Lucene search
K

21761 matches found

Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:31 a.m.•10 views

vsock: Fix transport_{g2h,h2g} TOCTOU

...

4.7CVSS7AI score0.00113EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:30 a.m.•6 views

JasPer Image Color Space Conversion jas_image.c jas_image_chclrspc null pointer dereference

...

5.5CVSS7AI score0.00195EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:30 a.m.•3 views

Timing sidechannel for P-256 on ppc64le in crypto/internal/nistec

...

4CVSS8.4AI score0.00272EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:30 a.m.•3 views

rpmsg: virtio: Free driver_override when rpmsg_remove()

...

6.6CVSS7AI score0.00286EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:29 a.m.•1 views

thermal: core: Free tzp copy along with the thermal zone

...

5.5CVSS7AI score0.00234EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:28 a.m.•9 views

mtd: spinand: fix memory leak of ECC engine conf

...

5.5CVSS7AI score0.00157EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:28 a.m.•4 views

NFSD: Limit the number of concurrent async COPY operations

...

5.5CVSS7AI score0.00274EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:27 a.m.•4 views

Das U-Boot 2022.01 has a Buffer Overflow, a different issue than CVE-2022-30552.

...

7.8CVSS7AI score0.00554EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:27 a.m.•6 views

Squid: denial of service in http digest authentication

...

8.6CVSS7AI score0.85944EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:27 a.m.•5 views

In Perl before 5.38.2, S_parse_uniprop_string in regcomp.c can write to unallocated space because a property name associated with a \p{...} regular expression construct is mishandled. The earliest affected version is 5.30.0.

...

9.8CVSS7AI score
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:26 a.m.•5 views

net: drop UFO packets in udp_rcv_segment()

...

5.5CVSS7AI score0.0016EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:26 a.m.•2 views

i2c: lpi2c: Avoid calling clk_get_rate during transfer

...

5.5CVSS7AI score0.00223EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:25 a.m.•5 views

lgc.c in Lua 5.4.0 mishandles the interaction between barriers and the sweep phase, leading to a memory access violation involving collectgarbage.

...

5.3CVSS7AI score0.01793EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:25 a.m.•3 views

md/raid1: Fix stack memory use after return in raid1_reshape

...

7.1CVSS6.8AI score0.00165EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:25 a.m.•2 views

Squid: dos against http and https

...

7.5CVSS7AI score0.05229EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:24 a.m.•3 views

f2fs: fix to avoid out-of-boundary access in devs.path

...

7.1CVSS7AI score0.00164EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:23 a.m.•9 views

drm/amdgpu: Fix possible NULL dereference in amdgpu_ras_query_error_status_helper()

...

5.5CVSS7AI score0.00282EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:23 a.m.•14 views

net: usb: lan78xx: fix WARN in __netif_napi_del_locked on disconnect

...

7.8CVSS7AI score0.00164EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:23 a.m.•5 views

CPAN.pm before 2.35 does not verify TLS certificates when downloading distributions over HTTPS.

...

8.1CVSS7AI score0.01561EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:22 a.m.•2 views

urllib3 does not control redirects in browsers and Node.js

...

6.1CVSS7AI score0.00313EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:22 a.m.•3 views

smb: client: fix potential UAF in cifs_stats_proc_show()

...

7.8CVSS7AI score0.00265EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:22 a.m.•5 views

MathJax version prior to version 2.7.4 contains a Cross Site Scripting (XSS) vulnerability

...

5.4CVSS7AI score0.01254EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:21 a.m.•4 views

A Segmentation Fault issue discovered in in ieee_segment function in outieee.c in nasm 2.14.03 and 2.15 allows remote attackers to cause a denial of service via crafted assembly file.

...

5.5CVSS7AI score0.0047EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:21 a.m.•6 views

scsi: lpfc: Validate hdwq pointers before dereferencing in reset/errata paths

...

5.5CVSS7AI score0.00235EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:21 a.m.•5 views

vsock: Do not allow binding to VMADDR_PORT_ANY

...

7.8CVSS6.8AI score0.00152EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:21 a.m.•4 views

net/sched: Abort __tc_modify_qdisc if parent class does not exist

...

