CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

14 matches found

AstraLinux•added 2026/05/20 5:53 a.m.•3 views

Astra Linux - уязвимость в linux-5.10, linux

In the Linux kernel, the following vulnerabilities have been resolved: ALSA: emu10k1: Fixed an out-of-bounds access in sndemu10k1pcmchannelalloc The voice allocator sometimes begins allocating from near the end of the array, and then wraps around. However, the sndemu10k1pcmchannelalloc function...

7.8CVSS6.5AI score0.00018EPSS

Exploits0References2

AstraLinux•added 2026/05/20 5:53 a.m.•1 views

Astra Linux - уязвимость в linux, linux-5.10, linux-5.15, linux-6.1

In the Linux kernel, the following vulnerability has been resolved: usb: aqc111: Check the packet for fixup for true limits. If a device sends a packet that lies between 0 and sizeofu64, the value passed to skbtrim as the packet length will wrap around, resulting in a very large value. The driver...

5.5CVSS6AI score0.00009EPSS

Exploits0References2

Snyk•added 2026/04/12 7:7 p.m.•5 views

Integer Underflow (Wrap or Wraparound)

Overview Affected versions of this package are vulnerable to Integer Underflow Wrap or Wraparound via the MakerNote decoding process for Fuji and Olympus cameras. An attacker can cause a crash or leak information by providing specially crafted image files. Remediation A fix was pushed into the...

7.1CVSS5.8AI score0.00008EPSS

Exploits0References2

Tenable Nessus•added 2026/03/03 12:0 a.m.•2 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-005581)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005581 advisory. In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxtre: wraparound mbox producer index Driver is not handling the wraparound of the mbox...

5.5CVSS6.3AI score0.00021EPSS

Exploits0References4

OSV•added 2026/02/24 1:50 a.m.•2 views

CVE-2026-25989 ImageMagick has integer overflow or wraparound and incorrect conversion between numeric types in the internal SVG decoder

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a crafted SVG file can cause a denial of service. An off-by-one boundary check instead of = that allows bypass the guard and reach an undefined sizet cast...

7.5CVSS5.6AI score0.0002EPSS

Exploits0References3

Snyk•added 2026/02/24 1:29 a.m.•2 views

Integer Overflow or Wraparound

Overview Magick.NET-Q16-HDRI-arm64 is a Magick.NET allows you can use ImageMagick without having to install ImageMagick on your server or desktop. More information about specific builds see the official docs https://github.com/dlemstra/Magick.NET/tree/main/docs Affected versions of this package a...

7.6CVSS6AI score0.00019EPSS

Exploits0References2

RedHat Linux•added 2026/01/19 12:42 a.m.•3 views

Moderate: Red Hat Security Advisory: libpq security update

An update for libpq is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability...

5.9CVSS6.3AI score0.00048EPSS

Exploits0References2

CVE•added 2025/12/04 3:31 p.m.•4 views

CVE-2025-40241

Summary (CVE-2025-40241): In the Linux kernel, the erofs code fix addresses two crafted invalid extents related to the new encoded extents introduced in Linux 6.15. The issues involve: (1) a crafted plen != 0 case where plen is not zero and the plen mask check fails, affecting representation of s...

5.8AI score0.00026EPSS

Exploits0References2

Snyk•added 2025/12/01 6:42 p.m.•2 views

Integer Overflow or Wraparound

Overview Affected versions of this package are vulnerable to Integer Overflow or Wraparound in the kissfftalloc function when the nfft parameter is not properly validated before being used in a size calculation. An attacker can cause a heap buffer overflow by supplying a large value for nfft on...

8.6CVSS7.5AI score0.0003EPSS

Exploits0References2

Tenable Nessus•added 2025/11/20 12:0 a.m.•2 views

PostgreSQL 13.x < 13.23 / 14.x < 14.20 / 15.x < 15.15 / 16.x < 16.11 / 17.x < 17.7 / 18.x < 18.1 Multiple Vulnerabilities

The version of PostgreSQL installed on the remote host is 13 prior to 13.23, 14 prior to 14.20, 15 prior to 15.15, 16 prior to 16.11, 17 prior to 17.7, or 18 prior to 18.1. As such, it is potentially affected by multiple vulnerabilities: - Integer wraparound in multiple PostgreSQL libpq client...

5.9CVSS5.8AI score0.00061EPSS

Exploits0References3

Tenable Nessus•added 2025/10/07 12:0 a.m.•1 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-414358)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-414358 advisory. An issue was discovered in the Linux kernel through 6.0.10. l2capconfigreq in net/bluetooth/l2capcore.c has an integer wraparound via L2CAPCONFREQ packets. Tenable h...

7.8CVSS6.6AI score0.00409EPSS

Exploits0References3

OSV•added 2025/09/15 3:15 p.m.•0 views

UBUNTU-CVE-2022-50299

In the Linux kernel, the following vulnerability has been resolved: md: Replace snprintf with scnprintf Current code produces a warning as shown below when total characters in the constituent block device names plus the slashes exceeds 200. snprintf returns the number of characters generated from...

5.5CVSS5.9AI score0.00021EPSS

Exploits0References11

OSV•added 2022/07/02 4:15 p.m.•1 views

ALPINE-CVE-2022-2285

Integer Overflow or Wraparound in GitHub repository vim/vim prior to 9.0...

7.8CVSS6.8AI score0.00194EPSS

Exploits1References1