Lucene search
K

64 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux - уязвимость в linux-5.10, linux

Several Linux PV device frontends are vulnerable to attacks by backends that use grant table interfaces to remove access rights from resources. This can lead to potential data leaks, data corruption by malicious backends, and denial of service attacks. The backends that use these interfaces may n...

7CVSS6.6AI score0.00351EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/02/04 9:26 p.m.4 views

CVE-2026-23040

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211hwsim: fix typo in frequency notification The NAN notification is for 5745 MHz which corresponds to channel 149 and not 5475 which is not actually a valid channel. This could result in a NULL pointer dereference in...

7.6CVSS5AI score0.00145EPSS
Exploits0References4
NVD
NVD
added 2026/02/04 4:16 p.m.6 views

CVE-2026-23040

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211hwsim: fix typo in frequency notification The NAN notification is for 5745 MHz which corresponds to channel 149 and not 5475 which is not actually a valid channel. This could result in a NULL pointer dereference in...

0.00145EPSS
Exploits0References2
OSV
OSV
added 2026/02/04 4:16 p.m.6 views

DEBIAN-CVE-2026-23040

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211hwsim: fix typo in frequency notification The NAN notification is for 5745 MHz which corresponds to channel 149 and not 5475 which is not actually a valid channel. This could result in a NULL pointer dereference in...

5.2AI score0.00145EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/02/04 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-23040

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211hwsim: fix typo in frequency notification The NAN notification is for 5745 MHz...

5.7AI score0.00145EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/14 12:0 a.m.4 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001707)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001707 advisory. Linux PV device frontends vulnerable to attacks by backends This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities...

7CVSS6.6AI score0.00351EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-28152

Malicious code in bioql PyPI...

7CVSS6.7AI score0.00351EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/05/22 7:17 p.m.7 views

CVE-2021-23040

On BIG-IP AFM version 16.0.x before 16.0.1.2, 15.1.x before 15.1.3, 14.1.x before 14.1.4.2, 13.1.x before 13.1.4.1, and all versions of 12.1.x, a SQL injection vulnerability exists in an undisclosed page of the BIG-IP Configuration utility. This issue is exposed only when BIG-IP AFM is provisione...

8.8CVSS7.7AI score0.00963EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:15 p.m.7 views

CVE-2020-23040

Sky File v2.1.0 contains a directory traversal vulnerability in the FTP server which allows attackers to access sensitive data and files via 'null' path commands...

7.5CVSS6.8AI score0.01677EPSS
Exploits1
The Hacker News
The Hacker News
added 2025/01/27 2:17 p.m.34 views

GitHub Desktop Vulnerability Risks Credential Leaks via Malicious Remote URLs

Multiple security vulnerabilities have been disclosed in GitHub Desktop as well as other Git-related projects that, if successfully exploited, could permit an attacker to gain unauthorized access to a user's Git credentials. "Git implements a protocol called Git Credential Protocol to retrieve...

8.5CVSS9.1AI score0.10047EPSS
Exploits2
CVE
CVE
added 2025/01/15 5:25 p.m.138 views

CVE-2025-23040

CVE-2025-23040 affects GitHub Desktop prior to 3.4.12. A maliciously crafted remote URL can cause the credential request from Git to be misinterpreted by GitHub Desktop via the git-credential protocol, leading to exfiltration of credentials (GitHub username, OAuth tokens, or other remote-host cre...

6.6CVSS6.7AI score0.00747EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/01/15 5:25 p.m.13 views

CVE-2025-23040 Maliciously crafted remote URLs could lead to credential leak in GitHub Desktop

GitHub Desktop is an open-source Electron-based GitHub app designed for git development. An attacker convincing a user to clone a repository directly or through a submodule can allow the attacker access to the user's credentials through the use of maliciously crafted remote URL. GitHub Desktop...

6.6CVSS7AI score0.00747EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/05/02 9:4 p.m.19 views

CVE-2024-30304 ZDI-CAN-23040: Adobe Acrobat Reader DC Annotation Use-After-Free Remote Code Execution Vulnerability

Acrobat Reader versions 20.005.30539, 23.008.20470 and earlier are affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...

7.8CVSS8AI score0.00562EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/11/03 12:0 a.m.20 views

Zoom VDI Meeting Client < 5.14.12 Vulnerability (ZSB-23040)

The version of Zoom VDI Meeting Client installed on the remote host is prior to 5.14.12. It is, therefore, affected by a vulnerability as referenced in the ZSB-23040 advisory. - Improper authentication in Zoom clients may allow an authenticated user to conduct a denial of service via network...

7.1CVSS6.5AI score0.00924EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/05/16 12:0 a.m.34 views

EulerOS Virtualization 2.10.0 : kernel (EulerOS-SA-2023-1933)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Linux PV device frontends vulnerable to attacks by backends This CNA information record relates to multiple CVEs; the text explains...

7.8CVSS4.5AI score0.01016EPSS
Exploits2References25
OpenVAS
OpenVAS
added 2023/05/16 12:0 a.m.27 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2023-1933)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.01016EPSS
Exploits2References2
OSV
OSV
added 2023/02/22 5:15 p.m.5 views

CVE-2023-23040

TP-Link router TL-WR940N V6 3.19.1 Build 180119 uses a deprecated MD5 algorithm to hash the admin password used for basic authentication...

7.5CVSS7.1AI score0.00362EPSS
Exploits0References2
CVE
CVE
added 2023/02/22 12:0 a.m.52 views

CVE-2023-23040

HARDWARE: TP-Link TL-WR940N V6, firmware 3.19.1 Build 180119. VULNERABLE COMPONENT/CAUSE: admin password hashing uses deprecated MD5 for basic authentication. IMPACT: potential confidentiality exposure due to weak password-hashing, per CVSS base metrics (C:H). EXPLOITATION: no explicit exploitati...

7.5CVSS7.6AI score0.00362EPSS
Exploits0References2Affected Software1
F5 Networks
F5 Networks
added 2023/02/21 7:33 p.m.45 views

K94255403: BIG-IP AFM vulnerability CVE-2021-23040

Security Advisory Description A SQL injection vulnerability exists in an undisclosed page of the BIG-IP Configuration utility. This issue is exposed only when BIG-IP AFM is provisioned. CVE-2021-23040 Impact An authenticated attacker can exploit this vulnerability to execute malicious SQL...

8.8CVSS8.7AI score0.00963EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2023/02/10 12:0 a.m.22 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2023-1388)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.1AI score0.00733EPSS
Exploits0References2
Rows per page
Query Builder