Lucene search
K

60 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux - уязвимость в linux-5.10, linux

Several Linux PV device frontends are vulnerable to attacks by backends that use grant table interfaces to remove access rights from resources. This can lead to potential data leaks, data corruption by malicious backends, and denial of service attacks. The backends that use these interfaces may n...

7CVSS6.6AI score0.00351EPSS
Exploits0References2
OSV
OSV
added 2026/02/10 6:9 a.m.4 views

BELL-CVE-2026-23041

Bulletin has no description...

5.7AI score0.00145EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/04 11:41 p.m.5 views

CVE-2026-23041

In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix NULL pointer crash in bnxtptpenable during error cleanup When bnxtinitone fails during initialization e.g., bnxtinitintmode returns -ENODEV, the error path calls bnxtfreehwrmresources which destroys the DMA pool and...

5.2AI score0.00145EPSS
Exploits0References4
OSV
OSV
added 2026/02/04 4:16 p.m.3 views

DEBIAN-CVE-2026-23041

In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix NULL pointer crash in bnxtptpenable during error cleanup When bnxtinitone fails during initialization e.g., bnxtinitintmode returns -ENODEV, the error path calls bnxtfreehwrmresources which destroys the DMA pool and...

5.3AI score0.00145EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/14 12:0 a.m.4 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001707)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001707 advisory. Linux PV device frontends vulnerable to attacks by backends This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities...

7CVSS6.6AI score0.00351EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-28152

Malicious code in bioql PyPI...

7CVSS6.7AI score0.00351EPSS
Exploits0References6
CNVD
CNVD
added 2025/09/08 12:0 a.m.3 views

Google Android Denial of Service Vulnerability (CNVD-2025-23041)

Google Android is a Linux-based open source operating system from Google. Google Android suffers from a denial of service vulnerability that can be exploited by attackers to cause a local denial of service...

8.8CVSS6.5AI score0.00276EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:17 p.m.5 views

CVE-2021-23041

On BIG-IP version 16.0.x before 16.0.1.2, 15.1.x before 15.1.3, 14.1.x before 14.1.4.2, 13.1.x before 13.1.4.1, and all versions of 12.1.x, a DOM based cross-site scripting XSS vulnerability exists in an undisclosed page of the BIG-IP Configuration utility that allows an attacker to execute...

6.1CVSS5.7AI score0.00562EPSS
Exploits0References1
Circl
Circl
added 2025/01/14 7:10 p.m.4 views

CVE-2025-23041

creationtimestamp| type| source ---|---|--- 2025-01-14 19:10:25+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/1577 2025-01-14 19:16:49+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfpxnl4lzb2f 2025-01-14 20:42:07+00:00| seen|...

5.8CVSS4.8AI score0.00363EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/01/14 6:54 p.m.6 views

CVE-2025-23041 Short and Long Answer Fields Are Not Validated Server-Side For Maximum Length in Umbraco.Forms

Umbraco.Forms is a web form framework written for the nuget ecosystem. Character limits configured by editors for short and long answer fields are validated only client-side, not server-side. This issue has been patched in versions 8.13.16, 10.5.7, 13.2.2, and 14.1.2. Users are advised to upgrade...

5.8CVSS5.6AI score0.00363EPSS
Exploits0References1
CVE
CVE
added 2025/01/14 6:54 p.m.64 views

CVE-2025-23041

Summary of CVE-2025-23041 : Umbraco.Forms (NuGet) suffers from server-side input validation risk due to character limit checks being enforced only on the client. The root cause is lack of server-side validation for maximum field length in short and long answer fields. Affected versions have patch...

5.8CVSS5.6AI score0.00363EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/11/02 12:0 a.m.20 views

F5 Networks BIG-IP : BIG-IP TMUI vulnerability (K42526507)

The version of F5 Networks BIG-IP installed on the remote host is prior to 13.1.4.1 / 14.1.4.2 / 15.1.3 / 16.0.1.2 / 16.1.0. It is, therefore, affected by a vulnerability as referenced in the K42526507 advisory. - On BIG-IP version 16.0.x before 16.0.1.2, 15.1.x before 15.1.3, 14.1.x before...

6.1CVSS6.1AI score0.00562EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/08/09 12:0 a.m.25 views

Zoom Client < 5.15.5 Multiple Vulnerabilities (ZSB-23036, ZSB-23041) - Windows

Zoom Client is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:zoom:zoom"; ifdescription...

8.8CVSS7AI score0.00797EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/05/16 12:0 a.m.34 views

EulerOS Virtualization 2.10.0 : kernel (EulerOS-SA-2023-1933)

According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : Linux PV device frontends vulnerable to attacks by backends This CNA information record relates to multiple CVEs; the text explains...

7.8CVSS4.5AI score0.01016EPSS
Exploits2References25
OpenVAS
OpenVAS
added 2023/05/16 12:0 a.m.27 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2023-1933)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.8AI score0.01016EPSS
Exploits2References2
F5 Networks
F5 Networks
added 2023/02/21 6:46 p.m.41 views

K42526507: BIG-IP TMUI vulnerability CVE-2021-23041

Security Advisory Description A DOM based cross-site scripting XSS vulnerability exists in an undisclosed page of the BIG-IP Configuration utility that allows an attacker to execute JavaScript in the context of the current logged-in user. CVE-2021-23041 Impact An attacker may exploit this...

6.1CVSS5.7AI score0.00562EPSS
Exploits0Affected Software13
Tenable Nessus
Tenable Nessus
added 2022/07/08 12:0 a.m.60 views

EulerOS 2.0 SP9 : kernel (EulerOS-SA-2022-1999)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - A kernel information leak flaw was identified in the scsiioctl function in drivers/scsi/scsiioctl.c in the Linux kernel. This flaw allows a loca...

8.2CVSS6.9AI score0.02972EPSS
Exploits3References12
Tenable Nessus
Tenable Nessus
added 2022/06/14 12:0 a.m.91 views

Oracle Linux 7 : Unbreakable Enterprise kernel (ELSA-2022-9477)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-9477 advisory. - perf: Fix sysperfeventopen race against self Peter Zijlstra Orabug: 34207044 CVE-2022-1729 - debug: Lock down kgdb Stephen Brennan Orabug: 34207043...

7CVSS7.1AI score0.00617EPSS
Exploits3References8
Tenable Nessus
Tenable Nessus
added 2022/06/14 12:0 a.m.247 views

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel-container (ELSA-2022-9480)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-9480 advisory. - perf: Fix sysperfeventopen race against self Peter Zijlstra Orabug: 34211086 CVE-2022-1729 - debug: Lock down kgdb Stephen Brennan Orabug: 342110...

7.8CVSS7.1AI score0.01002EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2022/06/14 12:0 a.m.54 views

Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2022-9479)

The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-9479 advisory. - perf: Fix sysperfeventopen race against self Peter Zijlstra Orabug: 34211086 CVE-2022-1729 - debug: Lock down kgdb Stephen Brennan Orabug: 342110...

7.8CVSS7.1AI score0.01002EPSS
Exploits0References11
Rows per page
Query Builder