. The initial motivation for allowing different flags wa...

5.4AI score0.00163EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/04/22 7:45 p.m.6 views

CVE-2026-31507

A flaw was found in the Linux kernel's Stream Control Transmission Protocol SMC module. A local user can exploit this vulnerability by using the tee2 system call to duplicate a splice pipe buffer, leading to a double-free condition. This double-free can result in a use-after-free error and a kern...

7.8CVSS5.3AI score0.00131EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/04/22 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the lack of boundary checks in the system call dispatch table. This vulnerability may allow for...

5.5CVSS6AI score0.00123EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2026/04/21 12:0 a.m.9 views

(0Day) aws-mcp-server AWS CLI Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of aws-mcp-server. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of the allowed commands list. The issue results from the lack of proper...

9.8CVSS6.3AI score0.01908EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.5 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-013313)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013313 advisory. In the Linux kernel, the following vulnerability has been resolved: hugetlbfs: don't delete error page from pagecache This change is very similar to the change that...

5.5CVSS5.7AI score0.00165EPSS
Exploits0References4
EUVD
EUVD
added 2026/04/18 12:12 a.m.6 views

EUVD-2026-23630

NovumOS is a custom 32-bit operating system written in Zig and x86 Assembly. In versions prior to 0.24, Syscall 12 JumpToUser accepts an arbitrary entry point address from user-space registers without validation, allowing any Ring 3 user-mode process to jump to kernel addresses and execute...

9.3CVSS6AI score0.00225EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/04/18 12:0 a.m.9 views

NovumOS 安全漏洞

NovumOS is an 32-bit protected mode operating system developed by MinecAnton209. Versions of NovumOS prior to 0.24 contained security vulnerabilities. These vulnerabilities stemmed from system call 15, which allowed Ring 3 user-mode processes to map arbitrary virtual address ranges into their own...

9CVSS5.9AI score0.00213EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/04/11 12:15 a.m.2 views

CVE-2026-5059 aws-mcp-server AWS CLI Command Injection Remote Code Execution Vulnerability

aws-mcp-server AWS CLI Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of aws-mcp-server. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handlin...

9.8CVSS6.3AI score0.01908EPSS
Exploits1References1
Atlassian
Atlassian
added 2026/04/08 4:29 a.m.25 views

Injection immutable Dependency in Confluence Data Center

This High severity Injection vulnerability was introduced in versions 9.0.1, 9.0.3, 9.1.0, 9.2.0, 9.3.1, 9.4.0, 9.5.1, 10.0.2, 10.1.0, and 10.2.0 of Confluence Data Center. This Injection vulnerability, with a CVSS Score of 8.7 and a CVSS Vector of...

9.8CVSS5.7AI score0.00978EPSS
Exploits1
OSV
OSV
added 2026/04/08 1:6 a.m.3 views

CVE-2026-32282 TOCTOU permits root escape on Linux via Root.Chmod in os in internal/syscall/unix

On Linux, if the target of Root.Chmod is replaced with a symlink while the chmod operation is in progress, Chmod can operate on the target of the symlink, even when the target lies outside the root. The Linux fchmodat syscall silently ignores the ATSYMLINKNOFOLLOW flag, which Root.Chmod uses to...

6.4CVSS6.6AI score0.00292EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2026/03/25 1:43 p.m.6 views

CVE-2026-23289

A flaw was found in the Linux kernel's IB/mthca component. A local user could exploit this vulnerability by triggering a system call failure path related to the mthcacreatesrq function. This oversight leads to a missed unmapping of user database resources, resulting in a resource leak...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References4
NVD
NVD
added 2026/03/25 11:16 a.m.12 views

CVE-2026-23289

In the Linux kernel, the following vulnerability has been resolved: IB/mthca: Add missed mthcaunmapuserdb for mthcacreatesrq Fix a user triggerable leak on the system call failure path...

5.5CVSS0.00123EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2026/03/25 11:16 a.m.5 views

CVE-2026-23289

In the Linux kernel, the following vulnerability has been resolved: IB/mthca: Add missed mthcaunmapuserdb for mthcacreatesrq Fix a user triggerable leak on the system call failure path...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/03/25 10:26 a.m.23 views

CVE-2026-23289 IB/mthca: Add missed mthca_unmap_user_db() for mthca_create_srq()

In the Linux kernel, the following vulnerability has been resolved: IB/mthca: Add missed mthcaunmapuserdb for mthcacreatesrq Fix a user triggerable leak on the system call failure path...

0.00123EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/03/25 10:26 a.m.3 views

CVE-2026-23289

In the Linux kernel, the following vulnerability has been resolved: IB/mthca: Add missed mthcaunmapuserdb for mthcacreatesrq Fix a user triggerable leak on the system call failure path...

5.7AI score0.00123EPSS
Exploits0References9Affected Software1
Rows per page
Query Builder