CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

16 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: scsi: pm8001: Fixed a use-after-free issue related to aborted SSP/STP sastask operations. Currently, a use-after-free might occur if an sastask is aborted by the upper layer before we handle the I/O completion in functions like...

7.8CVSS6.2AI score0.00016EPSS

Exploits0References2

UbuntuCve•added 2025/12/24 11:15 a.m.•1 views

CVE-2023-53993

In the Linux kernel, the following vulnerability has been resolved: PCI/DOE: Fix memory leak with CONFIGDEBUGOBJECTS=y After a pcidoetask completes, its workstruct needs to be destroyed to avoid a memory leak with CONFIGDEBUGOBJECTS=y...

5.7AI score0.00027EPSS

Exploits0References4

Tenable Nessus•added 2025/11/05 12:0 a.m.•1 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990055)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990055 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: pm8001: Fix use-after-free for aborted SSP/STP sastask Currently a use-after-free may occur...

7.8CVSS5.9AI score0.00016EPSS

Exploits0References4

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2013-4977

Malware in sbrugna...

2.6CVSS6.3AI score0.00371EPSS

Exploits0References5

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-16382

Malicious code in bioql PyPI...

7.7AI score0.00119EPSS

Exploits0References9

Packet Storm News•added 2025/06/17 12:0 a.m.•1 views

SHADE-Arena: Evaluating Sabotage and Monitoring in LLM Agents

As Large Language Models LLMs are increasingly deployed as autonomous agents in complex and long horizon settings, it is critical to evaluate their ability to sabotage users by pursuing hidden objectives. We study the ability of frontier LLMs to evade monitoring and achieve harmful hidden goals...

7.1AI score

Exploits0

CNNVD•added 2025/05/29 12:0 a.m.•1 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the UCSI driver not waiting for all tasks to complete before partner removal...

5.5CVSS7AI score0.00119EPSS

Exploits0References7

Tenable Nessus•added 2025/03/05 12:0 a.m.•7 views

Linux Distros Unpatched Vulnerability : CVE-2022-49217

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - scsi: pm8001: Fix abort all task initialization In pm80xxsendabortall, the nelem field of the ccb used is not initialized to 0. This missing initialization...

5.5CVSS6.8AI score0.00025EPSS

Exploits0References2

OSV•added 2025/02/26 1:55 a.m.•9 views

CVE-2022-49217 scsi: pm8001: Fix abort all task initialization

In the Linux kernel, the following vulnerability has been resolved: scsi: pm8001: Fix abort all task initialization In pm80xxsendabortall, the nelem field of the ccb used is not initialized to 0. This missing initialization sometimes lead to the task completion path seeing the ccb with a non-zero...

5.5CVSS5.3AI score0.00025EPSS

Exploits0References12

OSV•added 2024/09/18 12:52 p.m.•15 views

SUSE-SU-2024:3304-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP3 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2022-48791: Fix use-after-free for aborted TMF sastask bsc1228002 The following non-security bugs were fixed: - powerpc: Remove support for PowerPC 601 Remove...

7.8CVSS7.7AI score0.00016EPSS

Exploits0References3

CNNVD•added 2024/05/24 12:0 a.m.•3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel, which stems from a post-release reuse vulnerability due to failure to clear the HVS FIFO pointer after a task completes...

7.8CVSS6.1AI score0.00018EPSS

Exploits0References4

Code423n4•added 2022/08/06 12:0 a.m.•8 views

Project.changeOrder() might reinitialize already completed task.

Lines of code Vulnerability details Impact changeOrder can be used to change subcontractor. But if a project builder approves the signature by fault or the contractor is delegated, a malicious contractor and subcontractor might reinitialize an already completed task and complete again to receive...

6.9AI score

Exploits0

Atlassian•added 2015/02/26 12:9 a.m.•14 views

XSRF - complete task request omits atl-token

Potential XSRF vulnerability in tasks. No atl-token is present in the request to complete a task which suggests an attacker may be able to craft a cross site request forgery and action a task without the correct authorisation...

3.4AI score

Exploits0Affected Software1

Prion•added 2013/09/19 10:28 a.m.•18 views

Design/Logic Flaw

IOKit in Apple iOS before 7 allows attackers to send user-interface events to the foreground app by leveraging control over a background app and using the 1 task-completion API or 2 VoIP API...

2.6CVSS6.2AI score0.00371EPSS

Exploits0References4Affected Software1

NVD•added 2013/09/19 10:28 a.m.•17 views

CVE-2013-5137

IOKit in Apple iOS before 7 allows attackers to send user-interface events to the foreground app by leveraging control over a background app and using the 1 task-completion API or 2 VoIP API...

2.6CVSS5.8AI score0.00371EPSS

Exploits0References4