12 matches found
ROOT-OS-DEBIAN-13-CVE-2026-23057 CVE-2026-23057 in rootio-linux - Patched by Root
Root has patched CVE-2026-23057 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...
CVE-2026-23057
creationtimestamp| type| source ---|---|--- 2026-06-01 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/ubuntu-linux-kernel-multiple-vulnerabilities20260602...
CVE-2026-23057
In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: Coalesce only linear skb vsock/virtio common tries to coalesce buffers in rx queue: if a linear skb with a spare tail room is followed by a small skb length limited by GOODCOPYLEN = 128, an attempt is made to join...
CVE-2026-23057 vsock/virtio: Coalesce only linear skb
In the Linux kernel, the following vulnerability has been resolved: vsock/virtio: Coalesce only linear skb vsock/virtio common tries to coalesce buffers in rx queue: if a linear skb with a spare tail room is followed by a small skb length limited by GOODCOPYLEN = 128, an attempt is made to join...
Linux Distros Unpatched Vulnerability : CVE-2026-23057
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - vsock/virtio: Coalesce only linear skb vsock/virtio common tries to coalesce buffers in rx queue: if a linear skb with a spare tail room is followed by a small...
Microsoft Edge (Chromium-based) Update elevation of privilege vulnerability (CNVD-2025-23057)
Microsoft Edge is a web browser from the American company Microsoft that comes with systems after Windows 10. An elevation of privilege vulnerability exists in Microsoft Edge Chromium-based Update, which is caused by improper link resolution before file access. An attacker could exploit the...
CVE-2025-23057
CVE-2025-23057 affects the web management interface of HPE Aruba Networking Fabric Composer. A vulnerability allows an authenticated remote attacker to perform stored XSS, enabling execution of arbitrary script code in a victim’s browser within the compromised interface context. Multiple sources ...
CVE-2024-23057
creationtimestamp| type| source ---|---|--- 2024-01-11 18:02:38+00:00| seen| https://t.me/ctinow/166689 2024-01-18 19:16:47+00:00| seen| https://t.me/ctinow/169877 2024-01-30 15:51:51+00:00| seen| https://t.me/ctinow/176001...
CVE-2024-23057
CVE-2024-23057 affects TOTOLINK A3300R, specifically version V17.0.0cu.557_B20221024. The issue is a command injection in the tz parameter of the setNtpCfg function, caused by insufficient input filtering. Multiple sources (CNVD, CNNVD, Red Hat, NVD/CVE listings, and related advisories) describe ...
CVE-2021-23057
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none...
CVE-2022-23057
In ERPNext, versions v12.0.9–v13.0.3 are vulnerable to Stored Cross-Site-Scripting (XSS) due to user input not being validated properly. A low-privilege attacker could inject arbitrary code into input fields when editing a user’s profile. Root cause: unchecked/unsanitized input allowing script ex...
CVE-2021-23057
This CVE entry is rejected and not used as stated in the description.