CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•1 views

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

A speculative race condition SRC vulnerability that affects modern CPU architectures supporting speculative execution related to Spectre V1 has been disclosed. An unauthenticated attacker can exploit this vulnerability to disclose arbitrary data from the CPU using race conditions to access the...

5.7CVSS6.5AI score0.00897EPSS

Exploits0References2

Packet Storm News•added 2026/05/14 12:0 a.m.•5 views

UGen: An Agentic Framework for Generating Microarchitectural Attack PoCs

Microarchitectural attacks continue to evolve, uncovering new exploitation vectors in modern processors. From a defensive perspective, assessing a system's susceptibility to such attacks remains challenging. Developing functional attack implementations is labor-intensive, requires deep...

6AI score

Exploits0

Tenable Nessus•added 2026/01/07 12:0 a.m.•1 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000205)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000205 advisory. An information disclosure vulnerability exists when certain central processing units CPU speculatively access memory. An attacker who successfully exploited the...

5.6CVSS7.1AI score0.19224EPSS

Exploits4References4

SUSE CVE•added 2025/03/28 3:38 a.m.•1 views

SUSE CVE-2023-52997

In the Linux kernel, the following vulnerability has been resolved: ipv4: prevent potential spectre v1 gadget in ipmetricsconvert if !type continue; if type RTAXMAX return -EINVAL; ... metricstype - 1 = val; @type being used as an array index, we need to prevent cpu speculation or risk leaking...

5.5CVSS6.3AI score0.00015EPSS

Exploits0References4

CNNVD•added 2025/03/27 12:0 a.m.•0 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a Spectre v1 attack risk in netlink attribute parsing...

7.8CVSS5.8AI score0.00025EPSS

Exploits0References7

OSV•added 2024/03/15 6:15 p.m.•0 views

UBUNTU-CVE-2024-2193

A Speculative Race Condition SRC vulnerability that impacts modern CPU architectures supporting speculative execution related to Spectre V1 has been disclosed. An unauthenticated attacker can exploit this vulnerability to disclose arbitrary data from the CPU using race conditions to access the...

5.7CVSS6.2AI score0.00897EPSS

Exploits0References9

Positive Technologies•added 2024/03/12 12:0 a.m.•7 views

PT-2024-2060 · Amd +7 · Amd Cpus +7

Name of the Vulnerable Software and Affected Versions: Modern CPU architectures supporting speculative execution affected versions not specified Description: A Speculative Race Condition SRC vulnerability, known as GhostRace, has been disclosed. This vulnerability impacts modern CPU architectures...

7.5CVSS7.2AI score0.03118EPSS

Exploits0References147

Microsoft CVE•added 2023/05/10 7:0 a.m.•1 views

Spectre V1 Gadget in do_prlimit in the Linux Kernel

...

5.3CVSS7.1AI score0.00142EPSS

Exploits0

Positive Technologies•added 2023/03/07 12:0 a.m.•1 views

PT-2023-35443 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.15.94 Description: The issue is related to a potential Spectre v1 gadget in the xfrm xlate32 attr function. The actual impact and attack plausibility have not yet been proven. Recommendations: For Linux Kerne...

7.1AI score

Exploits0References1

Positive Technologies•added 2023/02/13 12:0 a.m.•2 views

PT-2023-34981 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.1.9 Description: The issue concerns a potential Spectre v1 gadget in the netlink component. The actual impact and attack plausibility have not yet been proven. It was introduced in version v2.6.15 and fixed i...

7.2AI score

Exploits0References1

OSV•added 2022/11/21 10:15 p.m.•1 views

CVE-2022-30257

An issue was discovered in Technitium DNS Server through 8.0.2 that allows variant V1 of unintended domain name resolution. A revoked domain name can still be resolvable for a long time, including expired domains and taken-down malicious domains. The effects of an exploit would be widespread and...

9.8CVSS5.8AI score0.00454EPSS

Exploits0References1

OSV•added 2019/09/03 6:15 p.m.•0 views

DEBIAN-CVE-2019-1125

An information disclosure vulnerability exists when certain central processing units CPU speculatively access memory. An attacker who successfully exploited the vulnerability could read privileged data across trust boundaries. To exploit this vulnerability, an attacker would have to log on to an...

5.6CVSS7.1AI score0.19224EPSS

Exploits4References1

OSV•added 2019/08/06 5:0 p.m.•1 views

UBUNTU-CVE-2019-1125

5.6CVSS7AI score0.19224EPSS

Exploits4References8

Positive Technologies•added 2019/07/09 12:0 a.m.•3 views

PT-2019-4073 · Linux +9 · Linux +9

Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Intel CPUs affected versions not specified AMD CPUs affected versions not specified ARM CPUs affected versions not specified Linux affected versions not specified Description: An information disclosure...

9.8CVSS6AI score0.9427EPSS

Exploits66References1012

The Hacker News•added 2018/07/27 8:31 a.m.•1 views

NetSpectre — New Remote Spectre Attack Steals Data Over the Network

A team of security researchers has discovered a new Spectre attack that can be launched over the network, unlike all other Spectre variants that require some form of local code execution on the target system. Dubbed "NetSpectre ," the new remote side-channel attack, which is related to Spectre...

5.6CVSS8.9AI score0.9427EPSS

Exploits9

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by