CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.1.0-rc8+ Description The Linux kernel tracing subsystem contained a flaw in the tracing/hist component. Specifically, an out-of-bounds write could occur on the action data.var ref idx array when generating a...

6.4AI score0.00017EPSS

Exploits0References8

Tenable Nessus•added 2025/10/07 12:0 a.m.•1 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986595)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986595 advisory. In the Linux kernel, the following vulnerability has been resolved: net/iucv: Avoid explicit cpumask var allocation on stack For CONFIGCPUMASKOFFSTACK=y kernel,...

7.1CVSS6.3AI score0.00015EPSS

Exploits0References3

Tenable Nessus•added 2025/10/07 12:0 a.m.•2 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987171)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987171 advisory. In the Linux kernel, the following vulnerability has been resolved: gsmi: fix null-deref in gsmigetvariable We can get EFI variables without fetching the attribute, ...

5.5CVSS6.2AI score0.00012EPSS

Exploits0References4

EUVD•added 2025/10/06 8:18 p.m.•1 views

EUVD-2025-32552

SillyTavern Web Interface Vulnerable DNS Rebinding...

9.6CVSS6.4AI score0.00009EPSS

Exploits0References6

CVE•added 2025/10/06 3:31 p.m.•31 views

CVE-2025-59159

SillyTavern’s web UI (prior to 1.13.4) is vulnerable to DNS rebinding, enabling attackers to read chats, inject HTML, install extensions, and execute phishing-style actions. The issue is mitigated in 1.13.4 by adding a host validation setting (hostWhitelist.enabled) in config.yaml or SILLYTAVERN_...

9.6CVSS6.1AI score0.00009EPSS

Exploits0References5

OSV•added 2025/10/06 11:15 a.m.•2 views

CVE-2025-11332

A vulnerability was determined in CmsEasy up to 7.7.7. This affects an unknown function in the library lib/inc/view.php of the component URL Handler. Executing a manipulation of the argument PHPSELF can lead to cross site scripting. The attack may be launched remotely. The exploit has been public...

6.1CVSS4AI score0.00029EPSS

Exploits1References4

Positive Technologies•added 2025/10/06 12:0 a.m.•6 views

PT-2025-40903

Name of the Vulnerable Software and Affected Versions SillyTavern versions prior to 1.13.4 Description SillyTavern is a locally installed user interface for interacting with large language models, image generation engines, and text-to-speech models. The web user interface, in versions prior to...

9.6CVSS7.5AI score0.00009EPSS

Exploits0References16

NVD•added 2025/10/04 8:15 a.m.•2 views

CVE-2025-39931

In the Linux kernel, the following vulnerability has been resolved: crypto: afalg - Set merge to zero early in afalgsendmsg If an error causes afalgsendmsg to abort, ctx-merge may contain a garbage value from the previous loop. This may then trigger a crash on the next entry into afalgsendmsg whe...

5.5CVSS0.00024EPSS

Exploits0References6

CNNVD•added 2025/10/04 12:0 a.m.•3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from not adding histograms with referenced variables to histvars, which could result in referenced variables being...

5.9AI score0.00017EPSS

Exploits0References8

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by