CVE & Exploit Intelligence Database

Updated 5h ago

Search and track vulnerabilities with real-time exploit intelligence. Cross-reference CVEs against public exploits from ExploitDB, Metasploit, GitHub, and Nuclei — with CVSS and EPSS scoring, CISA KEV monitoring, and AI-powered exploit analysis.

337,819 CVEs tracked 53,239 with exploits 4,725 exploited in wild 1,540 CISA KEV 3,918 Nuclei templates 37,800 vendors 42,488 researchers

12,131 results Clear all

CVE-2009-0065 1 PoC Analysis EPSS 0.15

Linux kernel <2.6.28 - Buffer Overflow

Buffer overflow in net/sctp/sm_statefuns.c in the Stream Control Transmission Protocol (sctp) implementation in the Linux kernel before 2.6.28-git8 allows remote attackers to have an unknown impact via an FWD-TSN (aka FORWARD-TSN) chunk with a large stream ID.

CWE-119 Jan 07, 2009

CVE-2008-5713 1 PoC Analysis EPSS 0.00

Linux Kernel <2.6.25 - DoS

The __qdisc_run function in net/sched/sch_generic.c in the Linux kernel before 2.6.25 on SMP machines allows local users to cause a denial of service (soft lockup) by sending a large amount of network traffic, as demonstrated by multiple simultaneous invocations of the Netperf benchmark application in UDP_STREAM mode.

CWE-399 Dec 24, 2008

CVE-2008-5702 EPSS 0.00

Linux kernel <2.6.28-rc1 - Buffer Overflow

Buffer underflow in the ibwdt_ioctl function in drivers/watchdog/ib700wdt.c in the Linux kernel before 2.6.28-rc1 might allow local users to have an unknown impact via a certain /dev/watchdog WDIOC_SETTIMEOUT IOCTL call.

CWE-119 Dec 22, 2008

CVE-2008-5701 EPSS 0.00

Linux kernel <2.6.28-rc8 - DoS

Array index error in arch/mips/kernel/scall64-o32.S in the Linux kernel before 2.6.28-rc8 on 64-bit MIPS platforms allows local users to cause a denial of service (system crash) via an o32 syscall with a small syscall number, which leads to an attempted read operation outside the bounds of the syscall table.

CWE-189 Dec 22, 2008

CVE-2008-5700 EPSS 0.00

Linux kernel <2.6.27.9 - DoS

libata in the Linux kernel before 2.6.27.9 does not set minimum timeouts for SG_IO requests, which allows local users to cause a denial of service (Programmed I/O mode on drives) via multiple simultaneous invocations of an unspecified test program.

CWE-399 Dec 22, 2008

CVE-2008-5395 EPSS 0.00

Linux kernel <2.6.28-rc7 - DoS

The parisc_show_stack function in arch/parisc/kernel/traps.c in the Linux kernel before 2.6.28-rc7 on PA-RISC allows local users to cause a denial of service (system crash) via vectors associated with an attempt to unwind a stack that contains userspace addresses.

CWE-119 Dec 09, 2008

CVE-2008-5079 1 PoC Analysis EPSS 0.02

Linux Kernel < 2.6.27.8 - Resource Management Error

net/atm/svc.c in the ATM subsystem in the Linux kernel 2.6.27.8 and earlier allows local users to cause a denial of service (kernel infinite loop) by making two calls to svc_listen for the same socket, and then reading a /proc/net/atm/*vc file, related to corruption of the vcc table.

CWE-399 Dec 09, 2008

CVE-2008-5300 EPSS 0.00

Linux kernel 2.6.28 - DoS

Linux kernel 2.6.28 allows local users to cause a denial of service ("soft lockup" and process loss) via a large number of sendmsg function calls, which does not block during AF_UNIX garbage collection and triggers an OOM condition, a different vulnerability than CVE-2008-5029.

CWE-399 Dec 01, 2008

CVE-2008-5182 EPSS 0.00

Linux kernel <2.6.28-rc5 - Privilege Escalation

The inotify functionality in Linux kernel 2.6 before 2.6.28-rc5 might allow local users to gain privileges via unknown vectors related to race conditions in inotify watch removal and umount.

CWE-362 Nov 21, 2008

CVE-2008-5134 EPSS 0.02

Linux Kernel < 2.6.27.4 - Memory Corruption

Buffer overflow in the lbs_process_bss function in drivers/net/wireless/libertas/scan.c in the libertas subsystem in the Linux kernel before 2.6.27.5 allows remote attackers to have an unknown impact via an "invalid beacon/probe response."

