Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

125 matches found

Microsoft CVE
Microsoft CVEadded 2025/09/04 5:21 a.m.4 views

vsock: Do not allow binding to VMADDR_PORT_ANY

...

7.8CVSS6.8AI score0.00152EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2025/09/02 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-38618

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - vsock: Do not allow binding to VMADDRPORTANY It is possible for a vsock to autobind to VMADDRPORTANY. This can cause a use-after-free when a connection is made ...

7.8CVSS7AI score0.00152EPSS
Exploits0References3
AlmaLinux
AlmaLinuxadded 2025/09/02 12:0 a.m.4 views

Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: netsched: hfsc: Fix a potential UAF in hfscdequeue too CVE-2025-37823 kernel: i40e: fix MMIO write access to an invalid page in i40eclearhw CVE-2025-38200 kernel: RDMA/iwcm: Fix...

7.8CVSS6.6AI score0.0018EPSS
Exploits0References17
NVD
NVDadded 2025/08/22 2:15 p.m.8 views

CVE-2025-38618

In the Linux kernel, the following vulnerability has been resolved: vsock: Do not allow binding to VMADDRPORTANY It is possible for a vsock to autobind to VMADDRPORTANY. This can cause a use-after-free when a connection is made to the bound socket. The socket returned by accept also has port...

7.8CVSS0.00152EPSS
Exploits0References11
OSV
OSVadded 2025/08/22 2:15 p.m.1 views

DEBIAN-CVE-2025-38618

In the Linux kernel, the following vulnerability has been resolved: vsock: Do not allow binding to VMADDRPORTANY It is possible for a vsock to autobind to VMADDRPORTANY. This can cause a use-after-free when a connection is made to the bound socket. The socket returned by accept also has port...

7.8CVSS6AI score0.00152EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/08/22 1:1 p.m.6 views

CVE-2025-38618 vsock: Do not allow binding to VMADDR_PORT_ANY

In the Linux kernel, the following vulnerability has been resolved: vsock: Do not allow binding to VMADDRPORTANY It is possible for a vsock to autobind to VMADDRPORTANY. This can cause a use-after-free when a connection is made to the bound socket. The socket returned by accept also has port...

0.00152EPSS
Exploits0References9
OSV
OSVadded 2025/08/22 1:1 p.m.3 views

CVE-2025-38618 vsock: Do not allow binding to VMADDR_PORT_ANY

In the Linux kernel, the following vulnerability has been resolved: vsock: Do not allow binding to VMADDRPORTANY It is possible for a vsock to autobind to VMADDRPORTANY. This can cause a use-after-free when a connection is made to the bound socket. The socket returned by accept also has port...

7.8CVSS6.3AI score0.00152EPSS
Exploits0References14
Tenable Nessus
Tenable Nessusadded 2025/08/15 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2018-14625

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the Linux Kernel where an attacker may be able to have an uncontrolled read to kernel- memory from within a vm guest. A race condition betwe...

7CVSS6.5AI score0.0033EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2025/08/10 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2021-26708

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A local privilege escalation was discovered in the Linux kernel before 5.10.13. Multiple race conditions in the AFVSOCK implementation are caused by wrong locki...

7CVSS6.6AI score0.01602EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2025/08/09 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-38461

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: vsock: Fix transport TOCTOU Transport assignment may race with module unload. Protect...

4.7CVSS6.1AI score0.00108EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2025/07/25 1:8 p.m.4 views

CVE-2025-38403 vsock/vmci: Clear the vmci transport packet properly when initializing it

In the Linux kernel, the following vulnerability has been resolved: vsock/vmci: Clear the vmci transport packet properly when initializing it In vmcitransportpacketinit memset the vmcitransportpacket before populating the fields to avoid any uninitialised data being left in the structure...

6.3AI score0.00168EPSS
Exploits0References8
AstraLinux
AstraLinuxadded 2025/06/16 11:28 a.m.2 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: Discard packets if the transport changes. If the socket has been de-assigned or assigned to another transport, we must discard any packets received because they are not expected and would cause issues when accessing...

