Lucene search
K

21762 matches found

Microsoft CVE
Microsoft CVE
•added 2025/09/03 9:18 p.m.•7 views

multiSelect in select.c in SQLite 3.30.1 mishandles certain errors during parsing, as demonstrated by errors from sqlite3WindowRewrite() calls. NOTE: this vulnerability exists because of an incomplete fix for CVE-2019-19880.

...

7.5CVSS9.3AI score0.06997EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/03 9:18 p.m.•6 views

libsndfile through 1.2.2 has a reachable assertion, that may lead to application exit, in mpeg_l3_encode.c mpeg_l3_encoder_close.

...

6.5CVSS7AI score0.00513EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/09/03 9:17 p.m.•4 views

scsi: ufs: pltfrm: Dellocate HBA during ufshcd_pltfrm_remove()

...

5.5CVSS7AI score0.00175EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/03 9:17 p.m.•6 views

drm/i915/hdcp: Add encoder check in hdcp2_get_capability

...

5.5CVSS7AI score0.00204EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/03 9:16 p.m.•7 views

drm/amd/display: Fix null pointer deref in dcn20_resource.c

...

5.5CVSS7AI score0.00211EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/03 9:15 p.m.•8 views

gpio: pca953x: fix pca953x_irq_bus_sync_unlock race

...

4.7CVSS7AI score0.00164EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/03 9:14 p.m.•5 views

ice: Don't process extts if PTP is disabled

...

4.7CVSS7AI score0.00154EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/03 9:14 p.m.•8 views

pip 1.3 through 1.5.6 allows local users to cause a denial of service (prevention of package installation) by creating a /tmp/pip-build-* file for another user.

...

2.1CVSS9.3AI score0.00393EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/03 9:13 p.m.•5 views

xen: privcmd: Switch from mutex to spinlock for irqfds

...

5.5CVSS7AI score0.00164EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/09/03 9:13 p.m.•7 views

The sideband payload is passed unfiltered to the terminal in git

...

8.8CVSS7AI score0.00494EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/09/03 9:13 p.m.•1 views

An integer overflow in the component hb-ot-shape-fallback.cc of Harfbuzz v4.3.0 allows attackers to cause a Denial of Service (DoS) via unspecified vectors.

...

5.5CVSS7AI score0.01134EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/09/03 9:13 p.m.•3 views

drm/amd/display: Fix NULL pointer dereference for DTN log in DCN401

...

5.5CVSS7AI score0.0018EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/28 6:46 p.m.•13 views

Chromium: CVE-2025-9478 Use after free in ANGLE

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS6.1AI score0.03583EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/08/21 6:0 p.m.•3 views

f2fs: fix to bail out in get_new_segment()

...

5.5CVSS7AI score0.00144EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/21 5:30 p.m.•4 views

drm/amd/display: Check null pointers before using them

...

5.5CVSS7AI score0.00233EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/21 5:24 p.m.•6 views

dm: fix a crash if blk_alloc_disk fails

...

4.7CVSS7AI score0.00187EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/21 3:59 p.m.•5 views

Chromium: CVE-2025-9132 Out of bounds write in V8

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS6.9AI score0.02954EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/21 7:0 a.m.•7 views

Windows Certificate Spoofing Vulnerability

Improper verification of cryptographic signature in Windows Certificates allows an unauthorized attacker to perform spoofing over a network...

5.3CVSS7.1AI score0.00449EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/21 7:0 a.m.•12 views

Windows Storage-based Management Service Remote Code Execution Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Storage allows an unauthorized attacker to execute code over a network...

7.5CVSS7.7AI score0.00447EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/21 7:0 a.m.•9 views

Windows MBT Transport Driver Elevation of Privilege Vulnerability

Untrusted pointer dereference in Windows MBT Transport driver allows an authorized attacker to elevate privileges locally...

7.8CVSS7.2AI score0.00325EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/21 7:0 a.m.•11 views

Microsoft PC Manager Elevation of Privilege Vulnerability

Improper authorization in Microsoft PC Manager allows an unauthorized attacker to elevate privileges over a network...

9.8CVSS7.1AI score0.00551EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/21 7:0 a.m.•7 views

Azure Databricks Elevation of Privilege Vulnerability

Improper access control in Azure Databricks allows an unauthorized attacker to elevate privileges over a network...

9.8CVSS7.2AI score0.00607EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/15 7:0 a.m.•14 views

Chromium: CVE-2025-8882 Use after free in Aura

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS6.5AI score0.00246EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/15 7:0 a.m.•3 views

Chromium: CVE-2025-8881 Inappropriate implementation in File Picker

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.5CVSS6.5AI score0.0023EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/15 7:0 a.m.•2 views

Chromium: CVE-2025-8880 Race in V8

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS6.5AI score0.00247EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/15 7:0 a.m.•1 views

Chromium: CVE-2025-8901 Out of bounds write in ANGLE

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS6.5AI score0.00289EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/15 7:0 a.m.•4 views

Chromium: CVE-2025-8879 Heap buffer overflow in libaom

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS6.5AI score0.00265EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/14 7:0 a.m.•6 views

Icu: stack buffer overflow in the srbroot::addtag function

...

