CVE & Exploit Intelligence Database

Updated 3h ago

Search and track vulnerabilities with real-time exploit intelligence. Cross-reference CVEs against public exploits from ExploitDB, Metasploit, GitHub, and Nuclei — with CVSS and EPSS scoring, CISA KEV monitoring, and AI-powered exploit analysis.

337,847 CVEs tracked 53,242 with exploits 4,725 exploited in wild 1,540 CISA KEV 3,918 Nuclei templates 37,802 vendors 42,493 researchers

12,131 results Clear all

CVE-2009-4306 EPSS 0.00

Linux kernel <2.6.32-git6 - DoS

Unspecified vulnerability in the EXT4_IOC_MOVE_EXT (aka move extents) ioctl implementation in the ext4 filesystem in the Linux kernel 2.6.32-git6 and earlier allows local users to cause a denial of service (filesystem corruption) via unknown vectors, a different vulnerability than CVE-2009-4131.

CVE-2009-4131 1 PoC Analysis EPSS 0.00

Linux kernel <2.6.32 - Local Privilege Escalation

The EXT4_IOC_MOVE_EXT (aka move extents) ioctl implementation in the ext4 filesystem in the Linux kernel before 2.6.32-git6 allows local users to overwrite arbitrary files via a crafted request, related to insufficient checks for file permissions.

CWE-264 Dec 13, 2009

CVE-2009-1298 EPSS 0.02

Linux Kernel < 2.6.32 - Memory Corruption

The ip_frag_reasm function in net/ipv4/ip_fragment.c in the Linux kernel 2.6.32-rc8, and 2.6.29 and later versions before 2.6.32, calls IP_INC_STATS_BH with an incorrect argument, which allows remote attackers to cause a denial of service (NULL pointer dereference and hang) via long IP packets, possibly related to the ip_defrag function.

CWE-119 Dec 08, 2009

CVE-2009-4020 EPSS 0.04

Linux kernel <2.6.32 - Buffer Overflow

Stack-based buffer overflow in the hfs subsystem in the Linux kernel 2.6.32 allows remote attackers to have an unspecified impact via a crafted Hierarchical File System (HFS) filesystem, related to the hfs_readdir function in fs/hfs/dir.c.

CWE-119 Dec 04, 2009

CVE-2009-4027 EPSS 0.01

Linux Kernel <2.6.32-rc8-next - DoS

Race condition in the mac80211 subsystem in the Linux kernel before 2.6.32-rc8-next-20091201 allows remote attackers to cause a denial of service (system crash) via a Delete Block ACK (aka DELBA) packet that triggers a certain state change in the absence of an aggregation session.

CWE-362 Dec 02, 2009

CVE-2009-4026 EPSS 0.01

Linux kernel <2.6.32-rc8-next - DoS

The mac80211 subsystem in the Linux kernel before 2.6.32-rc8-next-20091201 allows remote attackers to cause a denial of service (panic) via a crafted Delete Block ACK (aka DELBA) packet, related to an erroneous "code shuffling patch."

CVE-2009-4031 EPSS 0.02

Linux kernel <2.6.32-rc8-next - DoS

The do_insn_fetch function in arch/x86/kvm/emulate.c in the x86 emulator in the KVM subsystem in the Linux kernel before 2.6.32-rc8-next-20091125 tries to interpret instructions that contain too many bytes to be valid, which allows guest OS users to cause a denial of service (increased scheduling latency) on the host OS via unspecified manipulations related to SMP support.

CWE-20 Nov 29, 2009

CVE-2009-4021 EPSS 0.00

Linux Kernel <2.6.32-rc7 - DoS

The fuse_direct_io function in fs/fuse/file.c in the fuse subsystem in the Linux kernel before 2.6.32-rc7 might allow attackers to cause a denial of service (invalid pointer dereference and OOPS) via vectors possibly related to a memory-consumption attack.

CWE-399 Nov 25, 2009

CVE-2009-3080 EPSS 0.00

Linux Kernel < 2.6.31.6 - Improper Array Index Validation

Array index error in the gdth_read_event function in drivers/scsi/gdth.c in the Linux kernel before 2.6.32-rc8 allows local users to cause a denial of service or possibly gain privileges via a negative event index in an IOCTL request.

CWE-129 Nov 20, 2009

CVE-2009-4005 EPSS 0.00

Linux kernel <2.6.32-rc7 - Buffer Under-read

The collect_rx_frame function in drivers/isdn/hisax/hfc_usb.c in the Linux kernel before 2.6.32-rc7 allows attackers to have an unspecified impact via a crafted HDLC packet that arrives over ISDN and triggers a buffer under-read.

