13 matches found
CVE-2026-23106
A locking violation was found in the Linux kernel's timekeeping subsystem. The doadjtimex function incorrectly references tkcore instead of the passed auxiliary timekeeper when adjusting leap second state. This causes the core timekeeper's sequence lock to be written without holding its associate...
CVE-2026-23106
In the Linux kernel, the following vulnerability has been resolved: timekeeping: Adjust the leap state for the correct auxiliary timekeeper When doajdtimex was introduced to handle adjtimex for any timekeeper, this reference to tkcore was not updated. When called on an auxiliary timekeeper, the...
CVE-2025-23106
creationtimestamp| type| source ---|---|--- 2025-06-04 16:03:17+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqs6l3psyv62...
CVE-2024-23106
An improper restriction of excessive authentication attempts CWE-307 in FortiClientEMS version 7.2.0 through 7.2.4 and before 7.0.10 allows an unauthenticated attacker to try a brute force attack against the FortiClientEMS console via crafted HTTP or HTTPS requests...
CVE-2024-23106
creationtimestamp| type| source ---|---|--- 2025-01-14 14:16:33+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfpgune3il2b 2025-01-14 14:28:19+00:00| seen| https://infosec.exchange/users/cve/statuses/113827178052524738 2025-01-14 14:32:59+00:00| seen|...
CVE-2024-23106
An improper restriction of excessive authentication attempts CWE-307 in FortiClientEMS version 7.2.0 through 7.2.4 and before 7.0.10 allows an unauthenticated attacker to try a brute force attack against the FortiClientEMS console via crafted HTTP or HTTPS requests...
CVE-2024-23106
An improper restriction of excessive authentication attempts CWE-307 in FortiClientEMS version 7.2.0 through 7.2.4 and before 7.0.10 allows an unauthenticated attacker to try a brute force attack against the FortiClientEMS console via crafted HTTP or HTTPS requests...
CVE-2024-23106
An improper restriction of excessive authentication attempts CWE-307 in FortiClientEMS version 7.2.0 through 7.2.4 and before 7.0.10 allows an unauthenticated attacker to try a brute force attack against the FortiClientEMS console via crafted HTTP or HTTPS requests...
CVE-2021-23106
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none...
CVE-2022-23106
Jenkins Configuration as Code Plugin 1.55 and earlier used a non-constant time comparison function when validating an authentication token allowing attackers to use statistical methods to obtain a valid authentication token...
CVE-2022-23106
creationtimestamp| type| source ---|---|--- 2022-01-12 22:17:32+00:00| seen| https://t.me/cibsecurity/35367...
CVE-2022-23106
CVE-2022-23106 affects Jenkins Configuration as Code Plugin (versions up to 1.55). The issue is a non-constant time comparison when validating an authentication token, enabling attackers to use statistical methods to deduce a valid token. The available connected documents corroborate the vulnerab...
CVE-2021-23106
CVE-2021-23106 entry is rejected/not used and does not represent an active vulnerability.