7CVSS7AI score0.00296EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/14 7:0 a.m.•3 views

SQLite integer overflow in key info allocation may lead to information disclosure.

...

9.1CVSS7AI score0.0023EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/14 7:0 a.m.•4 views

Integer Truncation on SQLite

...

9.8CVSS7AI score0.73495EPSS
Exploits3
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•6 views

Microsoft SharePoint Remote Code Execution Vulnerability

Deserialization of untrusted data in Microsoft Office SharePoint allows an authorized attacker to execute code over a network...

8.8CVSS7.5AI score0.17154EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•3 views

Windows Hyper-V Elevation of Privilege Vulnerability

Numeric truncation error in Windows Hyper-V allows an authorized attacker to elevate privileges locally...

7.8CVSS7.2AI score0.00422EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•5 views

Windows Local Security Authority Subsystem Service (LSASS) Denial of Service Vulnerability

Null pointer dereference in Windows Local Security Authority Subsystem Service LSASS allows an authorized attacker to deny service over a network...

6.5CVSS5.4AI score0.01303EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•15 views

Microsoft SharePoint Elevation of Privilege Vulnerability

Server-side request forgery ssrf in Microsoft Office SharePoint allows an authorized attacker to elevate privileges over a network...

7.1CVSS7.2AI score0.11126EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•4 views

Microsoft Excel Remote Code Execution Vulnerability

Access of resource using incompatible type 'type confusion' in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS7.6AI score0.00527EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•3 views

Microsoft Message Queuing (MSMQ) Remote Code Execution Vulnerability

Access of resource using incompatible type 'type confusion' in Windows Message Queuing allows an authorized attacker to execute code over a network...

8.8CVSS7.6AI score0.01008EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•4 views

Windows Hyper-V Remote Code Execution Vulnerability

Improper restriction of communication channel to intended endpoints in Windows Hyper-V allows an authorized attacker to execute code locally...

6.7CVSS7.7AI score0.00436EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•4 views

Azure Stack Hub Information Disclosure Vulnerability

Improper authentication in Azure Stack allows an unauthorized attacker to disclose information over a network...

7.5CVSS7AI score0.01223EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•1 views

Windows Kerberos Elevation of Privilege Vulnerability

Relative path traversal in Windows Kerberos allows an authorized attacker to elevate privileges over a network...

7.2CVSS7.2AI score0.02593EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•131 views

Microsoft Teams Remote Code Execution Vulnerability

Heap-based buffer overflow in Microsoft Teams allows an unauthorized attacker to execute code over a network...

7.5CVSS8AI score0.00756EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•2 views

Windows Routing and Remote Access Service (RRAS) Information Disclosure Vulnerability

Use of uninitialized resource in Windows Routing and Remote Access Service RRAS allows an authorized attacker to disclose information over a network...

5.7CVSS7AI score0.01045EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•4 views

Windows Security App Spoofing Vulnerability

External control of file name or path in Windows Security App allows an authorized attacker to perform spoofing locally...

5.5CVSS7.2AI score0.00364EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•10 views

GDI+ Remote Code Execution Vulnerability

Heap-based buffer overflow in Windows GDI+ allows an unauthorized attacker to execute code over a network...

9.8CVSS8.1AI score0.06706EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•4 views

Azure Stack Hub Information Disclosure Vulnerability

Exposure of private personal information to an unauthorized actor in Azure Stack allows an authorized attacker to disclose information locally...

5.5CVSS6.8AI score0.00457EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•4 views

Microsoft Word Remote Code Execution Vulnerability

Use after free in Microsoft Office Word allows an unauthorized attacker to execute code locally...

7.8CVSS8AI score0.00485EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•1 views

Microsoft Word Information Disclosure Vulnerability

Buffer over-read in Microsoft Office Word allows an unauthorized attacker to disclose information locally...

6.8CVSS6.8AI score0.0047EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•3 views

Microsoft Excel Remote Code Execution Vulnerability

Use after free in Microsoft Office Excel allows an unauthorized attacker to execute code locally...

7.8CVSS8AI score0.00527EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•3 views

Microsoft Office Remote Code Execution Vulnerability

Heap-based buffer overflow in Microsoft Office allows an unauthorized attacker to execute code locally...

7.8CVSS8.1AI score0.00454EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•4 views

Microsoft Word Remote Code Execution Vulnerability

Incorrect conversion between numeric types in Microsoft Office Word allows an unauthorized attacker to execute code locally...

8.4CVSS7.6AI score0.00465EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/08/12 7:0 a.m.•8 views

Microsoft SQL Server Elevation of Privilege Vulnerability

Improper neutralization of special elements used in an sql command 'sql injection' in SQL Server allows an authorized attacker to elevate privileges over a network...

8.8CVSS7.9AI score0.01355EPSS
Exploits0
Total number of security vulnerabilities21762