CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3366 matches found

ATTACKERKB•added 2024/03/15 9:15 p.m.•4 views

CVE-2021-47124

In the Linux kernel, the following vulnerability has been resolved: iouring: fix link timeout refs WARNING: CPU: 0 PID: 10242 at lib/refcount.c:28 refcountwarnsaturate+0x15b/0x1a0 lib/refcount.c:28 RIP: 0010:refcountwarnsaturate+0x15b/0x1a0 lib/refcount.c:28 Call Trace: refcountsubandtest...

5.5CVSS6.4AI score0.00232EPSS

Exploits0References6Affected Software1

OSV•added 2024/03/15 9:15 p.m.•2 views

DEBIAN-CVE-2021-47124

5.5CVSS5.7AI score0.00232EPSS

Exploits0References1

OSV•added 2024/03/15 9:15 p.m.•5 views

CVE-2021-47124

5.5CVSS6.8AI score

Exploits0References5

UbuntuCve•added 2024/03/15 9:15 p.m.•19 views

CVE-2021-47124

5.5CVSS6.4AI score0.00232EPSS

Exploits0References7

OSV•added 2024/03/15 9:15 p.m.•2 views

UBUNTU-CVE-2021-47124

5.5CVSS6.6AI score0.00232EPSS

Exploits0References8

OSV•added 2024/03/15 9:15 p.m.•4 views

UBUNTU-CVE-2021-47123

In the Linux kernel, the following vulnerability has been resolved: iouring: fix ltout double free on completion race Always remove linked timeout on iolinktimeoutfn from the master request link list, otherwise we may get use-after-free when first iolinktimeoutfn puts linked timeout in the fail...

7.8CVSS5.7AI score0.00219EPSS

Exploits0References5

CVE•added 2024/03/15 8:14 p.m.•101 views

CVE-2021-47124

CVE-2021-47124 concerns the Linux kernel io_uring subsystem: a race with linked timeouts can lead to an extra reference being released, risking a use-after-free in the linked timeout handling path. The root cause is a mismatch in reference counting between io_put_req() and deferred release during...

5.5CVSS6.6AI score0.00232EPSS

Exploits0References5Affected Software1

Cvelist•added 2024/03/15 8:14 p.m.•30 views

CVE-2021-47124 io_uring: fix link timeout refs

6.7AI score0.00232EPSS

Exploits0References5

Vulnrichment•added 2024/03/15 8:14 p.m.•21 views

CVE-2021-47124 io_uring: fix link timeout refs

6.9AI score0.00232EPSS

Exploits0References5

Debian CVE•added 2024/03/15 8:14 p.m.•22 views

CVE-2021-47124

5.5CVSS4.9AI score0.00232EPSS

Exploits0

Cvelist•added 2024/03/15 8:14 p.m.•18 views

CVE-2021-47123 io_uring: fix ltout double free on completion race

6.8AI score0.00219EPSS

Exploits0References2

Snyk•added 2024/03/15 7:20 p.m.•5 views

Uncontrolled Resource Consumption ('Resource Exhaustion')

Overview Affected versions of this package are vulnerable to Uncontrolled Resource Consumption 'Resource Exhaustion' due to the handling of connections in NetFraming based services. An attacker can consume extra system resources by establishing connections that are not properly closed or aborted...

7.5CVSS6.9AI score0.00579EPSS

Exploits0References2

Positive Technologies•added 2024/03/15 12:0 a.m.•3 views

PT-2024-11176 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the io uring feature in the Linux kernel, where the io link timeout fn function should put only one reference of the linked timeout request. However, in cases o...

5.5CVSS8.2AI score0.00232EPSS

Exploits0References13

OSV•added 2024/03/14 1:15 p.m.•7 views

CVE-2024-1623

Insufficient session timeout vulnerability in the FAST3686 V2 Vodafone router from Sagemcom. This vulnerability could allow a local attacker to access the administration panel without requiring login credentials. This vulnerability is possible because the 'Login.asp and logout.asp' files do not...

7.8CVSS5.8AI score0.00179EPSS

Exploits0References1

NVD•added 2024/03/14 1:15 p.m.•12 views

CVE-2024-1623

7.8CVSS7.3AI score0.00179EPSS

Exploits0References1

Vulnrichment•added 2024/03/14 12:47 p.m.•27 views

CVE-2024-1623 Insufficient session timeout vulnerability in Sagemcom router

7.7CVSS6.6AI score0.00179EPSS

Exploits0References1

Cvelist•added 2024/03/14 12:47 p.m.•16 views

CVE-2024-1623 Insufficient session timeout vulnerability in Sagemcom router

7.7CVSS7.5AI score0.00179EPSS

Exploits0References1

CVE•added 2024/03/14 12:47 p.m.•67 views

CVE-2024-1623

The CVE-2024-1623 entry concerns the Sagemcom FAST3686 V2 Vodafone router. Affected component: the router’s web admin login flow, specifically Login.asp and logout.asp, with an insufficient session timeout that fails to manage session details correctly. Impact described as allowing a local attack...

7.8CVSS7.4AI score0.00179EPSS

Exploits0References1Affected Software1

CNNVD•added 2024/03/14 12:0 a.m.•3 views

Sagemcom FAST3686 Code Issue Vulnerability

Sagemcom FAST3686 is a cable gateway from Sagemcom. A code issue vulnerability exists in the Sagemcom FAST3686 that stems from the presence of a session timeout insufficiency issue that allows a local attacker to access the management panel without requiring login credentials...

7.8CVSS6.8AI score0.00179EPSS

Exploits0References2

Positive Technologies•added 2024/03/14 12:0 a.m.•6 views

PT-2024-18174 · Sagemcom · Sagemcom Fast3686 V2

Name of the Vulnerable Software and Affected Versions: Sagemcom FAST3686 V2 Vodafone router affected versions not specified Description: The issue is related to an insufficient session timeout in the Sagemcom FAST3686 V2 Vodafone router. This could allow a local attacker to access the...

7.8CVSS6.6AI score0.00179EPSS

Exploits0References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by