CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

RedhatCVE•added 2025/05/22 9:27 p.m.•4 views

CVE-2021-30271

Possible null pointer dereference in trap handler due to lack of thread ID validation before dereferencing it in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music...

7.8CVSS7.2AI score0.00151EPSS

RedhatCVE•added 2025/05/22 8:56 p.m.•1 views

CVE-2021-28938

Siren Federate before 6.8.14-10.3.9, 6.9.x through 7.6.x before 7.6.2-20.2, 7.7.x through 7.9.x before 7.9.3-21.6, 7.10.x before 7.10.2-22.2, and 7.11.x before 7.11.2-23.0 can leak user information across thread contexts. This occurs in opportunistic circumstances when there is concurrent query...

4.3CVSS6.1AI score0.00826EPSS

RedhatCVE•added 2025/05/22 8:49 p.m.•3 views

CVE-2021-22303

There is a pointer double free vulnerability in Taurus-AL00A 10.0.0.1C00E1R1P1. There is a lack of muti-thread protection when a function is called. Attackers can exploit this vulnerability by performing malicious operation to cause pointer double free. This may lead to module crash, compromising...

4.3CVSS6.8AI score0.0052EPSS

RedhatCVE•added 2025/05/22 8:36 p.m.•1 views

CVE-2021-33889

OpenThread wpantund through 2021-07-02 has a stack-based Buffer Overflow because of an inconsistency in the integer data type for metriclen...

6.8CVSS6.8AI score0.00327EPSS

RedhatCVE•added 2025/05/22 8:8 p.m.•8 views

CVE-2021-38191

An issue was discovered in the tokio crate before 1.8.1 for Rust. Upon a JoinHandle::abort, a Task may be dropped in the wrong thread...

5.9CVSS6.8AI score0.00829EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 7:38 p.m.•6 views

CVE-2021-30270

Possible null pointer dereference in thread profile trap handler due to lack of thread ID validation before dereferencing it in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Voice & Music, Snapdragon Wearables,...

7.8CVSS7.7AI score0.00151EPSS

RedhatCVE•added 2025/05/22 6:35 p.m.•5 views

CVE-2021-3337

The Hide-Thread-Content plugin through 2021-01-27 for MyBB allows remote attackers to bypass intended content-reading restrictions by clicking on reply or quote in the postbit...

7.5CVSS7.1AI score0.11467EPSS

Exploits3References1

RedhatCVE•added 2025/05/22 5:24 p.m.•4 views

CVE-2020-11295

Use after free in camera If the threadmanager is being cleaned up while the worker thread is processing objects in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile...

7.8CVSS8AI score0.00146EPSS

RedhatCVE•added 2025/05/22 5:17 p.m.•4 views

CVE-2020-0118

In addListener of RegionSamplingThread.cpp, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions:...

7.8CVSS7.7AI score0.00183EPSS

RedhatCVE•added 2025/05/22 5:10 p.m.•12 views

CVE-2020-35924

An issue was discovered in the try-mutex crate before 0.3.0 for Rust. TryMutex allows cross-thread sending of a non-Send type...

5.5CVSS6.8AI score0.00377EPSS

RedhatCVE•added 2025/05/22 5:10 p.m.•5 views

CVE-2020-35886

An issue was discovered in the arr crate through 2020-08-25 for Rust. An attacker can smuggle non-Sync/Send types across a thread boundary to cause a data race...

4.7CVSS6.7AI score0.00192EPSS

RedhatCVE•added 2025/05/22 5:8 p.m.•11 views

CVE-2020-35927

An issue was discovered in the thex crate through 2020-12-08 for Rust. Thex allows cross-thread data races of non-Send types...

5.5CVSS6.8AI score0.0031EPSS

RedhatCVE•added 2025/05/22 4:38 p.m.•8 views

CVE-2020-36208

An issue was discovered in the conquer-once crate before 0.3.2 for Rust. Thread crossing can occur for a non-Send but Sync type, leading to memory corruption...

7.8CVSS6.7AI score0.00426EPSS

RedhatCVE•added 2025/05/22 4:24 p.m.•7 views

CVE-2020-15681

When multiple WASM threads had a reference to a module, and were looking up exported functions, one WASM thread could have overwritten another's entry in a shared stub table, resulting in a potentially exploitable crash. This vulnerability affects Firefox 82...

7.5CVSS6.3AI score0.01078EPSS

RedhatCVE•added 2025/05/22 4:15 p.m.•8 views

CVE-2020-13128

An issue was discovered in Manolo GWTUpload 1.0.3. server/UploadServlet.java the servlet for handling file upload accepts a delay parameter that causes a thread to sleep. It can be abused to cause all of a server's threads to sleep, leading to denial of service...

7.5CVSS6.7AI score0.01614EPSS

RedhatCVE•added 2025/05/22 3:33 p.m.•8 views

CVE-2020-36457

An issue was discovered in the lever crate before 0.1.1 for Rust. AtomicBox implements the Send and Sync traits for all types T...

8.1CVSS6.9AI score0.0124EPSS

RedhatCVE•added 2025/05/22 3:33 p.m.•10 views

CVE-2020-36441

An issue was discovered in the abox crate before 0.4.1 for Rust. It implements Send and Sync for AtomicBox with no requirement for T: Send and T: Sync...

8.1CVSS6.9AI score0.00766EPSS

RedhatCVE•added 2025/05/22 3:32 p.m.•19 views

CVE-2020-35925

An issue was discovered in the magnetic crate before 2.0.1 for Rust. MPMCConsumer and MPMCProducer allow cross-thread sending of a non-Send type...

5.5CVSS6.8AI score0.00377EPSS