Latest CVE Feed

Following is the list of latest published vulnerabilities. You can filter the list based on the severity of the vulnerability, whether it is actively exploited (also known as CISA KEV List) or remotely exploitable. You can also sort the list based on the published date, last updated date, or CVSS score.
Latest Critical Actively Exploited Remotely Exploitable
Published Last Updated CVSS Score

  • 0.0

    NONE
    CVE-2025-37861

    In the Linux kernel, the following vulnerability has been resolved: scsi: mpi3mr: Synchronous access b/w reset and tm thread for reply queue When the task management thread processes reply queues while the reset thread resets them, the task management t... Read more

    Affected Products :
    • Published: May. 09, 2025
    • Modified: May. 09, 2025

  • 0.0

    NONE
    CVE-2025-37867

    In the Linux kernel, the following vulnerability has been resolved: RDMA/core: Silence oversized kvmalloc() warning syzkaller triggered an oversized kvmalloc() warning. Silence it by adding __GFP_NOWARN. syzkaller log: WARNING: CPU: 7 PID: 518 at mm/u... Read more

    Affected Products :
    • Published: May. 09, 2025
    • Modified: May. 09, 2025

  • 0.0

    NONE
    CVE-2025-37868

    In the Linux kernel, the following vulnerability has been resolved: drm/xe/userptr: fix notifier vs folio deadlock User is reporting what smells like notifier vs folio deadlock, where migrate_pages_batch() on core kernel side is holding folio lock(s) an... Read more

    Affected Products :
    • Published: May. 09, 2025
    • Modified: May. 09, 2025

  • 0.0

    NONE
    CVE-2025-37871

    In the Linux kernel, the following vulnerability has been resolved: nfsd: decrease sc_count directly if fail to queue dl_recall A deadlock warning occurred when invoking nfs4_put_stid following a failed dl_recall queue operation: T1 ... Read more

    Affected Products :
    • Published: May. 09, 2025
    • Modified: May. 09, 2025

  • 0.0

    NONE
    CVE-2025-37874

    In the Linux kernel, the following vulnerability has been resolved: net: ngbe: fix memory leak in ngbe_probe() error path When ngbe_sw_init() is called, memory is allocated for wx->rss_key in wx_init_rss_key(). However, in ngbe_probe() function, the sub... Read more

    Affected Products :
    • Published: May. 09, 2025
    • Modified: May. 09, 2025

  • 0.0

    NONE
    CVE-2025-37873

    In the Linux kernel, the following vulnerability has been resolved: eth: bnxt: fix missing ring index trim on error path Commit under Fixes converted tx_prod to be free running but missed masking it on the Tx error path. This crashes on error conditions... Read more

    Affected Products :
    • Published: May. 09, 2025
    • Modified: May. 09, 2025

  • 0.0

    NONE
    CVE-2025-37877

    In the Linux kernel, the following vulnerability has been resolved: iommu: Clear iommu-dma ops on cleanup If iommu_device_register() encounters an error, it can end up tearing down already-configured groups and default domains, however this currently st... Read more

    Affected Products :
    • Published: May. 09, 2025
    • Modified: May. 09, 2025

  • 0.0

    NONE
    CVE-2025-37878

    In the Linux kernel, the following vulnerability has been resolved: perf/core: Fix WARN_ON(!ctx) in __free_event() for partial init Move the get_ctx(child_ctx) call and the child_event->ctx assignment to occur immediately after the child event is alloca... Read more

    Affected Products :
    • Published: May. 09, 2025
    • Modified: May. 09, 2025

  • 0.0

    NONE
    CVE-2025-37881

    In the Linux kernel, the following vulnerability has been resolved: usb: gadget: aspeed: Add NULL pointer check in ast_vhub_init_dev() The variable d->name, returned by devm_kasprintf(), could be NULL. A pointer check is added to prevent potential NULL ... Read more

    Affected Products :
    • Published: May. 09, 2025
    • Modified: May. 09, 2025

  • 0.0

    NONE
    CVE-2025-37882

    In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Fix isochronous Ring Underrun/Overrun event handling The TRB pointer of these events points at enqueue at the time of error occurrence on xHCI 1.1+ HCs or it's NULL on older ... Read more

