Lucene search
K

21767 matches found

Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•2 views

bnxt_en: Fix out-of-bound memcpy() during ethtool -w

...

7CVSS7.2AI score0.0016EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•4 views

wifi: plfxlc: Remove erroneous assert in plfxlc_mac_release

...

7CVSS7.2AI score0.0016EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•11 views

drm/amd/display: Fix slab-use-after-free in hdcp

...

7.8CVSS7.2AI score0.00165EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•2 views

irqchip/qcom-mpm: Prevent crash when trying to handle non-wake GPIOs

...

5.5CVSS7.2AI score0.0016EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•5 views

redis-check-aof may lead to stack overflow and potential RCE

...

9.8CVSS7AI score0.00797EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•4 views

wifi: cfg80211: fix out-of-bounds access during multi-link element defragmentation

...

7.1CVSS7.2AI score0.00153EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•14 views

memblock: Accept allocated memory before use in memblock_double_array()

...

7CVSS7.5AI score0.00148EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•7 views

arm64: bpf: Only mitigate cBPF programs loaded by unprivileged users

...

7CVSS7.2AI score0.00158EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•5 views

ALSA: ump: Fix buffer overflow at UMP SysEx message conversion

...

7.8CVSS7.2AI score0.00206EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•3 views

media: venus: hfi: add a check to handle OOB in sfr region

...

5.5CVSS7.2AI score0.00176EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•8 views

USB: wdm: close race between wdm_open and wdm_wwan_port_stop

...

4.7CVSS7.2AI score0.0011EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•1 views

ipvs: fix uninit-value for saddr in do_output_route4

...

6.5CVSS7.2AI score0.00149EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•6 views

QUIC certificate check skip with wolfSSL

...

6.5CVSS7.7AI score0.00236EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•6 views

containerd CRI plugin: Incorrect cgroup hierarchy assignment for containers running in usernamespaced Kubernetes pods.

...

7.5CVSS7AI score0.00242EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•5 views

undici Denial of Service attack via bad certificate data

...

3.1CVSS8.2AI score0.00254EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•8 views

Bypassing extraction filter to create symlinks to arbitrary targets outside extraction directory

...

8.1CVSS7.4AI score0.01109EPSS
Exploits7
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•5 views

Sudo before 1.9.17p1, when used with a sudoers file that specifies a host that is neither the current host nor ALL

...

8.8CVSS7.6AI score0.03239EPSS
Exploits12
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•4 views

CoreDNS Vulnerable to DoQ Memory Exhaustion via Stream Amplification

...

7.5CVSS7.7AI score0.01132EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•3 views

Unbounded recursion in Python Protobuf

...

8.2CVSS7.7AI score0.00281EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•5 views

When a non-x86 platform is detected, cloud-init grants root access to a hardcoded url with a local IP address. To prevent this, cloud-init default configurations disable platform enumeration.

...

8.8CVSS7AI score0.00205EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•7 views

In Node.js, the `ReadFileUtf8` internal binding leaks memory due to a corrupted pointer in `uv_fs_s.file`: a UTF-16 path buffer is allocated but subsequently overwritten when the file descriptor is set. This results in an unrecoverable memory leak on every call. Repeated use can cause unbounded memory growth, leading to a denial of service. Impact: * This vulnerability affects APIs relying on `ReadFileUtf8` on Node.js release lines: v20 and v22.

...

3.7CVSS6.7AI score0.0048EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•9 views

The C++ method SignTraits::DeriveBits() may incorrectly call ThrowException() based on user-supplied inputs when executing in a background thread, crashing the Node.js process. Such cryptographic operations are commonly applied to untrusted inputs. Thus, this mechanism potentially allows an adversary to remotely crash a Node.js runtime.

...

7.5CVSS7.3AI score0.00763EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•2 views

drm/amd/display: Avoid divide by zero by initializing dummy pitch to 1

...

5.5CVSS6.8AI score0.00129EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•4 views

drm/i915/huc: Fix fence not released on early probe errors

...

5.5CVSS7.2AI score0.00175EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•5 views

net: ppp: Add bound checking for skb data on ppp_sync_txmung

...

7.1CVSS7AI score0.00167EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•3 views

jfs: Fix uninit-value access of imap allocated in the diMount() function

...

5.5CVSS7.2AI score0.00156EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•4 views

f2fs: fix to avoid out-of-bounds access in f2fs_truncate_inode_blocks()

...

7.1CVSS7.6AI score0.00167EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•4 views

ext4: ignore xattrs past end

...

7.8CVSS7AI score0.00167EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•3 views

media: venus: hfi: add check to handle incorrect queue size

...

7.8CVSS7.4AI score0.00185EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•1 views

sctp: detect and prevent references to a freed transport in sendmsg

...

7.8CVSS7.4AI score0.00187EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•4 views

media: venus: hfi_parser: add check to avoid out of bound access

...

7.1CVSS7.4AI score0.0018EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•4 views

soc: samsung: exynos-chipid: Add NULL pointer check in exynos_chipid_probe()

...

5.5CVSS7.4AI score0.00176EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•4 views

i3c: Add NULL pointer check in i3c_master_queue_ibi()

...

5.5CVSS7.4AI score0.00176EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•2 views

mfd: ene-kb3930: Fix a potential NULL pointer dereference

...

5.5CVSS7.4AI score0.00176EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•2 views

KVM: x86: Acquire SRCU in KVM_GET_MP_STATE to protect guest memory accesses

...

6.1CVSS7.4AI score0.00168EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•6 views

bpf: consider that tail calls invalidate packet pointers

...

5.5CVSS7.4AI score0.00147EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•3 views

misc: pci_endpoint_test: Avoid issue of interrupts remaining after request_irq error

...

5.5CVSS6.8AI score0.00183EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•4 views

bpf: check changes_pkt_data property for extension programs

...

5.5CVSS7.4AI score0.00146EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•2 views

bpf: track changes_pkt_data property for global functions

...

5.5CVSS7.4AI score0.00146EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•3 views

net-tools Stack-based Buffer Overflow vulnerability

...

6.6CVSS9.3AI score0.00158EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•3 views

Erlang/OTP SSH Has Strict KEX Violations

...

3.7CVSS7AI score0.00442EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•5 views

PostgreSQL GB18030 encoding validation can read one byte past end of allocation for text that fails validation

...

5.9CVSS7.7AI score0.00612EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•4 views

DNS message with invalid TSIG causes an assertion failure

...

7.5CVSS7AI score0.11727EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•5 views

netfilter: ipset: fix region locking in hash types

...

7CVSS7.4AI score0.00127EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•2 views

net_sched: Flush gso_skb list too during ->change()

...

5.5CVSS7.4AI score0.00159EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•3 views

ksmbd: prevent rename with empty string

...

5.5CVSS7AI score0.00149EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•3 views

smb: client: Avoid race in open_cached_dir with lease breaks

...

7CVSS7.4AI score0.00148EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•3 views

wifi: ath12k: Fix invalid data access in ath12k_dp_rx_h_undecap_nwifi

...

7.8CVSS7AI score0.00168EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•3 views

ksmbd: prevent out-of-bounds stream writes by validating *pos

...

7.8CVSS7AI score0.00204EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/07/11 7:0 a.m.•0 views

udmabuf: fix a buf size overflow issue during udmabuf creation

...

7.8CVSS6.8AI score0.00177EPSS
Exploits0
Total number of security vulnerabilities21767