Lucene search
K

21762 matches found

Microsoft CVE
Microsoft CVE
added 2025/09/03 11:39 p.m.3 views

spi: hisi-kunpeng: Add verification for the max_frequency provided by the firmware

...

5.5CVSS7AI score0.00206EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:38 p.m.6 views

GNU Binutils ld xmalloc.c xstrdup memory leak

...

3.1CVSS7AI score0.00531EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:38 p.m.5 views

NASM Netwide Assember nasm.c assemble_file stack-based overflow

...

7.8CVSS7AI score0.00247EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:37 p.m.5 views

net: libwx: fix Tx L4 checksum

...

5.5CVSS6.8AI score0.00165EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:37 p.m.4 views

drm/i915: Fix a memory leak with reused mmap_offset

...

5.5CVSS7AI score0.0021EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:37 p.m.3 views

ice: always check VF VSI pointer values

...

5.5CVSS7AI score0.00211EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:36 p.m.3 views

Multiple race conditions in the font initialization could have led to memory corruption and execution of attacker-controlled code. This vulnerability affects Firefox for Android < 112, Firefox < 112, and Focus for Android < 112.

...

7.5CVSS7AI score0.00552EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:34 p.m.6 views

A buffer overflow vulnerability exists in libsndfile version 1.2.2 and potentially earlier versions when processing malformed IRCAM audio files. The vulnerability occurs in the ircam_read_header function at src/ircam.c:164 during sample rate processing, leading to memory corruption and potential code execution.

...

7.5CVSS7AI score0.00585EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:34 p.m.4 views

rtw89: cfo: check mac_id to avoid out-of-bounds

...

7.8CVSS7AI score0.00252EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:34 p.m.5 views

block: RCU protect disk->conv_zones_bitmap

...

5.5CVSS7AI score0.0018EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:34 p.m.2 views

i2c/designware: Fix an initialization issue

...

7AI score
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:34 p.m.5 views

An issue in fluent-bit v.3.7.2 allows a local attacker to cause a denial of service via the function consume_event.

...

5.5CVSS7AI score0.00158EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:34 p.m.4 views

cifs: fix potential memory leaks in session setup

...

5.5CVSS7AI score0.00161EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:33 p.m.4 views

The sqlite3VXPrintf function in printf.c in SQLite before 3.8.9 does not properly handle precision and width values during floating-point conversions, which allows context-dependent attackers to cause a denial of service (integer overflow and stack-based buffer overflow) or possibly have unspecified other impact via large integers in a crafted printf function call in a SELECT statement.

...

7.5CVSS9.3AI score0.05531EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:33 p.m.5 views

The incorrect object was checked for NULL in the built-in profiler, potentially leading to invalid memory access and undefined behavior. *Note:* This issue only affects the application when the profiler is running. This vulnerability affects Firefox < 123.

...

6.5CVSS9.2AI score0.00474EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:32 p.m.1 views

bridge: mcast: Fix use-after-free during router port configuration

...

7.8CVSS7AI score0.00248EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:31 p.m.3 views

Bluetooth: hci_conn: Use disable_delayed_work_sync

...

5.5CVSS7AI score0.00185EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:31 p.m.5 views

drm/xe: Fix taking invalid lock on wedge

...

5.5CVSS7AI score0.00117EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:31 p.m.6 views

parisc: Fix random data corruption from exception handler

...

5.5CVSS7AI score0.00255EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:31 p.m.6 views

f2fs: initialize locks earlier in f2fs_fill_super()

...

5.5CVSS7AI score0.00114EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:30 p.m.4 views

A Use After Free vulnerability in function new_Token in asm/preproc.c in nasm 2.14.02 allows attackers to cause a denial of service via crafted nasm command.

...

5.5CVSS7AI score0.00265EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:30 p.m.7 views

HDF5 H5Centry.c H5C__load_entry resource consumption

...

4.8CVSS7AI score0.00188EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:29 p.m.8 views

The net/http package in Go through 1.6 does not attempt to address RFC 3875 section 4.1.18 namespace conflicts and therefore does not protect CGI applications from the presence of untrusted client data in the HTTP_PROXY environment variable, which might allow remote attackers to redirect a CGI application's outbound HTTP traffic to an arbitrary proxy server via a crafted Proxy header in an HTTP request, aka an "httpoxy" issue.

...

8.1CVSS7AI score0.0522EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:29 p.m.6 views

drm/amd/display: Wrap dcn301_calculate_wm_and_dlg for FPU.

...

5.5CVSS7AI score0.00182EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:29 p.m.2 views

of: module: prevent NULL pointer dereference in vsnprintf()

...

