CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13222 matches found

OSV•added 2025/12/08 1:19 a.m.•4 views

CVE-2023-53760 scsi: ufs: core: mcq: Fix &hwq->cq_lock deadlock issue

In the Linux kernel, the following vulnerability has been resolved: scsi: ufs: core: mcq: Fix &hwq-cqlock deadlock issue When ufshcderrhandler is executed, CQ event interrupt can enter waiting for the same lock. This can happen in ufshcdhandlemcqcqevents and also in ufsmtkmcqintr. The following...

6.3AI score0.00026EPSS

Exploits0References5

Cvelist•added 2025/12/08 1:19 a.m.•26 views

CVE-2023-53746 s390/vfio-ap: fix memory leak in vfio_ap device driver

In the Linux kernel, the following vulnerability has been resolved: s390/vfio-ap: fix memory leak in vfioap device driver The device release callback function invoked to release the matrix device uses the devgetdrvdatadevice dev function to retrieve the pointer to the vfiomatrixdev object in orde...

0.0004EPSS

Exploits0References6

OSV•added 2025/12/08 1:16 a.m.•1 views

UBUNTU-CVE-2025-40307

In the Linux kernel, the following vulnerability has been resolved: exfat: validate cluster allocation bits of the allocation bitmap syzbot created an exfat image with cluster bits not set for the allocation bitmap. exfat-fs reads and uses the allocation bitmap without checking this. The problem ...

5.7AI score0.00024EPSS

Exploits0References21

Cvelist•added 2025/12/08 12:46 a.m.•25 views

CVE-2025-40326 NFSD: Define actions for the new time_deleg FATTR4 attributes

In the Linux kernel, the following vulnerability has been resolved: NFSD: Define actions for the new timedeleg FATTR4 attributes NFSv4 clients won't send legitimate GETATTR requests for these new attributes because they are intended to be used only with CBGETATTR and SETATTR. But NFSD has to do...

0.00026EPSS

Exploits0References2

OSV•added 2025/12/08 12:46 a.m.•4 views

CVE-2025-40326 NFSD: Define actions for the new time_deleg FATTR4 attributes

6.3AI score0.00026EPSS

Exploits0References5

Debian CVE•added 2025/12/08 12:46 a.m.•6 views

CVE-2025-40307

5.2AI score0.00024EPSS

Exploits0

Debian CVE•added 2025/12/08 12:46 a.m.•3 views

CVE-2025-40306

In the Linux kernel, the following vulnerability has been resolved: orangefs: fix xattr related buffer overflow... Willy Tarreau forwarded me a message from Disclosure with the following warning: The helper xattrkey uses the pointer variable in the loop condition rather than dereferencing it. As...

5.4AI score0.00072EPSS

Exploits0

SUSE CVE•added 2025/12/08 12:22 a.m.•1 views

SUSE CVE-2025-40288

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Fix NULL pointer dereference in VRAM logic for APU devices Previously, APU platforms and other scenarios with uninitialized VRAM managers triggered a NULL pointer dereference in ttmresourcemanagerusage. The root cause...

5.5CVSS5.9AI score0.00055EPSS

Exploits0References21

CNNVD•added 2025/12/08 12:0 a.m.•0 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from improper use of the skb control block, which could lead to null pointer dereferencing...

6.1AI score0.00024EPSS

Exploits0References4

Tenable Nessus•added 2025/12/08 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2025-66471

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - urllib3 is a user-friendly HTTP client library for Python. Starting in version 1.0 and prior to 2.6.0, the Streaming API improperly handles highly compressed...

8.9CVSS6.9AI score0.00017EPSS

Exploits0References3

Tenable Nessus•added 2025/12/08 12:0 a.m.•4 views

Linux Distros Unpatched Vulnerability : CVE-2023-53742

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - kcsan: Avoid READONCE in readinstrumentedmemory Haibo Li reported: | Unable to handle kernel paging request at virtual address | ffffff802a0d8d7171 | Mem abort...

5.8AI score0.00028EPSS

Exploits0References3

Tenable Nessus•added 2025/12/08 12:0 a.m.•5 views

Linux Distros Unpatched Vulnerability : CVE-2025-66418

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - urllib3 is a user-friendly HTTP client library for Python. Starting in version 1.24 and prior to 2.6.0, the number of links in the decompression chain was...

8.9CVSS6.8AI score0.00025EPSS

Exploits0References2

Positive Technologies•added 2025/12/08 12:0 a.m.•2 views

PT-2025-49610

Name of the Vulnerable Software and Affected Versions n8n versions 0.123.1 through 1.119.1 Description n8n is an open source workflow automation platform. Versions 0.123.1 through 1.119.1 lack sufficient protections against Remote Code Execution RCE through the project's pre-commit hooks. The Add...

9.4CVSS7.5AI score0.00033EPSS

Exploits1References19

FreeBSD•added 2025/12/08 12:0 a.m.•6 views

powerdns-recursor -- Denial of Service

PowerDNS Team reports: 2025-07: Internal logic flaw in cache management can lead to a denial of service in Recursor 2025-08: Insufficient validation of incoming notifies over TCP can lead to a denial of service in Recursor 2026-01: Crafted zones can lead to increased resource usage in Recursor...

7.5CVSS5.5AI score0.00117EPSS

Exploits0References3

EUVD•added 2025/12/07 12:30 a.m.•2 views

EUVD-2025-201587

In the Linux kernel, the following vulnerability has been resolved: cifs: client: fix memory leak in smb3fscontextparseparam The user calls fsconfig twice, but when the program exits, free only frees ctx-source for the second fsconfig, not the first. Regarding fc-source, there is no code in the f...

6AI score0.00042EPSS

Exploits0References5

OSV•added 2025/12/06 10:15 p.m.•1 views

DEBIAN-CVE-2025-40288

5.2AI score0.00055EPSS

Exploits0References1