CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3365 matches found

OSV•added 2024/07/01 1:15 p.m.•4 views

DEBIAN-CVE-2024-6387

A security regression CVE-2006-5051 was discovered in OpenSSH's server sshd. There is a race condition which can lead sshd to handle some signals in an unsafe manner. An unauthenticated, remote attacker may be able to trigger it by failing to authenticate within a set time period...

8.1CVSS7.5AI score0.99506EPSS

Exploits68References1

OSV•added 2024/07/01 12:0 a.m.•4 views

UBUNTU-CVE-2024-6387

8.1CVSS6.8AI score0.99506EPSS

Exploits68References5

Positive Technologies•added 2024/06/28 12:0 a.m.•5 views

PT-2024-32242

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to the handling of mailbox timeouts in the lpfc get sfp info routine. The MBX TIMEOUT return code is not handled, and the routine unconditionally frees submitted...

5.5CVSS5.6AI score0.00204EPSS

Exploits0

RedHat Linux•added 2024/06/26 12:46 a.m.•4 views

kernel: netfilter: nf_tables: use timestamp to check for set element timeout

A use-after-free flaw was found in the Linux kernel’s netfilter subsystem in how a user triggers the element timeout. This flaw allows a local user to crash or potentially escalate their privileges on the system...

7CVSS6.8AI score0.00257EPSS

Exploits0References5

RedHat Linux•added 2024/06/26 12:24 a.m.•5 views

kernel: netfilter: nf_tables: disallow anonymous set with timeout flag

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: disallow anonymous set with timeout flag Anonymous sets are never used with timeout from userspace, reject this. Exception to this rule is NFTSETEVAL to ensure legacy meters still work...

5.5CVSS6.8AI score0.00257EPSS

Exploits0References5

RedHat Linux•added 2024/06/26 12:9 a.m.•4 views

kernel: netfilter: nf_tables: use timestamp to check for set element timeout

7CVSS6.8AI score0.00257EPSS

Exploits0References5

SUSE CVE•added 2024/06/22 3:35 a.m.•2 views

SUSE CVE-2024-38556

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Add a timeout to acquire the command queue semaphore Prevent forced completion handling on an entry that has not yet been assigned an index, causing an out of bounds access on idx = -22. Instead of waiting indefinitely...

5.5CVSS6.2AI score0.00259EPSS

Exploits0References14

OSV•added 2024/06/21 11:8 a.m.•4 views

OESA-2024-1736 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: PCI: aardvark: Fix kernel panic during PIO transfer Trying to start a new PIO transfer by writing value 0 in PIOSTART register when previous transfer has not yet...

9.1CVSS6AI score0.01305EPSS

Exploits2References55

SUSE CVE•added 2024/06/21 3:52 a.m.•1 views

SUSE CVE-2021-47603

In the Linux kernel, the following vulnerability has been resolved: audit: improve robustness of the audit queue handling If the audit daemon were ever to get stuck in a stopped state the kernel's kauditdthread could get blocked attempting to send audit records to the userspace audit daemon. With...

4.7CVSS6.3AI score0.0018EPSS

Exploits0References11

RedhatCVE•added 2024/06/20 5:59 p.m.•28 views

CVE-2024-38556

4.4CVSS7.1AI score0.00259EPSS

Exploits0References4

RedhatCVE•added 2024/06/20 11:26 a.m.•28 views

CVE-2021-47582

In the Linux kernel, the following vulnerability has been resolved: USB: core: Make doproccontrol and doprocbulk killable The USBDEVFSCONTROL and USBDEVFSBULK ioctls invoke usbstartwaiturb, which contains an uninterruptible wait with a user-specified timeout value. If timeout value is very large...

3.3CVSS7.3AI score0.00198EPSS

Exploits0References4