5.5CVSS6.1AI score0.00205EPSS
Exploits0References3
RedHat Linux
RedHat Linuxadded 2025/06/02 3:16 a.m.4 views

kernel: vsock: Keep the binding until socket destruction

A flaw was found in the Linux kernel's virtual socket protocol network driver, where an improperly timed socket unbinding could result in a use-after-free issue. This flaw allows an attacker who can create and destroy arbitrary connections on virtual connections to read or modify system memory,...

7.8CVSS7.3AI score0.00824EPSS
Exploits3References5
RedHat Linux
RedHat Linuxadded 2025/06/02 3:5 a.m.8 views

kernel: vsock: Keep the binding until socket destruction

A flaw was found in the Linux kernel's virtual socket protocol network driver, where an improperly timed socket unbinding could result in a use-after-free issue. This flaw allows an attacker who can create and destroy arbitrary connections on virtual connections to read or modify system memory,...

7.8CVSS7.3AI score0.00824EPSS
Exploits3References5
RedHat Linux
RedHat Linuxadded 2025/06/02 2:36 a.m.3 views

kernel: vsock: Keep the binding until socket destruction

A flaw was found in the Linux kernel's virtual socket protocol network driver, where an improperly timed socket unbinding could result in a use-after-free issue. This flaw allows an attacker who can create and destroy arbitrary connections on virtual connections to read or modify system memory,...

7.8CVSS7.3AI score0.00824EPSS
Exploits3References5
RedHat Linux
RedHat Linuxadded 2025/06/02 2:36 a.m.4 views

kernel: vsock: Keep the binding until socket destruction

A flaw was found in the Linux kernel's virtual socket protocol network driver, where an improperly timed socket unbinding could result in a use-after-free issue. This flaw allows an attacker who can create and destroy arbitrary connections on virtual connections to read or modify system memory,...

7.8CVSS7.3AI score0.00824EPSS
Exploits3References5
RedHat Linux
RedHat Linuxadded 2025/06/02 2:36 a.m.4 views

kernel: vsock: Keep the binding until socket destruction

A flaw was found in the Linux kernel's virtual socket protocol network driver, where an improperly timed socket unbinding could result in a use-after-free issue. This flaw allows an attacker who can create and destroy arbitrary connections on virtual connections to read or modify system memory,...

7.8CVSS7.3AI score0.00824EPSS
Exploits3References5
RedHat Linux
RedHat Linuxadded 2025/06/02 2:11 a.m.4 views

kernel: vsock: Keep the binding until socket destruction

A flaw was found in the Linux kernel's virtual socket protocol network driver, where an improperly timed socket unbinding could result in a use-after-free issue. This flaw allows an attacker who can create and destroy arbitrary connections on virtual connections to read or modify system memory,...

7.8CVSS7.3AI score0.00824EPSS
Exploits3References5
RedHat Linux
RedHat Linuxadded 2025/05/26 10:37 a.m.9 views

kernel: vsock: Keep the binding until socket destruction

A flaw was found in the Linux kernel's virtual socket protocol network driver, where an improperly timed socket unbinding could result in a use-after-free issue. This flaw allows an attacker who can create and destroy arbitrary connections on virtual connections to read or modify system memory,...

7.8CVSS7.3AI score0.00824EPSS
Exploits3References5
RedHat Linux
RedHat Linuxadded 2025/05/21 5:15 a.m.5 views

kernel: vsock: Keep the binding until socket destruction

A flaw was found in the Linux kernel's virtual socket protocol network driver, where an improperly timed socket unbinding could result in a use-after-free issue. This flaw allows an attacker who can create and destroy arbitrary connections on virtual connections to read or modify system memory,...

7.8CVSS7.3AI score0.00824EPSS
Exploits3References5
Rows per page
Query Builder