5.5CVSS7AI score0.00161EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:19 a.m.•2 views

i2c: qup: jump out of the loop in case of timeout

...

5.5CVSS6.8AI score0.00148EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:18 a.m.•4 views

lib: objagg: Fix general protection fault

...

5.5CVSS7AI score0.00215EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:18 a.m.•4 views

squashfs: harden sanity check in squashfs_read_xattr_id_table

...

5.5CVSS7AI score
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:18 a.m.•6 views

Incorrect results returned from Rows.Scan in database/sql

...

7CVSS7AI score0.00331EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:17 a.m.•9 views

mtk-sd: Prevent memory corruption from DMA map failure

...

7.8CVSS7AI score0.00168EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:16 a.m.•4 views

can: netlink: can_changelink(): fix NULL pointer deref of struct can_priv::do_set_mode

...

7CVSS6.8AI score0.00136EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:15 a.m.•3 views

An issue was discovered in Das U-Boot through 2019.07. There is an unbounded memcpy when parsing a UDP packet due to a net_process_received_packet integer underflow during an nc_input_packet call.

...

9.8CVSS7AI score0.02666EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:13 a.m.•4 views

Rustls: rustls network-reachable panic in `acceptor::accept`

...

7.5CVSS7AI score0.00693EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:13 a.m.•2 views

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Thread Pooling). Supported versions that are affected are 8.0.39 and prior, 8.4.2 and prior and 9.0.1 and prior. Easily exploitable vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 7.5 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H).

...

7.5CVSS7AI score0.01071EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:12 a.m.•3 views

virtio-net: ensure the received length does not exceed allocated size

...

7.8CVSS7AI score0.0017EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:12 a.m.•5 views

An issue was discovered in the tokio crate before 1.8.1 for Rust. Upon a JoinHandle::abort, a Task may be dropped in the wrong thread.

...

5.9CVSS7AI score0.00836EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:12 a.m.•3 views

smb: client: fix potential UAF in cifs_dump_full_key()

...

7.8CVSS7AI score0.00237EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:11 a.m.•3 views

wifi: mac80211: reject TDLS operations when station is not associated

...

5.5CVSS6.8AI score0.00147EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:11 a.m.•6 views

Unexpected paths returned from LookPath in os/exec

...

6.5CVSS5.4AI score0.00489EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:10 a.m.•4 views

A memory corruption issue was found in DPDK versions 17.05 and above

...

6.7CVSS7AI score0.00378EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:10 a.m.•4 views

webpack-dev-server users' source code may be stolen when they access a malicious web site with non-Chromium based browser

...

6.5CVSS7AI score0.00287EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:9 a.m.•3 views

During the worker lifecycle, a use-after-free condition could have occured, which could have led to a potentially exploitable crash. This vulnerability affects Firefox < 115.0.2, Firefox ESR < 115.0.2, and Thunderbird < 115.0.1.

...

8.8CVSS7AI score0.00542EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:9 a.m.•8 views

In Bootstrap before 4.1.2, XSS is possible in the collapse data-parent attributeIn Bootstrap before 4.1.2, XSS is possible in the collapse data-parent attribute

...

6.1CVSS7AI score0.04135EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:9 a.m.•4 views

Existing CommBuffer checks in SmmEntryPoint will not catch underflow when computing BufferSize.

...

9.8CVSS7AI score0.00971EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:9 a.m.•2 views

serial: sc16is7xx: convert from _raw_ to _noinc_ regmap functions for FIFO

...

5.5CVSS7AI score0.00289EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:9 a.m.•3 views

gfs2: No more self recovery

...

5.5CVSS7AI score0.00143EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:7 a.m.•4 views

fs: export anon_inode_make_secure_inode() and fix secretmem LSM bypass

...

7.8CVSS7AI score0.00163EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:7 a.m.•7 views

Stack exhaustion in all Parse functions in go/parser

...

4.3CVSS7AI score0.00839EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/04 5:7 a.m.•4 views

SMM IDT Privilege Escalation Vulnerability

...

7CVSS7AI score0.0014EPSS
Exploits0
Total number of security vulnerabilities21761