Skip to main content
CVE-2015-1421 CRITICAL Act Now

Use-after-free vulnerability in the sctp_assoc_update function in net/sctp/associola.c in the Linux kernel before 3.18.8 allows remote attackers to cause a denial of service (slab corruption and. Rated critical severity (CVSS 10.0), this vulnerability is remotely exploitable, low attack complexity. Epss exploitation probability 10.9% and no vendor patch available.

Denial Of Service Linux Linux Kernel Ubuntu Linux Debian Linux
NVD GitHub
CVSS 2.0
10.0
EPSS
10.9%
CVE-2014-7822 HIGH POC This Week

The implementation of certain splice_write file operations in the Linux kernel before 3.16 does not enforce a restriction on the maximum size of a single file, which allows local users to cause a. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. Public exploit code available and no vendor patch available.

Denial Of Service Privilege Escalation Linux Linux Kernel
NVD GitHub Exploit-DB
CVSS 2.0
7.2
EPSS
0.4%
CVE-2015-1593 MEDIUM POC PATCH This Month

The stack randomization feature in the Linux kernel before 3.19.1 on 64-bit platforms uses incorrect data types for the results of bitwise left-shift operations, which makes it easier for attackers. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available.

Privilege Escalation Linux Linux Kernel
NVD GitHub
CVSS 2.0
5.0
EPSS
2.0%
CVE-2014-9687 MEDIUM POC This Month

eCryptfs 104 and earlier uses a default salt to encrypt the mount passphrase, which makes it easier for attackers to obtain user passwords via a brute force attack. Rated medium severity (CVSS 5.0), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

Authentication Bypass Ecryptfs Utils
NVD
CVSS 2.0
5.0
EPSS
0.5%
CVE-2015-0778 HIGH This Week

osc before 0.151.0 allows remote attackers to execute arbitrary commands via shell metacharacters in a _service file. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Command Injection Fedora Opensuse Osc Opensuse
NVD
CVSS 2.0
7.5
EPSS
0.9%
CVE-2014-8173 HIGH This Week

The pmd_none_or_trans_huge_or_clear_bad function in include/asm-generic/pgtable.h in the Linux kernel before 3.13 on NUMA systems does not properly determine whether a Page Middle Directory (PMD). Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Linux Linux Kernel
NVD GitHub
CVSS 2.0
7.2
EPSS
0.0%
CVE-2015-0274 HIGH This Week

The XFS implementation in the Linux kernel before 3.15 improperly uses an old size value during remote attribute replacement, which allows local users to cause a denial of service (transaction. Rated high severity (CVSS 7.2), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Linux Linux Kernel
NVD GitHub
CVSS 2.0
7.2
EPSS
0.0%
CVE-2014-8159 MEDIUM This Month

The InfiniBand (IB) implementation in the Linux kernel package before 2.6.32-504.12.2 on Red Hat Enterprise Linux (RHEL) 6 does not properly restrict use of User Verbs for registration of memory. Rated medium severity (CVSS 6.9). No vendor patch available.

Denial Of Service Red Hat Privilege Escalation Linux Linux Kernel +2
NVD
CVSS 2.0
6.9
EPSS
0.1%
CVE-2014-8172 MEDIUM This Month

The filesystem implementation in the Linux kernel before 3.13 performs certain operations on lists of files with an inappropriate locking approach, which allows local users to cause a denial of. Rated medium severity (CVSS 4.9), this vulnerability is low attack complexity. No vendor patch available.

Denial Of Service Linux Linux Kernel
NVD GitHub
CVSS 2.0
4.9
EPSS
0.0%
CVE-2015-1420 LOW Monitor

Race condition in the handle_to_path function in fs/fhandle.c in the Linux kernel through 3.19.1 allows local users to bypass intended size restrictions and trigger read operations on additional. Rated low severity (CVSS 1.9). No vendor patch available.

Race Condition Linux Authentication Bypass Debian Linux Linux Kernel
NVD
CVSS 2.0
1.9
EPSS
0.0%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy