CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в linux-6.1

In the Linux kernel, the following vulnerability has been resolved: ksmbd: Validating the session ID and tree ID in compound requests. The function smb2getmsg in smb2getksmbdtcon and smb2checkusersession always returns the first command in a compound request’s header. If SMB2TREECONNECTHE is the...

5.5CVSS6.2AI score0.00144EPSS

Exploits0References2

OSV•added 2025/08/16 2:15 p.m.•2 views

DEBIAN-CVE-2023-3866

In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate session id and tree id in the compound request This patch validate session id and tree id in compound request. If first operation in the compound is SMB2 ECHO request, ksmbd bypass session and tree validation. So...

5.5CVSS5.5AI score0.00013EPSS

Exploits0References1

Cvelist•added 2025/08/16 1:27 p.m.•6 views

CVE-2023-3866 ksmbd: validate session id and tree id in the compound request

0.00013EPSS

Exploits0References4

Debian CVE•added 2025/08/16 1:27 p.m.•33 views

CVE-2023-3866

5.5CVSS5.5AI score0.00013EPSS

Exploits0

OSV•added 2025/08/16 1:27 p.m.•1 views

CVE-2023-3866 ksmbd: validate session id and tree id in the compound request

5.5CVSS6.3AI score0.00013EPSS

Exploits0References7

NVD•added 2024/02/21 8:15 a.m.•15 views

CVE-2023-52442

In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate session id and tree id in compound request smb2getmsg in smb2getksmbdtcon and smb2checkusersession will always return the first request smb2 header in a compound request. if SMB2TREECONNECTHE is the first command ...

5.5CVSS9.3AI score0.00144EPSS

Exploits0References4

OSV•added 2024/02/21 8:15 a.m.•1 views

DEBIAN-CVE-2023-52442

5.5CVSS6AI score0.00144EPSS

Exploits0References1

Prion•added 2024/02/21 8:15 a.m.•16 views

Command injection

7.2AI score0.00144EPSS

Exploits0References4

OSV•added 2024/02/21 8:15 a.m.•0 views

UBUNTU-CVE-2023-52442

5.5CVSS6.2AI score0.00144EPSS

Exploits0References9

Debian CVE•added 2024/02/21 7:21 a.m.•33 views

CVE-2023-52442

5.5CVSS5.8AI score0.00144EPSS

Exploits0

Vulnrichment•added 2024/02/21 7:21 a.m.•29 views

CVE-2023-52442 ksmbd: validate session id and tree id in compound request

6.8AI score0.00144EPSS

Exploits0References4

OSV•added 2023/09/05 10:15 p.m.•1 views

DEBIAN-CVE-2023-39358

Cacti is an open source operational monitoring and fault management framework. An authenticated SQL injection vulnerability was discovered which allows authenticated users to perform privilege escalation and remote code execution. The vulnerability resides in the reportsuser.php file. In...

8.8CVSS8.9AI score0.04722EPSS

Exploits1References1

Positive Technologies•added 2023/09/05 12:0 a.m.•2 views

PT-2023-5425 · Cacti +1 · Cacti +1

Name of the Vulnerable Software and Affected Versions: Cacti versions prior to 1.2.25 Description: An authenticated SQL injection issue allows authenticated users to perform privilege escalation and remote code execution. The issue resides in the reports user.php file, specifically in the ajax ge...

10CVSS7.3AI score0.94469EPSS

Exploits136References210

SUSE CVE•added 2023/08/02 1:56 a.m.•1 views

SUSE CVE-2023-3866

5.5CVSS6.5AI score0.00013EPSS

Exploits0References3

Positive Technologies•added 2023/07/23 12:0 a.m.•1 views

PT-2023-8703 · Linux +4 · Linux Kernel +4

Name of the Vulnerable Software and Affected Versions: Linux Kernel affected versions not specified Description: The issue is related to the improper validation of session id and tree id in compound requests in the Linux kernel's ksmbd module. Specifically, the smb2 get msg function in smb2 get...

9.8CVSS6.8AI score0.00223EPSS

Exploits0References170

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by