Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
andy lutomirski vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2017-14489
The iscsi_if_rx function in drivers/scsi/scsi_transport_iscsi.c in the Linux kernel up to and including 4.13.2 allows local users to cause a denial of service (panic) by leveraging incorrect length validation.
Linux Linux Kernel
1 EDB exploit
5.5
CVSSv3
CVE-2017-18241
fs/f2fs/segment.c in the Linux kernel prior to 4.13 allows local users to cause a denial of service (NULL pointer dereference and panic) by using a noflush_merge option that triggers a NULL value for a flush_cmd_control data structure.
Linux Linux Kernel
Debian Debian Linux 9.0
Debian Debian Linux 8.0
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
5.5
CVSSv3
CVE-2018-15594
arch/x86/kernel/paravirt.c in the Linux kernel prior to 4.18.1 mishandles certain indirect calls, which makes it easier for malicious users to conduct Spectre-v2 attacks against paravirtual guests.
Debian Debian Linux 9.0
Debian Debian Linux 8.0
Canonical Ubuntu Linux 12.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Linux Linux Kernel
2 Github repositories
5.6
CVSSv3
CVE-2019-7308
kernel/bpf/verifier.c in the Linux kernel prior to 4.20.6 performs undesirable out-of-bounds speculation on pointer arithmetic in various cases, including cases of different branches with different state or limits to sanitize, leading to side-channel attacks.
Linux Linux Kernel
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
Opensuse Leap 15.0
7.8
CVSSv3
CVE-2018-7480
The blkcg_init_queue function in block/blk-cgroup.c in the Linux kernel prior to 4.11 allows local users to cause a denial of service (double free) or possibly have unspecified other impact by triggering a creation failure.
Linux Linux Kernel
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 14.04
Debian Debian Linux 9.0
5.5
CVSSv3
CVE-2016-0821
The LIST_POISON feature in include/linux/poison.h in the Linux kernel prior to 4.3, as used in Android 6.0.1 prior to 2016-03-01, does not properly consider the relationship to the mmap_min_addr value, which makes it easier for malicious users to bypass a poison-pointer protectio...
Linux Linux Kernel
Google Android 6.0.1
7.8
CVSSv3
CVE-2016-3070
The trace_writeback_dirty_page implementation in include/trace/events/writeback.h in the Linux kernel prior to 4.4 improperly interacts with mm/migrate.c, which allows local users to cause a denial of service (NULL pointer dereference and system crash) or possibly have unspecifie...
Debian Debian Linux 8.0
Linux Linux Kernel
7.8
CVSSv3
CVE-2017-1000371
The offset2lib patch as used by the Linux Kernel contains a vulnerability, if RLIMIT_STACK is set to RLIM_INFINITY and 1 Gigabyte of memory is allocated (the maximum under the 1/4 restriction) then the stack will be grown down to 0x80000000, and as the PIE binary is mapped above ...
Linux Linux Kernel
2 EDB exploits
5.5
CVSSv3
CVE-2017-18193
fs/f2fs/extent_cache.c in the Linux kernel prior to 4.13 mishandles extent trees, which allows local users to cause a denial of service (BUG) via an application with multiple threads.
Linux Linux Kernel
7.8
CVSSv3
CVE-2017-18222
In the Linux kernel prior to 4.12, Hisilicon Network Subsystem (HNS) does not consider the ETH_SS_PRIV_FLAGS case when retrieving sset_count data, which allows local users to cause a denial of service (buffer overflow and memory corruption) or possibly have unspecified other impa...
Linux Linux Kernel
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »