CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1059 matches found

Tenable Nessus•added 2025/12/18 12:0 a.m.•1 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2025-991279)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-991279 advisory. In the Linux kernel, the following vulnerability has been resolved: net: If sock is dead don't access sock's skwq in skstreamwaitmemory Fixes the below NULL pointer...

5.5CVSS5.7AI score0.00147EPSS

Exploits0References4

SUSE CVE•added 2025/12/17 12:25 a.m.•1 views

SUSE CVE-2025-68223

In the Linux kernel, the following vulnerability has been resolved: drm/radeon: delete radeonfenceprocess in issignaled, no deadlock Delete the attempt to progress the queue when checking if fence is signaled. This avoids deadlock. dma-fenceops::signaled can be called with the fence lock in unkno...

4.7CVSS6.4AI score0.00099EPSS

Exploits0References12

SUSE CVE•added 2025/12/17 12:23 a.m.•1 views

SUSE CVE-2025-68314

In the Linux kernel, the following vulnerability has been resolved: drm/msm: make sure lastfence is always updated Update lastfence in the vm-bind path instead of kernel managed path. lastfence is used to wait for work to finish in vmbind contexts but not used for kernel managed contexts. This...

6.4AI score0.00145EPSS

Exploits0References3

OSV•added 2025/12/16 4:16 p.m.•1 views

UBUNTU-CVE-2025-68314

5.7AI score0.00145EPSS

Exploits0References10

CVE•added 2025/12/16 3:39 p.m.•13 views

CVE-2025-68314

The CVE-2025-68314 entry concerns the Linux kernel component drm/msm. The vulnerability stems from last_fence not being updated in the vm-bind path, causing last_fence to not be waited on at context close for certain contexts, which can lead to faults as resources are freed while still in use. A ...

6AI score0.00145EPSS

Exploits0References2

OSV•added 2025/12/16 2:15 p.m.•0 views

UBUNTU-CVE-2025-68223

5.5CVSS5.7AI score0.00099EPSS

Exploits0References22

OSV•added 2025/12/16 1:57 p.m.•2 views

CVE-2025-68223 drm/radeon: delete radeon_fence_process in is_signaled, no deadlock

5.5CVSS6.2AI score0.00099EPSS

Exploits0References8

ATTACKERKB•added 2025/12/16 1:57 p.m.•4 views

CVE-2025-68223

5.2AI score0.00099EPSS

Exploits0References6Affected Software1

OSV•added 2025/12/16 12:0 a.m.•9 views

ALSA-2025:23241 Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: cloneprivatemnt: make sure that caller has CAPSYSADMIN in the right userns CVE-2025-38499 kernel: iommufd: Fix race during abort for file descriptors CVE-2025-39966 kernel: tls: wait for...

7CVSS6.2AI score0.00162EPSS

Exploits0References8

CNNVD•added 2025/12/16 12:0 a.m.•4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates from an uninitialized TxBlock0.waitor wait queue, which could lead to a system crash...

6AI score0.00177EPSS

Exploits0References8

Positive Technologies•added 2025/12/16 12:0 a.m.•4 views

PT-2025-51620

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s DRM/XE/GUC subsystem where a Dead CT worker may not be properly synchronized during device unbinding. This can lead to the worker attempting to use...

5.5AI score0.00544EPSS

Exploits3References386

AlmaLinux•added 2025/12/16 12:0 a.m.•10 views

Important: kernel security update

7CVSS6.3AI score0.00162EPSS

Exploits0References8

SUSE Linux•added 2025/12/15 11:9 a.m.•8 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP7 kernel was updated to fix various security issues The following security issues were fixed: CVE-2022-50253: bpf: make sure skb-len != 0 when redirecting to a tunneling device bsc1249912. CVE-2023-53676: scsi: target: iscsi: Fix buffer overflow in...

8.7CVSS8.2AI score0.00316EPSS

Exploits1References320

Cvelist•added 2025/12/10 11:55 p.m.•27 views

CVE-2025-67648 Shopware's inproper input validation can lead to Reflected XSS through Storefront Login Page

Shopware is an open commerce platform. Versions 6.4.6.0 through 6.6.10.9 and 6.7.0.0 through 6.7.5.0 have a Reflected XSS vulnerability in AuthController.php. A request parameter from the login page URL is directly rendered within the Twig template of the Storefront login page without further...

7.1CVSS0.00158EPSS

Exploits0References2

RedhatCVE•added 2025/12/10 8:34 a.m.•3 views

CVE-2023-53815

In the Linux kernel, the following vulnerability has been resolved: posix-timers: Prevent RT livelock in itimerdelete itimerdelete has a retry loop when the timer is concurrently expired. On non-RT kernels this just spin-waits until the timer callback has completed, except for posix CPU timers...

4.7CVSS5.2AI score0.00161EPSS

Exploits0References4

SUSE CVE•added 2025/12/10 12:35 a.m.•2 views

SUSE CVE-2023-53815

5.5CVSS6.4AI score0.00161EPSS

Exploits0References17

SUSE CVE•added 2025/12/10 12:34 a.m.•1 views

SUSE CVE-2023-53848

In the Linux kernel, the following vulnerability has been resolved: md/raid5-cache: fix a deadlock in r5lexitlog Commit b13015af94cf "md/raid5-cache: Clear conf-log after finishing work" introduce a new problem: // caller hold reconfigmutex r5lexitlog flushwork&log-disablewritebackwork...

5.5CVSS6.5AI score0.00191EPSS

Exploits0References19

SUSE CVE•added 2025/12/10 12:34 a.m.•3 views

SUSE CVE-2023-53857

In the Linux kernel, the following vulnerability has been resolved: bpf: bpfskstorage: Fix invalid wait context lockdep report './testprogs -t testlocalstorage' reported a splat: 27.137569 ============================= 27.138122 BUG: Invalid wait context 27.138650 6.5.0-03980-gd11ae1b16b0a 247...

5.5CVSS6.1AI score0.00176EPSS

Exploits0References17