Lucene search
K

13 matches found

RedhatCVE
RedhatCVE
added 2026/02/04 11:50 p.m.5 views

CVE-2026-23106

A locking violation was found in the Linux kernel's timekeeping subsystem. The doadjtimex function incorrectly references tkcore instead of the passed auxiliary timekeeper when adjusting leap second state. This causes the core timekeeper's sequence lock to be written without holding its associate...

5.5CVSS5.3AI score0.001EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2026/02/04 4:8 p.m.4 views

CVE-2026-23106

In the Linux kernel, the following vulnerability has been resolved: timekeeping: Adjust the leap state for the correct auxiliary timekeeper When doajdtimex was introduced to handle adjtimex for any timekeeper, this reference to tkcore was not updated. When called on an auxiliary timekeeper, the...

5.5CVSS5.2AI score0.001EPSS
Exploits0
Circl
Circl
added 2025/06/04 4:3 p.m.15 views

CVE-2025-23106

creationtimestamp| type| source ---|---|--- 2025-06-04 16:03:17+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqs6l3psyv62...

6.5CVSS7AI score0.00213EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 7:4 a.m.6 views

CVE-2024-23106

An improper restriction of excessive authentication attempts CWE-307 in FortiClientEMS version 7.2.0 through 7.2.4 and before 7.0.10 allows an unauthenticated attacker to try a brute force attack against the FortiClientEMS console via crafted HTTP or HTTPS requests...

9.8CVSS7.2AI score0.00925EPSS
Exploits0References1
Circl
Circl
added 2025/01/14 2:16 p.m.6 views

CVE-2024-23106

creationtimestamp| type| source ---|---|--- 2025-01-14 14:16:33+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfpgune3il2b 2025-01-14 14:28:19+00:00| seen| https://infosec.exchange/users/cve/statuses/113827178052524738 2025-01-14 14:32:59+00:00| seen|...

9.8CVSS7AI score0.00925EPSS
Exploits0References5
NVD
NVD
added 2025/01/14 2:15 p.m.5 views

CVE-2024-23106

An improper restriction of excessive authentication attempts CWE-307 in FortiClientEMS version 7.2.0 through 7.2.4 and before 7.0.10 allows an unauthenticated attacker to try a brute force attack against the FortiClientEMS console via crafted HTTP or HTTPS requests...

9.8CVSS0.00925EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/14 2:10 p.m.5 views

CVE-2024-23106

An improper restriction of excessive authentication attempts CWE-307 in FortiClientEMS version 7.2.0 through 7.2.4 and before 7.0.10 allows an unauthenticated attacker to try a brute force attack against the FortiClientEMS console via crafted HTTP or HTTPS requests...

8.1CVSS7.2AI score0.00925EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/14 2:10 p.m.9 views

CVE-2024-23106

An improper restriction of excessive authentication attempts CWE-307 in FortiClientEMS version 7.2.0 through 7.2.4 and before 7.0.10 allows an unauthenticated attacker to try a brute force attack against the FortiClientEMS console via crafted HTTP or HTTPS requests...

8.1CVSS0.00925EPSS
Exploits0References1
NVD
NVD
added 2022/12/30 10:15 p.m.11 views

CVE-2021-23106

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none...

Exploits0
RedhatCVE
RedhatCVE
added 2022/01/24 4:54 p.m.35 views

CVE-2022-23106

Jenkins Configuration as Code Plugin 1.55 and earlier used a non-constant time comparison function when validating an authentication token allowing attackers to use statistical methods to obtain a valid authentication token...

5.3CVSS4.5AI score0.01121EPSS
Exploits0References4
Circl
Circl
added 2022/01/12 10:17 p.m.5 views

CVE-2022-23106

creationtimestamp| type| source ---|---|--- 2022-01-12 22:17:32+00:00| seen| https://t.me/cibsecurity/35367...

5.3CVSS5.5AI score0.01121EPSS
Exploits0References1
CVE
CVE
added 2022/01/12 12:0 a.m.112 views

CVE-2022-23106

CVE-2022-23106 affects Jenkins Configuration as Code Plugin (versions up to 1.55). The issue is a non-constant time comparison when validating an authentication token, enabling attackers to use statistical methods to deduce a valid token. The available connected documents corroborate the vulnerab...

5.3CVSS5.2AI score0.01121EPSS
Exploits0References2Affected Software1
CVE
CVE
added 1976/01/01 12:0 a.m.41 views

CVE-2021-23106

CVE-2021-23106 entry is rejected/not used and does not represent an active vulnerability.

7.4AI score
Exploits0
Rows per page
Query Builder