CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OSV•added 2025/07/28 12:15 p.m.•1 views

UBUNTU-CVE-2025-38472

5.5CVSS5.8AI score0.00148EPSS

Exploits0References30

RedHat Linux•added 2025/07/28 10:31 a.m.•6 views

kernel: net: ch9200: fix uninitialised access during mii_nway_restart

In the Linux kernel, the following vulnerability has been resolved: net: ch9200: fix uninitialised access during miinwayrestart In miinwayrestart the code attempts to call mii-mdioread which is ch9200mdioread. ch9200mdioread utilises a local buffer called "buff", which is initialised with...

5.5CVSS7AI score0.00154EPSS

Debian CVE•added 2025/07/25 1:8 p.m.•3 views

CVE-2025-38403

In the Linux kernel, the following vulnerability has been resolved: vsock/vmci: Clear the vmci transport packet properly when initializing it In vmcitransportpacketinit memset the vmcitransportpacket before populating the fields to avoid any uninitialised data being left in the structure...

7.8CVSS5.7AI score0.00168EPSS

Exploits0

RedHat Linux•added 2025/07/21 11:31 a.m.•3 views

kernel: net: ch9200: fix uninitialised access during mii_nway_restart

5.5CVSS7AI score0.00154EPSS

OSV•added 2025/06/28 8:15 a.m.•4 views

AZL-64383 CVE-2025-38086 affecting package kernel for versions less than 6.6.96.1-1

5.5CVSS7AI score0.00154EPSS

Cvelist•added 2025/06/28 7:52 a.m.•5 views

CVE-2025-38086 net: ch9200: fix uninitialised access during mii_nway_restart

0.00154EPSS

OSV•added 2025/06/18 10:15 a.m.•0 views

UBUNTU-CVE-2025-38006

In the Linux kernel, the following vulnerability has been resolved: net: mctp: Don't access ifaindex when missing In mctpdumpaddrinfo, ifaindex can be used to filter interfaces, but only when the struct ifaddrmsg is provided. Otherwise it will be comparing to uninitialised memory - reproducible i...

5.5CVSS6.2AI score0.00155EPSS

Exploits0References26

Tenable Nessus•added 2025/03/05 12:0 a.m.•6 views

Linux Distros Unpatched Vulnerability : CVE-2024-27431

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: cpumap: Zero-initialise xdprxqinfo struct before running XDP program When running an XDP...

5.5CVSS6AI score0.00223EPSS

Exploits0References3

Tenable Nessus•added 2025/03/05 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2024-46744

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Squashfs: sanity check symbolic link size Syzkiller reports a KMSAN: uninit-value in picklink bug. This is caused by an uninitialised page, which is ultimately...

7.8CVSS6.8AI score0.00299EPSS

Exploits0References3

OSV•added 2025/02/27 2:15 a.m.•2 views

UBUNTU-CVE-2025-21709

In the Linux kernel, the following vulnerability has been resolved: kernel: be more careful about dupmmap failures and uprobe registering If a memory allocation fails during dupmmap, the maple tree can be left in an unsafe state for other iterators besides the exit path. All the locks are dropped...

5.5CVSS5.7AI score0.00175EPSS

RedhatCVE•added 2024/11/25 8:54 p.m.•11 views

CVE-2024-11403

A flaw was found in the libjxl package. The JPEG decoder used by the JPEG XL encoder when doing JPEG recompression, such as using JxlEncoderAddJPEGFrame on untrusted input, does not properly check bounds in the presence of incomplete codes. This could lead to an out-of-bounds write. In jpegli,...

5.3CVSS6.8AI score0.0063EPSS

Exploits0References4

NVD•added 2024/11/25 2:15 p.m.•9 views

CVE-2024-11403

There exists an out of bounds read/write in LibJXL versions prior to commit 9cc451b91b74ba470fd72bd48c121e9f33d24c99. The JPEG decoder used by the JPEG XL encoder when doing JPEG recompression i.e. if using JxlEncoderAddJPEGFrame on untrusted input does not properly check bounds in the presence o...

9.8CVSS0.0063EPSS

Vulnrichment•added 2024/11/25 1:8 p.m.•18 views

CVE-2024-11403 Out of Bounds Memory Read/Write in libjxl

6.9CVSS7.1AI score0.0063EPSS

NVD•added 2024/10/21 7:15 p.m.•43 views

CVE-2024-50014

In the Linux kernel, the following vulnerability has been resolved: ext4: fix access to uninitialised lock in fc replay path The following kernel trace can be triggered with fstest generic/629 when executed against a filesystem with fast-commit feature enabled: INFO: trying to register non-static...

5.5CVSS0.00221EPSS

Vulnrichment•added 2024/10/21 6:54 p.m.•9 views

CVE-2024-50014 ext4: fix access to uninitialised lock in fc replay path

6.8AI score0.00221EPSS

Exploits0References4

OSV•added 2024/10/21 6:54 p.m.•16 views

CVE-2024-50014 ext4: fix access to uninitialised lock in fc replay path

5.5CVSS6AI score0.00221EPSS

RedhatCVE•added 2024/09/18 9:47 a.m.•15 views

CVE-2024-46744

A vulnerability was found in the Linux kernel involving the use of uninitialized resources. When a corrupted symbolic link size read is called from the disk, it causes an uninitialized page, resulting in loss of availability of the system. Mitigation Mitigation for this issue is either not...

5.5CVSS7.2AI score0.00299EPSS

Exploits0References4

Vulnrichment•added 2024/09/18 7:12 a.m.•12 views

CVE-2024-46744 Squashfs: sanity check symbolic link size

In the Linux kernel, the following vulnerability has been resolved: Squashfs: sanity check symbolic link size Syzkiller reports a "KMSAN: uninit-value in picklink" bug. This is caused by an uninitialised page, which is ultimately caused by a corrupted symbolic link size read from disk. The reason...

6.6AI score0.00299EPSS

Cvelist•added 2024/09/18 7:12 a.m.•25 views

CVE-2024-46744 Squashfs: sanity check symbolic link size

0.00299EPSS