    Affected Products :
    • Published: May. 09, 2025
    • Modified: May. 09, 2025

  • 0.0

    NONE
    CVE-2025-37883

    In the Linux kernel, the following vulnerability has been resolved: s390/sclp: Add check for get_zeroed_page() Add check for the return value of get_zeroed_page() in sclp_console_init() to prevent null pointer dereference. Furthermore, to solve the memo... Read more

    Affected Products :
    • Published: May. 09, 2025
    • Modified: May. 09, 2025

  • 0.0

    NONE
    CVE-2025-37884

    In the Linux kernel, the following vulnerability has been resolved: bpf: Fix deadlock between rcu_tasks_trace and event_mutex. Fix the following deadlock: CPU A _free_event() perf_kprobe_destroy() mutex_lock(&event_mutex) perf_trace_event_un... Read more

    Affected Products :
    • Published: May. 09, 2025
    • Modified: May. 09, 2025

  • 0.0

    NONE
    CVE-2025-37886

    In the Linux kernel, the following vulnerability has been resolved: pds_core: make wait_context part of q_info Make the wait_context a full part of the q_info struct rather than a stack variable that goes away after pdsc_adminq_post() is done so that th... Read more

    Affected Products :
    • Published: May. 09, 2025
    • Modified: May. 09, 2025

  • 0.0

    NONE
    CVE-2025-37885

    In the Linux kernel, the following vulnerability has been resolved: KVM: x86: Reset IRTE to host control if *new* route isn't postable Restore an IRTE back to host control (remapped or posted MSI mode) if the *new* GSI route prevents posting the IRQ dir... Read more

    Affected Products :
    • Published: May. 09, 2025
    • Modified: May. 09, 2025

  • 0.0

    NONE
    CVE-2025-37887

    In the Linux kernel, the following vulnerability has been resolved: pds_core: handle unsupported PDS_CORE_CMD_FW_CONTROL result If the FW doesn't support the PDS_CORE_CMD_FW_CONTROL command the driver might at the least print garbage and at the worst cr... Read more

    Affected Products :
    • Published: May. 09, 2025
    • Modified: May. 09, 2025

  • 0.0

    NONE
    CVE-2025-37819

    In the Linux kernel, the following vulnerability has been resolved: irqchip/gic-v2m: Prevent use after free of gicv2m_get_fwnode() With ACPI in place, gicv2m_get_fwnode() is registered with the pci subsystem as pci_msi_get_fwnode_cb(), which may get inv... Read more

    Affected Products : linux_kernel
    • Published: May. 08, 2025
    • Modified: May. 09, 2025

  • 0.0

    NONE
    CVE-2025-46392

    Uncontrolled Resource Consumption vulnerability in Apache Commons Configuration 1.x. There are a number of issues in Apache Commons Configuration 1.x that allow excessive resource consumption when loading untrusted configurations or using unexpected usag... Read more

    Affected Products :
    • Published: May. 09, 2025
    • Modified: May. 09, 2025

  • 0.0

    NONE
    CVE-2025-1087

    Kong Insomnia Desktop Application before 11.0.2 contains a template injection vulnerability that allows attackers to execute arbitrary code. The vulnerability exists due to insufficient validation of user-supplied input when processing template strings, w... Read more

    Affected Products :
    • Published: May. 09, 2025
    • Modified: May. 09, 2025

  • 0.0

    NONE
    CVE-2025-45885

    PHPGURUKUL Vehicle Parking Management System v1.13 is vulnerable to SQL injection in the /vpms/users/login.php file. Attackers can inject malicious code from the parameter 'emailcont' and use it directly in SQL queries.... Read more

    Affected Products :
    • Published: May. 09, 2025
    • Modified: May. 09, 2025

  • 0.0

    NONE
    CVE-2024-12442

    EnerSys AMPA versions 24.04 through 24.16, inclusive, are vulnerable to command injection leading to privileged remote shell access.... Read more

    Affected Products :
    • Published: May. 09, 2025
    • Modified: May. 09, 2025
Showing 20 of 283 Results
© cvefeed.io
Latest DB Update: May. 09, 2025 20:55