CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

207 matches found

OSV•added 2026/02/14 3:9 p.m.•3 views

CVE-2026-23118 rxrpc: Fix data-race warning and potential load/store tearing

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix data-race warning and potential load/store tearing Fix the following: BUG: KCSAN: data-race in rxrpcpeerkeepaliveworker / rxrpcsenddatapacket which is reporting an issue with the reads and writes to -lasttxat in:...

4.7CVSS5.3AI score0.00013EPSS

Exploits0References7

OSV•added 2026/01/30 12:27 p.m.•4 views

OESA-2026-1247 tinyxml2 security update

TinyXML-2 is a simple, small, efficient, C++ XML parser that can be easily integrated into other programs. TinyXML-2 parses an XML document, and builds from that a Document Object Model DOM that can be read, modified, and saved. Security Fixes: TinyXML2 through 10.0.0 has a reachable assertion fo...

6.5CVSS5.9AI score0.00217EPSS

Exploits2References3

Tenable Nessus•added 2026/01/16 12:0 a.m.•1 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001204)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001204 advisory. In the function wmisetie, the length validation code does not handle unsigned integer overflow properly. As a result, a large value of the 'ielen' argument can cause...

7.8CVSS7.7AI score0.00152EPSS

Exploits0References11

Positive Technologies•added 2026/01/01 12:0 a.m.•1 views

PT-2026-27744

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.19.0-virtme 45 Description The Linux kernel contained a flaw in the ETS scheduler offload path where averaging over the sums of quanta could lead to an integer overflow and subsequent division by zero. This cou...

7.8CVSS5.8AI score0.00765EPSS

Exploits1References212

RedHat Linux•added 2025/12/09 8:32 a.m.•1 views

expat: integer overflow in the doProlog function

A flaw was found in expat. The vulnerability occurs due to large content in element type declarations when there is an element declaration handler present which leads to an integer overflow. This flaw allows an attacker to inject an unsigned integer, leading to a crash or a denial of service...

7.5CVSS7.4AI score0.037EPSS

Exploits0References4

RedHat Linux•added 2025/12/09 7:23 a.m.•0 views

expat: integer overflow in the doProlog function

7.5CVSS7.4AI score0.037EPSS

Exploits0References4

RedHat Linux•added 2025/11/19 10:11 p.m.•1 views

expat: integer overflow in the doProlog function

7.5CVSS7.4AI score0.037EPSS

Exploits0References4

RedHat Linux•added 2025/11/11 8:21 a.m.•2 views

kernel: rtc: pcf85063: fix potential OOB write in PCF85063 NVMEM read

In the Linux kernel, the following vulnerability has been resolved: rtc: pcf85063: fix potential OOB write in PCF85063 NVMEM read The nvmem interface supports variable buffer sizes, while the regmap interface operates with fixed-size storage. If an nvmem client uses a buffer size less than 4 byte...

7.8CVSS6.9AI score0.00025EPSS

Exploits0References5

RedHat Linux•added 2025/11/11 8:21 a.m.•1 views

kernel: block: fix adding folio to bio

In the Linux kernel, the following vulnerability has been resolved: block: fix adding folio to bio 4GB folio is possible on some ARCHs, such as aarch64, 16GB hugepage is supported, then 'offset' of folio can't be held in 'unsigned int', cause warning in bioaddfolionofail and IO failure. Fix it by...

5.5CVSS5.7AI score0.00063EPSS

Exploits0References5

Tenable Nessus•added 2025/11/05 12:0 a.m.•1 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-990103)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990103 advisory. In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix inode number range checks Patch series nilfs2: fix potential issues related to reserv...

7.8CVSS6.1AI score0.00013EPSS

Exploits0References4

Tenable Nessus•added 2025/10/30 12:0 a.m.•2 views

ImageMagick < 7.1.2-8 DoS (GHSA-wpp4-vqfq-v4hp)

The remote host has a version of ImageMagick installed that is prior to prior to 7.1.2-8. It is, therefore, affected by denial of service vulnerability as referenced in GHSA-wpp4-vqfq-v4hp advisory. - ImageMagick is a software suite to create, edit, compose, or convert bitmap images. ImageMagick...

5.5CVSS5.4AI score0.00018EPSS

Exploits1References2

OSV•added 2025/10/10 11:45 p.m.•1 views

GHSA-XC79-566C-J4QX Parallax is vulnerable to DoS via malicious p2p message

Impact A vulnerable node can be made to consume very large amounts of memory when handling specially crafted p2p messages sent from an attacker node. In order to carry out the attack, the attacker establishes a peer connections to the victim, and sends a malicious GetBlockHeadersRequest message...

7.5CVSS7AI score

Exploits0References5