CWE-119 Nov 20, 2009

CVE-2009-4004 7.8 HIGH EPSS 0.00

Linux Kernel <2.6.32-rc7 - Memory Corruption

Buffer overflow in the kvm_vcpu_ioctl_x86_setup_mce function in arch/x86/kvm/x86.c in the KVM subsystem in the Linux kernel before 2.6.32-rc7 allows local users to cause a denial of service (memory corruption) or possibly gain privileges via a KVM_X86_SETUP_MCE IOCTL request that specifies a large number of Machine Check Exception (MCE) banks.

CWE-119 Nov 20, 2009

CVE-2009-3939 7.1 HIGH EPSS 0.00

Linux kernel <2.6.31.6 - Local Privilege Escalation

The poll_mode_io file for the megaraid_sas driver in the Linux kernel 2.6.31.6 and earlier has world-writable permissions, which allows local users to change the I/O mode of the driver by modifying this file.

CWE-732 Nov 16, 2009

CVE-2009-3889 EPSS 0.00

Linux Kernel <2.6.27 - Info Disclosure

The dbg_lvl file for the megaraid_sas driver in the Linux kernel before 2.6.27 has world-writable permissions, which allows local users to change the (1) behavior and (2) logging level of the driver by modifying this file.

CWE-264 Nov 16, 2009

CVE-2009-3888 1 PoC Analysis EPSS 0.00

Linux Kernel <2.6.31.6 - DoS

The do_mmap_pgoff function in mm/nommu.c in the Linux kernel before 2.6.31.6, when the CPU lacks a memory management unit, allows local users to cause a denial of service (OOPS) via an application that attempts to allocate a large amount of memory.

CWE-399 Nov 16, 2009

CVE-2009-3726 1 PoC Analysis EPSS 0.06

Linux Kernel < 2.6.31 - Resource Management Error

The nfs4_proc_lock function in fs/nfs/nfs4proc.c in the NFSv4 client in the Linux kernel before 2.6.31-rc4 allows remote NFS servers to cause a denial of service (NULL pointer dereference and panic) by sending a certain response containing incorrect file attributes, which trigger attempted use of an open file that lacks NFSv4 state.

CWE-399 Nov 09, 2009

CVE-2009-3725 EPSS 0.00

Linux Kernel < 2.6.31.5 - Access Control

The connector layer in the Linux kernel before 2.6.31.5 does not require the CAP_SYS_ADMIN capability for certain interaction with the (1) uvesafb, (2) pohmelfs, (3) dst, or (4) dm subsystem, which allows local users to bypass intended access restrictions and gain privileges via calls to functions in these subsystems.

CWE-264 Nov 06, 2009

CVE-2009-3547 7.0 HIGH EXPLOITED 5 PoCs Analysis EPSS 0.03

Linux Kernel < 2.6.31.14 - Race Condition

Multiple race conditions in fs/pipe.c in the Linux kernel before 2.6.32-rc6 allow local users to cause a denial of service (NULL pointer dereference and system crash) or gain privileges by attempting to open an anonymous pipe via a /proc/*/fd/ pathname.

CWE-362 Nov 04, 2009

CVE-2009-3624 EPSS 0.00

Linux Kernel < 2.6.32 - Cryptographic Issue

The get_instantiation_keyring function in security/keys/keyctl.c in the KEYS subsystem in the Linux kernel before 2.6.32-rc5 does not properly maintain the reference count of a keyring, which allows local users to gain privileges or cause a denial of service (OOPS) via vectors involving calls to this function without specifying a keyring by ID, as demonstrated by a series of keyctl request2 and keyctl list commands.

CWE-310 Nov 02, 2009

CVE-2009-3722 EPSS 0.03

Linux Kernel < 2.6.31 - Access Control

The handle_dr function in arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 2.6.31.1 does not properly verify the Current Privilege Level (CPL) before accessing a debug register, which allows guest OS users to cause a denial of service (trap) on the host OS via a crafted application.

CWE-264 Oct 30, 2009

CVE-2009-3623 EPSS 0.01

Linux Kernel < 2.6.31.1 - Authentication Bypass

The lookup_cb_cred function in fs/nfsd/nfs4callback.c in the nfsd4 subsystem in the Linux kernel before 2.6.31.2 attempts to access a credentials cache even when a client specifies the AUTH_NULL authentication flavor, which allows remote attackers to cause a denial of service (NULL pointer dereference and system crash) via an NFSv4 mount request.

CWE-287 Oct 30, 2009