CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

223 matches found

Positive Technologies•added 2026/05/13 12:0 a.m.•7 views

PT-2026-40552

Name of the Vulnerable Software and Affected Versions MongoDB Server versions prior to 7.0.34 MongoDB Server versions prior to 8.0.23 MongoDB Server versions prior to 8.2.9 MongoDB Server versions prior to 8.3.2 Description An authenticated user with aggregation permissions can cause CPU...

6.5CVSS5.8AI score0.00235EPSS

Exploits0References4

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: jfs: Fixed null-ptr-deref in jfsioctrim Syzkaller Report Oops: General Protection Fault, likely for non-canonical addresses 0xdffffc0000000087: 0000 1 KASAN: null-ptr-deref in range 0x0000000000000438-0x000000000000043f CPU: 2...

5.5CVSS6.2AI score0.00147EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•4 views

Astra Linux - уязвимость в linux-5.15

In the Linux kernel 6.0.8, there is a use-after-free in ntfstrimfs in fs/ntfs3/bitmap.c...

7.8CVSS6.7AI score0.00393EPSS

Exploits1References2

Tenable Nessus•added 2026/04/21 12:0 a.m.•2 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-013322)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013322 advisory. In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix memleak in tcpbpfsendmsg while sk msg is full If tcpbpfsendmsg is running while...

5.5CVSS6.3AI score0.00247EPSS

Exploits0References4

Tenable Nessus•added 2026/04/17 12:0 a.m.•3 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007582)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007582 advisory. In the Linux kernel, the following vulnerability has been resolved: ocfs2: clear extent cache after moving/defragmenting extents The extent map cache can become stal...

5.6AI score0.00177EPSS

Exploits0References4

Tenable Nessus•added 2026/03/03 12:0 a.m.•3 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005807)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005807 advisory. In the Linux kernel, the following vulnerability has been resolved: jfs: Fix null-ptr-deref in jfsioctrim Syzkaller Report Oops: general protection fault, probably f...

5.5CVSS6.8AI score0.00147EPSS

Exploits0References4

Tenable Nessus•added 2026/03/03 12:0 a.m.•1 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005427)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005427 advisory. In the Linux kernel, the following vulnerability has been resolved: jfs: Fix null-ptr-deref in jfsioctrim Syzkaller Report Oops: general protection fault, probably f...

5.5CVSS6.5AI score0.00147EPSS

Exploits0References4

ATTACKERKB•added 2026/02/18 2:53 p.m.•2 views

CVE-2025-71237

In the Linux kernel, the following vulnerability has been resolved: nilfs2: Fix potential block overflow that cause system hang When a user executes the FITRIM command, an underflow can occur when calculating nblocks if endblock is too small. Since nblocks is of type sectort, which is u64, a...

5.1AI score0.00118EPSS

Exploits0References9Affected Software1

Tenable Nessus•added 2026/01/20 12:0 a.m.•4 views

MiracleLinux 7 : rh-nodejs12-nodejs-12.16.1-1.el7 (AXSA:2020-4480:02)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-4480:02 advisory. nodejs: HTTP request smuggling using malformed Transfer-Encoding header CVE-2019-15605 nodejs: Remotely trigger an assertion on a TLS server with a...

9.8CVSS8.4AI score0.57132EPSS

Exploits2References7

Packet Storm•added 2025/12/22 12:0 a.m.•166 views

📄 Adobe DNG SDK Image Processing Logic

Proof of concept exploit that demonstrates a heap out-of-bounds read / write leading to memory corruption and potential code execution in the Image Processing Logic of Adobe DNG SDK versions prior to 1.7.1.2410...

7.1CVSS7.4AI score0.00165EPSS

Exploits2

CNNVD•added 2025/12/09 12:0 a.m.•1 views

WordPress plugin Social Reviews Recommendations 跨站脚本漏洞

...

7.2CVSS5.8AI score0.00315EPSS

Exploits0References6

Positive Technologies•added 2025/12/09 12:0 a.m.•2 views

PT-2025-49866

Name of the Vulnerable Software and Affected Versions Social Reviews & Recommendations plugin for WordPress versions prior to 2.6 Description The Social Reviews & Recommendations plugin for WordPress is susceptible to Stored Cross-Site Scripting. This is due to insufficient input sanitization and...

7.2CVSS6AI score0.00315EPSS

Exploits0References9

Tenable Nessus•added 2025/11/05 12:0 a.m.•2 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-989579)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989579 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: aqc111: check packet for fixup for true limit If a device sends a packet that is inbetween 0...

5.5CVSS6.2AI score0.00276EPSS

Exploits0References4

Positive Technologies•added 2025/10/09 12:0 a.m.•3 views

PT-2025-49060

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The extent map cache in the Linux kernel’s OCFS2 file system can become outdated when extents are moved or defragmented. This occurs because the cache is not invalidated after these...

4.4CVSS5.9AI score0.00177EPSS

Exploits0