CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

AstraLinux•added 2026/05/20 5:53 a.m.•2 views

Astra Linux - уязвимость в linux, linux-5.10

In the Linux kernel, the following vulnerability has been resolved: media: vivid: fix compose-height boundary issue Syzkaller identified a bug: BUG: Unable to handle page faults for address: ffffc9000a3b1000 PF: Supervisor write access in kernel mode PF: Errorcode0x0002 – Not-present page PGD...

5.5CVSS6.1AI score0.00014EPSS

AstraLinux•added 2026/05/03 11:59 p.m.•3 views

Astra Linux - уязвимость в linux-5.10, linux-5.15, linux

A memory leak flaw, along with potential division by zero and integer overflow issues, have been detected in the Linux kernel’s V4L2 and vivid test code functionality. This issue occurs when a user triggers ioctls, such as the VIDIOCSDVTIMINGS ioctl. This could allow a local user to crash the...

5.5CVSS6.2AI score0.00016EPSS

UbuntuCve•added 2026/01/30 9:15 p.m.•1 views

CVE-2025-24293

Active Storage allowed transformation methods potentially unsafe Active Storage attempts to prevent the use of potentially unsafe image transformation methods and parameters by default. The default allowed list contains three methods allow for the circumvention of the safe defaults which enables...

9.2CVSS6.2AI score0.00178EPSS

Exploits0References8

Tenable Nessus•added 2026/01/22 12:0 a.m.•3 views

Azure Linux 3.0 Security Update: kernel (CVE-2025-38226)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38226 advisory. - In the Linux kernel, the following vulnerability has been resolved: media: vivid: Change the siize of the...

7.8CVSS5.4AI score0.00072EPSS

Tenable Nessus•added 2026/01/16 12:0 a.m.•3 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003644)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003644 advisory. An issue was discovered in drivers/media/platform/vivid in the Linux kernel through 5.3.8. It is exploitable for privilege escalation on some Linux distributions whe...

7CVSS7AI score0.00893EPSS

Exploits1References17

Tenable Nessus•added 2026/01/16 12:0 a.m.•1 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004200)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004200 advisory. An issue was discovered in drivers/media/platform/vivid in the Linux kernel through 5.3.8. It is exploitable for privilege escalation on some Linux distributions whe...

7CVSS7AI score0.00893EPSS

Exploits1References17

Tenable Nessus•added 2026/01/07 12:0 a.m.•1 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000273)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000273 advisory. An issue was discovered in drivers/media/platform/vivid in the Linux kernel through 5.3.8. It is exploitable for privilege escalation on some Linux distributions whe...

7CVSS7AI score0.00893EPSS

Exploits1References4

EUVD•added 2025/11/11 8:46 p.m.•1 views

EUVD-2025-100717

Malicious code in vividviperz3n npm...

OSSF Malicious Packages•added 2025/11/11 8:46 p.m.•2 views

Malicious code in vivid_viper_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 63d40c5e52ebf06af24f18897761a7b616b6aac6a1c7e1a2daec8e9f0a8022bd This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score

EUVD•added 2025/11/11 7:47 a.m.•1 views

EUVD-2025-74097

Malicious code in vividslothorange-15 npm...

EUVD•added 2025/11/11 7:47 a.m.•1 views

EUVD-2025-74099

Malicious code in vividconstrictoramethyst-57 npm...

EUVD•added 2025/11/11 5:18 a.m.•0 views

EUVD-2025-73005

Malicious code in vividmarlinz3n npm...

OSV•added 2025/11/11 5:18 a.m.•1 views

MAL-2025-97285 Malicious code in vivid_marlin_z3n (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b8db8d9c15f27b1c85d35fd3b43b75eb7058bd7e60d17e32ca649be63fe69cf5 This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.8AI score

EUVD•added 2025/11/11 5:18 a.m.•2 views

EUVD-2025-73007

Malicious code in vividbirdz3n npm...

EUVD•added 2025/11/11 5:18 a.m.•1 views

EUVD-2025-73006

Malicious code in vividdingoz3n npm...

EUVD•added 2025/11/11 4:25 a.m.•2 views

EUVD-2025-62080

Malicious code in vividharez3n npm...

OSSF Malicious Packages•added 2025/11/11 12:41 a.m.•2 views

Malicious code in vivid-aqua-thrush (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 11dc37fff44a5e62dddd8cbf40b3903605463bc45996550ab2d392162a89e17e This package appears to be part of the tea.xyz token reward campaign that flooded npm. These packages typically contain autopublish scripts auto.js,...

6.9AI score

EUVD•added 2025/11/11 12:41 a.m.•1 views

EUVD-2025-51164

Malicious code in vivid-maroon-wildebeest npm...

EUVD•added 2025/11/11 12:41 a.m.•1 views

EUVD-2025-51166

Malicious code in vivid-aqua-thrush npm...