Shodan
Vulnerabilities
Vulnerable Software
Linux:  >> Linux Kernel  >> 2.6.21.5  Security Vulnerabilities
CVE-2024-0639
A denial of service vulnerability due to a deadlock was found in sctp_auto_asconf_init in net/sctp/socket.c in the Linux kernel’s SCTP subsystem. This flaw allows guests with local user privileges to trigger a deadlock and potentially crash the system.
CVSS Score
5.5
EPSS Score
0.0
Published
2024-01-17
CVE-2023-6915
A Null pointer dereference problem was found in ida_free in lib/idr.c in the Linux Kernel. This issue may allow an attacker using this library to cause a denial of service problem due to a missing check at a function return.
CVSS Score
6.2
EPSS Score
0.0
Published
2024-01-15
CVE-2022-48619
An issue was discovered in drivers/input/input.c in the Linux kernel before 5.17.10. An attacker can cause a denial of service (panic) because input_set_capability mishandles the situation in which an event code falls outside of a bitmap.
CVSS Score
5.5
EPSS Score
0.0
Published
2024-01-12
CVE-2023-51780
An issue was discovered in the Linux kernel before 6.6.8. do_vcc_ioctl in net/atm/ioctl.c has a use-after-free because of a vcc_recvmsg race condition.
CVSS Score
7.0
EPSS Score
0.0
Published
2024-01-11
CVE-2023-51781
An issue was discovered in the Linux kernel before 6.6.8. atalk_ioctl in net/appletalk/ddp.c has a use-after-free because of an atalk_recvmsg race condition.
CVSS Score
7.0
EPSS Score
0.0
Published
2024-01-11
CVE-2023-51782
An issue was discovered in the Linux kernel before 6.6.8. rose_ioctl in net/rose/af_rose.c has a use-after-free because of a rose_accept race condition.
CVSS Score
7.0
EPSS Score
0.0
Published
2024-01-11
CVE-2024-0340
A vulnerability was found in vhost_new_msg in drivers/vhost/vhost.c in the Linux kernel, which does not properly initialize memory in messages passed between virtual guests and the host operating system in the vhost/vhost.c:vhost_new_msg() function. This issue can allow local privileged users to read some kernel memory contents when reading from the /dev/vhost-net device file.
CVSS Score
4.4
EPSS Score
0.0
Published
2024-01-09
CVE-2022-2602
io_uring UAF, Unix SCM garbage collection
CVSS Score
5.3
EPSS Score
0.009
Published
2024-01-08
CVE-2022-2586
Known exploited
It was discovered that a nft object or expression could reference a nft set on a different nft table, leading to a use-after-free once that table was deleted.
CVSS Score
5.3
EPSS Score
0.016
Published
2024-01-08
CVE-2022-2588
It was discovered that the cls_route filter implementation in the Linux kernel would not remove an old filter from the hashtable before freeing it if its handle had the value 0.
CVSS Score
5.3
EPSS Score
0.582
Published
2024-01-08


Products
Pricing
Contact Us

Shodan ® - All rights reserved