5.3CVSS7AI score0.00787EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:28 p.m.4 views

btrfs: do proper folio cleanup when cow_file_range() failed

...

5.5CVSS7AI score0.00195EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:28 p.m.2 views

drm/amd/display: Refactor DMCUB enter/exit idle interface

...

5.5CVSS7AI score0.002EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:27 p.m.3 views

drivers: staging: rtl8192eu: Fix deadlock in rtw_joinbss_event_prehandle

...

5.5CVSS7AI score0.00156EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:27 p.m.3 views

This CVE affects only Windows worker nodes. Your worker node is vulnerable to this issue if it is running one of the affected versions listed below.

...

5.9CVSS7AI score0.01394EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:25 p.m.6 views

smb: client: guarantee refcounted children from parent session

...

8.4CVSS7AI score0.00253EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:25 p.m.5 views

In NASM 2.15.04rc3, there is a double-free vulnerability in pp_tokline asm/preproc.c. This is fixed in commit 8806c3ca007b84accac21dd88b900fb03614ceb7.

...

9.8CVSS7AI score0.0136EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:25 p.m.3 views

scsi: ufs: core: Add NULL check in ufshcd_mcq_compl_pending_transfer()

...

5.5CVSS6.8AI score0.00148EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:24 p.m.2 views

eth: bnxt: fix truesize for mb-xdp-pass case

...

5.5CVSS6.9AI score0.00174EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:24 p.m.4 views

nvme-tcp: sanitize request list handling

...

7.1CVSS7AI score0.00136EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:24 p.m.3 views

It was possible to move the cursor using pointerlock from an iframe. This allowed moving the cursor outside of the viewport and the Firefox window. This vulnerability affects Firefox < 128 and Thunderbird < 128.

...

4.3CVSS9.2AI score0.00377EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:22 p.m.6 views

HID: nvidia-shield: Add missing null pointer checks to LED initialization

...

5.5CVSS7AI score0.00237EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:22 p.m.7 views

iommu/vt-d: Use device rbtree in iopf reporting path

...

6.8CVSS7AI score0.00217EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:22 p.m.5 views

Memory safety bugs present in Firefox 120, Firefox ESR 115.5, and Thunderbird 115.5. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code. This vulnerability affects Firefox ESR < 115.6, Thunderbird < 115.6, and Firefox < 121.

...

8.8CVSS7AI score0.01194EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:22 p.m.4 views

PyTorch nccl.py torch.cuda.nccl.reduce denial of service

...

4.8CVSS7AI score0.00148EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:22 p.m.3 views

A memory leak flaw was found in the UBI driver in drivers/mtd/ubi/attach.c in the Linux kernel through 6.7.4 for UBI_IOCATT, because kobj->name is not released.

...

5.5CVSS7AI score0.00207EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:22 p.m.2 views

iommu: Clear iommu-dma ops on cleanup

...

5.5CVSS6.8AI score0.00217EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:21 p.m.6 views

netfs: Fix double put of request

...

7.8CVSS7AI score0.00153EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:21 p.m.8 views

GNU Binutils ld xstrdup.c xstrdup memory leak

...

3.7CVSS7AI score0.00564EPSS
Exploits1
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:21 p.m.4 views

PCI: keystone: Fix NULL pointer dereference in case of DT error in ks_pcie_setup_rc_app_regs()

...

5.5CVSS7AI score0.00225EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:21 p.m.6 views

The Ocaml xenstored implementation (oxenstored) in Xen 4.1.x, 4.2.x, and 4.3.x allows local guest domains to cause a denial of service (domain shutdown) via a large message reply.

...

5.2CVSS7AI score0.0055EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:19 p.m.4 views

btrfs: fix double accounting race when btrfs_run_delalloc_range() failed

...

5.5CVSS7AI score0.00203EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:19 p.m.3 views

Mozilla developers Gabriele Svelto, Yulia Startsev, Andrew McCreight and the Mozilla Fuzzing Team reported memory safety bugs present in Firefox 106. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been exploited to run arbitrary code.<br />*Note*: This advisory was added on December 13th, 2022 after discovering it was inadvertently left out of the original advisory. The fix was included in the original release of Firefox 107. This vulnerability affects Firefox < 107.

...

8.8CVSS7AI score0.00568EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:19 p.m.4 views

spi: lpspi: Avoid potential use-after-free in probe()

...

5.5CVSS7AI score0.00216EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:18 p.m.6 views

rxrpc: Fix delayed ACKs to not set the reference serial number

...

5.5CVSS7AI score0.00241EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/03 11:18 p.m.3 views

crypto: starfive - Do not free stack buffer

...

5.5CVSS7AI score0.00184EPSS
Exploits0
Total number of security vulnerabilities21762