CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3037 matches found

RedHat Linux•added 2026/01/05 6:9 a.m.•3 views

xorg: xmayland: Value overflow in XkbSetCompatMap()

A flaw was identified in the X.Org X server’s X Keyboard Xkb extension where improper bounds checking in the XkbSetCompatMap function can cause an unsigned short overflow. If an attacker sends specially crafted input data, the value calculation may overflow, leading to memory corruption or a cras...

7.3CVSS5.9AI score0.00255EPSS

Exploits0References5

NVD•added 2026/01/02 4:17 p.m.•2 views

CVE-2025-67269

An integer underflow vulnerability exists in the nextstate function in gpsd/packet.c of gpsd versions prior to commit ffa1d6f40bca0b035fc7f5e563160ebb67199da7. When parsing a NAVCOM packet, the payload length is calculated using lexer-length = sizetc - 4 without checking if the input byte c is le...

7.5CVSS0.00404EPSS

Exploits2References3

UbuntuCve•added 2026/01/02 4:17 p.m.•2 views

CVE-2025-67269

7.5CVSS5.9AI score0.00404EPSS

Exploits2References3

OSV•added 2026/01/02 4:17 p.m.•1 views

UBUNTU-CVE-2025-67269

7.5CVSS5.8AI score0.00404EPSS

Exploits2References4

Vulnrichment•added 2026/01/02 12:0 a.m.•1 views

CVE-2025-67269

6.5AI score0.00404EPSS

Exploits2References3

CVE•added 2026/01/02 12:0 a.m.•51 views

CVE-2025-67269

CVE-2025-67269 describes an integer underflow in gpsd/packet.c:nextstate() during NAVCOM packet parsing. The payload length is computed as lexer->length = (size_t)c - 4 without validating that c >= 4, causing an unsigned underflow to a very large value and a loop that can exhaust CPU (DoS)....

7.5CVSS6.5AI score0.00404EPSS

Exploits2References3Affected Software1

Positive Technologies•added 2026/01/01 12:0 a.m.•7 views

PT-2026-27744

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.19.0-virtme 45 Description The Linux kernel contained a flaw in the ETS scheduler offload path where averaging over the sums of quanta could lead to an integer overflow and subsequent division by zero. This cou...

5.5CVSS5.8AI score0.00168EPSS

Exploits0References216

Positive Technologies•added 2026/01/01 12:0 a.m.•5 views

PT-2026-6137

In the Linux kernel, the following vulnerability has been resolved: iommu/io-pgtable-arm: fix size t signedness bug in unmap path arm lpae unmap returns size t but was returning -ENOENT negative error code when encountering an unmapped PTE. Since size t is unsigned, -ENOENT typically -2 becomes a...

5.3AI score0.00107EPSS

Exploits0References5

OSV•added 2025/12/31 12:18 a.m.•3 views

OSV-2025-1049 Heap-buffer-overflow in unsigned char* std::__1::vector<unsigned char, std::__1::allocator<unsigned char

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=472222304 Crash type: Heap-buffer-overflow READ 1 Crash state: unsigned char std::1::vectorunsigned char, std::1::allocatorunsigned char pcpp::TLSECPointFormatExtension::getECPointFormatList...

5.4AI score

Exploits0References1

EUVD•added 2025/12/30 3:30 p.m.•3 views

EUVD-2023-60403

In the Linux kernel, the following vulnerability has been resolved: mlx5: fix skb leak while fifo resync and push During ptp resync operation SKBs were poped from the fifo but were never freed neither by napiconsume nor by devkfreeskbany. Add call to napiconsumeskb to properly free SKBs. Another...

6AI score0.00166EPSS

Exploits0References4

NVD•added 2025/12/30 1:16 p.m.•5 views

CVE-2023-54238

0.00166EPSS

Exploits0References3

OSV•added 2025/12/30 1:16 p.m.•7 views

UBUNTU-CVE-2023-54238

5.7AI score0.00166EPSS

Exploits0References6

UbuntuCve•added 2025/12/30 1:16 p.m.•1 views

CVE-2023-54238

5.7AI score0.00166EPSS

Exploits0References5

Positive Technologies•added 2025/12/30 12:0 a.m.•7 views

PT-2025-53932

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the Linux kernel’s crypto/hisi zip module related to a mismatch when getting or setting the sgl sge nr variable. The type of sgl sge nr is u16, but it was being access...

7.8CVSS6.2AI score0.00465EPSS

Exploits2References895

RedhatCVE•added 2025/12/29 2:1 p.m.•2 views

CVE-2025-68972

A flaw was found in GnuPG. An adversary can exploit this vulnerability by crafting a signed message that includes a form feed character \f at the end of a plaintext line. This allows the adversary to append additional, unsigned text to the message while the signature verification still reports...

5.9CVSS5.7AI score0.001EPSS

Exploits0References5

RedhatCVE•added 2025/12/25 4:5 p.m.•6 views

CVE-2025-68344

In the Linux kernel, the following vulnerability has been resolved: ALSA: wavefront: Fix integer overflow in sample size validation The wavefrontsendsample function has an integer overflow issue when validating sample size. The header-size field is u32 but gets cast to int for comparison with...

6.1AI score0.00177EPSS

Exploits0References4

SUSE CVE•added 2025/12/25 12:24 a.m.•1 views

SUSE CVE-2025-68344

6.6CVSS6.9AI score0.00177EPSS

Exploits0References7

Cvelist•added 2025/12/24 3:51 p.m.•24 views

CVE-2025-68750 usb: potential integer overflow in usbg_make_tpg()

In the Linux kernel, the following vulnerability has been resolved: usb: potential integer overflow in usbgmaketpg The variable tpgt in usbgmaketpg is defined as unsigned long and is assigned to tpgt-tporttpgt, which is defined as u16. This may cause an integer overflow when tpgt is greater than...

0.0018EPSS

Exploits0References8

EUVD•added 2025/12/24 12:30 p.m.•1 views

EUVD-2025-205110

6.3AI score0.00177EPSS

Exploits0References5

NVD•added 2025/12/24 11:15 a.m.•6 views

CVE-2025-68344

0.00177EPSS

Exploits0References8

Rows per page