ROOT-OS-DEBIAN-12-CVE-2026-23368 CVE-2026-23368 in rootio-linux - Patched by Root

Root has patched CVE-2026-23368 in the rootio-linux package for Root:Debian:12. Multiple fixed versions available...

ROOT-OS-DEBIAN-11-CVE-2026-23368 CVE-2026-23368 in rootio-linux - Patched by Root

Root has patched CVE-2026-23368 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...

ROOT-OS-UBUNTU-2404-CVE-2026-23368 CVE-2026-23368 in rootio-linux - Patched by Root

Root has patched CVE-2026-23368 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...

CVE-2026-23368

creationtimestamp| type| source ---|---|--- 2026-03-29 17:00:00+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0376/ 2026-05-05 20:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/debian-linux-kernel-multiple-vulnerabilities20260506 2026-05-31 20:00:00+00:00| seen|...

DEBIAN-CVE-2026-23368

In the Linux kernel, the following vulnerability has been resolved: net: phy: register phy ledtriggers during probe to avoid AB-BA deadlock There is an AB-BA deadlock when both LEDSTRIGGERNETDEV and LEDTRIGGERPHY are enabled: 1362.049207 ledtriggerregister+0x5c/0x1fc...

UBUNTU-CVE-2026-23368

In the Linux kernel, the following vulnerability has been resolved: net: phy: register phy ledtriggers during probe to avoid AB-BA deadlock There is an AB-BA deadlock when both LEDSTRIGGERNETDEV and LEDTRIGGERPHY are enabled: 1362.049207 ledtriggerregister+0x5c/0x1fc...

Linux Distros Unpatched Vulnerability : CVE-2026-23368

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: phy: register phy ledtriggers during probe to avoid AB-BA deadlock There is an AB-BA deadlock when both LEDSTRIGGERNETDEV and LEDTRIGGERPHY are enabled:...

org.wildfly.core:wildfly-core-feature-pack-common (>=30.0.0.Beta1 <=31.0.2.Final), org.wildfly.core:wildfly-core-galleon-pack (>=30.0.0.Beta1 <=31.0.2.Final) +1 more potentially affected by CVE-2025-23368 via org.wildfly.core:wildfly-elytron-integration (>=30.0.0.Beta1 <=31.0.2.Final)

org.wildfly.core:wildfly-elytron-integration MAVEN version =30.0.0.Beta1, =30.0.0.Beta1, =30.0.0.Beta1, =30.0.0.Beta1, =31.0.2.Final Source cves: CVE-2025-23368 Source advisory: OSV:GHSA-QHP6-6P8P-2RQH...

com.antonyudin.wildfly.security:ay-securityrealm-ejb (=1.0), org.jboss.as:hal-testsuite-basic (=0.0.6) +13 more potentially affected by CVE-2025-23368 via org.wildfly.core:wildfly-elytron-integration (>=10.0.0.Beta1 <=9.0.2.Final)

org.wildfly.core:wildfly-elytron-integration MAVEN version =10.0.0.Beta1, =5.0.0.Alpha6, =3.0.0.Beta17, =5.0.0.Alpha6, =3.0.0.Beta17, =13.0.0.Beta1, =5.0.0.Alpha6, =3.0.0.Beta22, =25.0.0.Final, =25.0.0.Final, =25.0.0.Final, =27.0.0.Alpha2, =27.0.0.Final, =27.0.1.Final Source cves: CVE-2025-23368...

CVE-2025-23368

A flaw was found in Wildfly Elytron integration. The component does not implement sufficient measures to prevent multiple failed authentication attempts within a short time frame, making it more susceptible to brute force attacks via CLI...

CVE-2025-23368

creationtimestamp| type| source ---|---|--- 2025-03-04 15:31:12+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/6378 2025-03-04 17:01:22+00:00| seen| Telegram/hh-X2Mqu2dut3n4A4E6MXjLiXcciHySigf7r8Y2vspF8wfw 2025-03-04 18:21:15+00:00| seen| https://t.me/cvedetector/19516 2025-04-28...

CVE-2025-23368

CVE-2025-23368 relates to the Wildfly Elytron integration exposing a brute-force risk for CLI authentication. Red Hat’s advisory RHSA-2026:18059 (and CVE-2025-23368‑specific RHSA-2026:18059-CVE-2025-23368) fixes this in Red Hat JBoss Enterprise Application Platform 8.1.6 and WildFly Core updates....

CVE-2025-23368 Org.wildfly.core:wildfly-elytron-integration: wildfly elytron brute force attack via cli

A flaw was found in Wildfly Elytron integration. The component does not implement sufficient measures to prevent multiple failed authentication attempts within a short time frame, making it more susceptible to brute force attacks via CLI...

CVE-2025-23368

A flaw was found in Wildfly Elytron integration. The component does not implement sufficient measures to prevent multiple failed authentication attempts within a short time frame, making it more susceptible to brute force attacks via CLI. Mitigation The effectiveness of an attack will also be...

CVE-2024-23368

Memory corruption when allocating and accessing an entry in an SMEM partition...

CVE-2024-23368 Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Qualcomm IPC

Memory corruption when allocating and accessing an entry in an SMEM partition...

CVE-2024-23368 Buffer Copy Without Checking Size of Input (`Classic Buffer Overflow`) in Qualcomm IPC

Memory corruption when allocating and accessing an entry in an SMEM partition...

QNAP QuTScloud OS Command Injection Vulnerability (QSA-23-31)

QNAP QuTScloud is prone to an OS command injection vulnerability. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:qnap:qutscloud"...

QNAP QTS / QuTS hero Command Injection (QSA-23-31)

The version of QNAP QTS / QuTS hero installed on the remote host is affected by a vulnerability as referenced in the QSA-23-31 advisory. - An OS command injection vulnerability has been reported to affect several QNAP operating system versions. If exploited, the vulnerability could allow users to...

CVE-2023-23368

creationtimestamp| type| source ---|---|--- 2023-11-06 19:39:37+00:00| seen| https://t.me/KomunitiSiber/1031 2023-11-06 21:53:17+00:00| seen| Telegram/ahykelfM5jaWgf8bjxulRuvue4b5ZrncnSwoWWrqFnDquw 2023-11-08 10:06:26+00:00| exploited| https://t.me/truesecator/5059 2023-11-12 05:03:11+00:00| seen...