CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

379 matches found

GithubExploit•added 2 days ago•69 views

Exploit for CVE-2026-46243

cifswitch-check A shell script to check whether a Linux syste...

7.8CVSS6AI score0.00017EPSS

Exploits4

GithubExploit•added 5 days ago•73 views

Exploit for Use After Free in Linux Linux_Kernel

CVE-2024-1086 Universal local privilege escalation Proof-of-C...

7.8CVSS7AI score0.85264EPSS

Exploits15

Cvelist•added 2026/05/27 9:24 a.m.•27 views

CVE-2026-45840 openvswitch: cap upcall PID array size and pre-size vport replies

In the Linux kernel, the following vulnerability has been resolved: openvswitch: cap upcall PID array size and pre-size vport replies The vport netlink reply helpers allocate a fixed-size skb with nlmsgnewNLMSGDEFAULTSIZE, ... but serialize the full upcall PID array via ovsvportgetupcallportids...

0.00032EPSS

Exploits0References8

RedHat Linux•added 2026/05/15 5:23 p.m.•9 views

kernel: "Dirty Frag" ESP XFRM variant is a new universal Local Privilege Escalation (LPE) vulnerability in the Linux kernel

A flaw was found in the Linux kernel's xfrm-ESP and RxRPC subsystems. Unsafe in-place cryptographic processing of shared socket buffer fragments allows a low-privileged local attacker to corrupt page-cache contents of readable files, including sensitive system files, and gain root privileges. The...

8.8CVSS6.1AI score0.38453EPSS

Exploits29References6

RedHat Linux•added 2026/05/13 12:16 a.m.•9 views

kernel: "Dirty Frag" ESP XFRM variant is a new universal Local Privilege Escalation (LPE) vulnerability in the Linux kernel

8.8CVSS6.1AI score0.38453EPSS

Exploits29References6

RedHat Linux•added 2026/05/12 10:31 p.m.•6 views

kernel: "Dirty Frag" ESP XFRM variant is a new universal Local Privilege Escalation (LPE) vulnerability in the Linux kernel

8.8CVSS6.1AI score0.38453EPSS

Exploits29References6

RedHat Linux•added 2026/05/12 11:50 a.m.•7 views

kernel: "Dirty Frag" ESP XFRM variant is a new universal Local Privilege Escalation (LPE) vulnerability in the Linux kernel

8.8CVSS6.1AI score0.38453EPSS

Exploits29References6

Tenable Nessus•added 2026/05/07 12:0 a.m.•6 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: runc (UTSA-2026-016515)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016515 advisory. runc is a CLI tool for spawning and running containers according to the OCI specification. runc 1.1.13 and earlier, as well as 1.2.0-rc2 and earlier, can be tricked...

3.6CVSS6.6AI score0.0015EPSS

Exploits0References5

AstraLinux•added 2026/05/03 11:59 p.m.•6 views

Astra Linux - уязвимость в linux

The overlayfs implementation in the Linux kernel failed to properly validate, regarding user namespaces, the setting of file capabilities on files in the underlying file system. Due to the combination of unprivileged user namespaces and a patch carried in the Ubuntu kernel that allows unprivilege...

8.8CVSS6.9AI score0.79706EPSS

Exploits27References2

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: userns and mntidmap leak in opentreeattr2 Once wantmountsetattr has returned a positive, it does require finishmountkattr to release -mntuserns. Failing domountsetattr does not change that. As the result, we can end up leaking...

5.5CVSS6.5AI score0.00074EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•1 views

Astra Linux - уязвимость в runc-app

Runc is a CLI tool for spawning and running containers according to the OCI specification. Runc versions 1.1.13 and earlier, as well as 1.2.0-rc2 and earlier, can be exploited by creating empty files or directories in arbitrary locations within the host filesystem. This is achieved by sharing a...

3.6CVSS6.8AI score0.0015EPSS

Exploits0References2

AstraLinux•added 2026/05/03 11:59 p.m.•2 views

Astra Linux - уязвимость в linux, linux-5.10

A heap-based buffer overflow flaw was discovered in the way the legacyparseparam function in the Linux kernel’s Filesystem Context functionality verifies the length of the supplied parameters. A non-privileged user if non-privileged user namespaces are enabled, otherwise requiring CAPSYSADMIN...

8.4CVSS7.2AI score0.018EPSS

Exploits11References2

GithubExploit•added 2026/04/25 2:42 p.m.•88 views

Exploit for Incorrect Authorization in Canonical Ubuntu_Linux

CVE-2023-32629 — OverlayFS Local Full Privilege Escalation Ove...

7.8CVSS7.2AI score0.72531EPSS

Exploits11

Tenable Nessus•added 2026/04/03 12:0 a.m.•3 views

Linux Distros Unpatched Vulnerability : CVE-2026-23405

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - apparmor: fix: limit the number of levels of policy namespaces Currently the number of policy namespaces is not bounded relying on the user namespace limit...

5.5CVSS5.8AI score0.00009EPSS

Exploits0References2

SUSE CVE•added 2026/04/02 8:39 a.m.•4 views

SUSE CVE-2026-23405

In the Linux kernel, the following vulnerability has been resolved: apparmor: fix: limit the number of levels of policy namespaces Currently the number of policy namespaces is not bounded relying on the user namespace limit. However policy namespaces aren't strictly tied to user namespaces and it...

5.5CVSS5.7AI score0.00009EPSS

Exploits0References22