CWE-119 Nov 18, 2008

CVE-2008-5025 EPSS 0.01

Linux Kernel < 2.6.28 - Memory Corruption

Stack-based buffer overflow in the hfs_cat_find_brec function in fs/hfs/catalog.c in the Linux kernel before 2.6.28-rc1 allows attackers to cause a denial of service (memory corruption or system crash) via an hfs filesystem image with an invalid catalog namelength field, a related issue to CVE-2008-4933.

CWE-119 Nov 17, 2008

CVE-2008-5033 EPSS 0.01

Linux Kernel - Resource Management Error

The chip_command function in drivers/media/video/tvaudio.c in the Linux kernel 2.6.25.x before 2.6.25.19, 2.6.26.x before 2.6.26.7, and 2.6.27.x before 2.6.27.3 allows attackers to cause a denial of service (NULL function pointer dereference and OOPS) via unknown vectors.

CWE-399 Nov 10, 2008

CVE-2008-5029 EPSS 0.00

Linux Kernel < 2.6.27.4 - Denial of Service

The __scm_destroy function in net/core/scm.c in the Linux kernel 2.6.27.4, 2.6.26, and earlier makes indirect recursive calls to itself through calls to the fput function, which allows local users to cause a denial of service (panic) via vectors related to sending an SCM_RIGHTS message through a UNIX domain socket and closing file descriptors.

CVE-2008-4395 EPSS 0.03

Linux Kernel < 2.6.26 - Memory Corruption

Multiple buffer overflows in the ndiswrapper module 1.53 for the Linux kernel 2.6 allow remote attackers to execute arbitrary code by sending packets over a local wireless network that specify long ESSIDs.

CWE-119 Nov 06, 2008

CVE-2008-4934 EPSS 0.01

Linux Kernel < 2.6.28 - Improper Input Validation

The hfsplus_block_allocate function in fs/hfsplus/bitmap.c in the Linux kernel before 2.6.28-rc1 does not check a certain return value from the read_mapping_page function before calling kmap, which allows attackers to cause a denial of service (system crash) via a crafted hfsplus filesystem image.

CWE-20 Nov 05, 2008

CVE-2008-4933 EPSS 0.01

Linux Kernel < 2.6.28 - Memory Corruption

Buffer overflow in the hfsplus_find_cat function in fs/hfsplus/catalog.c in the Linux kernel before 2.6.28-rc1 allows attackers to cause a denial of service (memory corruption or system crash) via an hfsplus filesystem image with an invalid catalog namelength field, related to the hfsplus_cat_build_key_uni function.

CWE-119 Nov 05, 2008

CVE-2008-3527 EPSS 0.00

Linux <2.6.21 - Privilege Escalation

arch/i386/kernel/sysenter.c in the Virtual Dynamic Shared Objects (vDSO) implementation in the Linux kernel before 2.6.21 does not properly check boundaries, which allows local users to gain privileges or cause a denial of service via unspecified vectors, related to the install_special_mapping, syscall, and syscall32_nopage functions.

CWE-264 Nov 05, 2008

CVE-2008-4618 EPSS 0.01

Linux Kernel < 2.6.26.5 - Improper Input Validation

The Stream Control Transmission Protocol (sctp) implementation in the Linux kernel before 2.6.27 does not properly handle a protocol violation in which a parameter has an invalid length, which allows attackers to cause a denial of service (panic) via unspecified vectors, related to sctp_sf_violation_paramlen, sctp_sf_abort_violation, sctp_make_abort_violation, and incorrect data types in function calls.

CWE-20 Oct 21, 2008

CVE-2008-4609 1 PoC Analysis EPSS 0.02

Bsd < 12.2\(50\) - Denial of Service

The TCP implementation in (1) Linux, (2) platforms based on BSD Unix, (3) Microsoft Windows, (4) Cisco products, and probably other operating systems allows remote attackers to cause a denial of service (connection queue exhaustion) via multiple vectors that manipulate information in the TCP state table, as demonstrated by sockstress.

CWE-16 Oct 20, 2008

CVE-2008-3831 EPSS 0.00

Linux kernel 2.6.24/OpenBSD - DoS

The i915 driver in (1) drivers/char/drm/i915_dma.c in the Linux kernel 2.6.24 on Debian GNU/Linux and (2) sys/dev/pci/drm/i915_drv.c in OpenBSD does not restrict the DRM_I915_HWS_ADDR ioctl to the Direct Rendering Manager (DRM) master, which allows local users to cause a denial of service (memory corruption) via a crafted ioctl call, related to absence of the DRM_MASTER and DRM_ROOT_ONLY flags in the ioctl's configuration.

CWE-399 Oct 20, 2008