Lucene search
K

20 matches found

OSV
OSV
added 17 hours ago4 views

ROOT-OS-UBUNTU-2404-CVE-2025-21711 CVE-2025-21711 in rootio-linux - Patched by Root

Root has patched CVE-2025-21711 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...

5.5CVSS7.8AI score0.00208EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2026/03/30 8:16 p.m.2 views

CVE-2026-21711

A flaw in Node.js Permission Model network enforcement leaves Unix Domain Socket UDS server operations without the required permission checks, while all comparable network paths correctly enforce them. As a result, code running under --permission without --allow-net can create and expose local IP...

5.3CVSS6.5AI score0.00146EPSS
Exploits0References2
OSV
OSV
added 2026/03/29 6:9 a.m.5 views

BELL-CVE-2026-21711 CVE-2026-21711 does not affect BellSoft software

Bulletin has no description...

5.3CVSS6.4AI score0.00146EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/03/25 4:58 p.m.3 views

SUSE CVE-2026-21711

A flaw in Node.js Permission Model network enforcement leaves Unix Domain Socket UDS server operations without the required permission checks, while all comparable network paths correctly enforce them. As a result, code running under --permission without --allow-net can create and expose local IP...

6.5CVSS6.4AI score0.00146EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.3 views

Azure Linux 3.0 Security Update: kernel (CVE-2025-21711)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-21711 advisory. - In the Linux kernel, the following vulnerability has been resolved: net/rose: prevent integer overflows in...

5.5CVSS6.7AI score0.00208EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/10/27 12:0 a.m.3 views

Siemens SIMATIC Devices Integer Overflow or Wraparound (CVE-2025-21711)

net/rose: prevent integer overflows in rosesetsockopt This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503507; scriptversion"1.2";...

5.5CVSS7.4AI score0.00208EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2025/05/05 3:7 p.m.6 views

CVE-2025-21711 affecting package kernel for versions less than 5.15.179.1-1

CVE-2025-21711 affecting package kernel for versions less than 5.15.179.1-1. A patched version of the package is available...

5.5CVSS6.8AI score0.00208EPSS
Exploits0
CBLMariner
CBLMariner
added 2025/03/13 9:13 p.m.8 views

CVE-2025-21711 affecting package kernel for versions less than 6.6.78.1-3

CVE-2025-21711 affecting package kernel for versions less than 6.6.78.1-3. An upgraded version of the package is available that resolves this issue...

5.5CVSS5.5AI score0.00208EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2025-21711

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/rose: prevent integer overflows in rosesetsockopt In case of possible unpredictably large arguments passed to rosesetsockopt and multiplied by extra values ...

5.5CVSS6.8AI score0.00208EPSS
Exploits0References2
OSV
OSV
added 2025/02/28 5:57 a.m.1 views

BELL-CVE-2025-21711

Bulletin has no description...

5.5CVSS7.5AI score0.00208EPSS
Exploits0References1
Circl
Circl
added 2025/02/27 2:25 a.m.2 views

CVE-2025-21711

creationtimestamp| type| source ---|---|--- 2025-02-27 02:25:31+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/5643 2025-03-08 04:34:56+00:00| seen| Telegram/1HXxncZJ4Dq8KnPdtmdR1JDgyUZQZFMh1c-fdqIkEGTUrE 2025-12-03 14:14:49+00:00| seen|...

5.5CVSS6.7AI score0.00208EPSS
Exploits0References2
NVD
NVD
added 2025/02/27 2:15 a.m.15 views

CVE-2025-21711

In the Linux kernel, the following vulnerability has been resolved: net/rose: prevent integer overflows in rosesetsockopt In case of possible unpredictably large arguments passed to rosesetsockopt and multiplied by extra values on top of that, integer overflows may occur. Do the safest minimum an...

5.5CVSS0.00208EPSS
Exploits0References10
Cvelist
Cvelist
added 2025/02/27 2:7 a.m.18 views

CVE-2025-21711 net/rose: prevent integer overflows in rose_setsockopt()

In the Linux kernel, the following vulnerability has been resolved: net/rose: prevent integer overflows in rosesetsockopt In case of possible unpredictably large arguments passed to rosesetsockopt and multiplied by extra values on top of that, integer overflows may occur. Do the safest minimum an...

0.00208EPSS
Exploits0References7
CVE
CVE
added 2025/02/27 2:7 a.m.145 views

CVE-2025-21711

CVE-2025-21711 affects the Linux kernel in the Rose network stack (net/rose) via rose_setsockopt(). The vulnerability arises when handling large arguments for sockopt, where an integer overflow can occur if the input is unexpectedly large. The fix adds bounds checks on the contents of 'opt', retu...

5.5CVSS6.6AI score0.00208EPSS
Exploits0References10Affected Software1
RedhatCVE
RedhatCVE
added 2025/02/06 1:1 a.m.8 views

CVE-2022-21711

elfspirit is an ELF static analysis and injection framework that parses, manipulates, and camouflages ELF files. When analyzing the ELF file format in versions prior to 1.1, there is an out-of-bounds read bug, which can lead to application crashes or information leakage. By constructing a special...

7.1CVSS6.7AI score0.00875EPSS
Exploits1References1
Circl
Circl
added 2022/01/24 10:17 p.m.5 views

CVE-2022-21711

creationtimestamp| type| source ---|---|--- 2022-01-24 22:17:46+00:00| seen| https://t.me/cibsecurity/36154...

7.1CVSS7AI score0.00875EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2022/01/24 7:50 p.m.7 views

CVE-2022-21711 Out-of-bounds Read lead to application crashes or information leakage in ELF parsing.

elfspirit is an ELF static analysis and injection framework that parses, manipulates, and camouflages ELF files. When analyzing the ELF file format in versions prior to 1.1, there is an out-of-bounds read bug, which can lead to application crashes or information leakage. By constructing a special...

7.1CVSS6.9AI score0.00875EPSS
Exploits1References3
CVE
CVE
added 2022/01/24 7:50 p.m.62 views

CVE-2022-21711

The CVE pertains to elfspirit, an ELF analysis framework where the ELF parsing component is vulnerable in versions prior to 1.1 due to an out-of-bounds read. This can lead to application crashes or information leakage, as the issue may allow leakage of address information via a specially crafted ...

7.1CVSS6.9AI score0.00875EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2022/01/24 7:50 p.m.21 views

CVE-2022-21711 Out-of-bounds Read lead to application crashes or information leakage in ELF parsing.

elfspirit is an ELF static analysis and injection framework that parses, manipulates, and camouflages ELF files. When analyzing the ELF file format in versions prior to 1.1, there is an out-of-bounds read bug, which can lead to application crashes or information leakage. By constructing a special...

7.1CVSS6.9AI score0.00875EPSS
Exploits1References5
Cvelist
Cvelist
added 2022/01/24 7:50 p.m.24 views

CVE-2022-21711 Out-of-bounds Read lead to application crashes or information leakage in ELF parsing.

elfspirit is an ELF static analysis and injection framework that parses, manipulates, and camouflages ELF files. When analyzing the ELF file format in versions prior to 1.1, there is an out-of-bounds read bug, which can lead to application crashes or information leakage. By constructing a special...

7.1CVSS7.1AI score0.00875EPSS
Exploits1References3
Rows per page
Query Builder