14 matches found
DEBIAN-CVE-2026-23421
In the Linux kernel, the following vulnerability has been resolved: drm/xe/configfs: Free ctxrestoremidbb in release ctxrestoremidbb memory is allocated in wabbstore, but xeconfigdevicerelease only frees ctxrestorepostbb. Free ctxrestoremidbb0.cs as well to avoid leaking the allocation when the...
CVE-2026-23421
In the Linux kernel, the following vulnerability has been resolved: drm/xe/configfs: Free ctxrestoremidbb in release ctxrestoremidbb memory is allocated in wabbstore, but xeconfigdevicerelease only frees ctxrestorepostbb. Free ctxrestoremidbb0.cs as well to avoid leaking the allocation when the...
CVE-2026-23421
In the Linux kernel, the following vulnerability has been resolved: drm/xe/configfs: Free ctxrestoremidbb in release ctxrestoremidbb memory is allocated in wabbstore, but xeconfigdevicerelease only frees ctxrestorepostbb. Free ctxrestoremidbb0.cs as well to avoid leaking the allocation when the...
CVE-2025-23421
CVE-2025-23421 affects Qardio iOS and Android applications. Multiple connected sources describe that an attacker could obtain firmware files and reverse engineer their intended use, leading to loss of confidentiality and integrity of the hardware devices enabled by these apps. Red Hat and NVD ent...
CVE-2025-23421 Qardio iOS and Android applications Files or Directories Accessible to External Parties
An attacker could obtain firmware files and reverse engineer their intended use leading to loss of confidentiality and integrity of the hardware devices enabled by the Qardio iOS and Android applications...
CVE-2023-23421
creationtimestamp| type| source ---|---|--- 2023-03-14 19:23:18+00:00| seen| https://t.me/cibsecurity/59983 2023-04-13 18:02:40+00:00| published-proof-of-concept| Telegram/gyCoGHimPrHuJIO4PODdzGa-SbQUX3r8l5z0rakuXLR 2023-04-18 07:16:18+00:00| published-proof-of-concept|...
CVE-2023-23421
Windows Kernel Elevation of Privilege Vulnerability...
CVE-2023-23421
Windows Kernel Elevation of Privilege Vulnerability...
CVE-2023-23421
CVE-2023-23421 is part of a family of hive-memory-corruption bugs in the Windows Registry (kernel) that enable local privilege escalation. The connected analysis shows an attacker-controlled hive memory‑corruption primitive (e.g., UAF in a registry key or related hive data) that can be exploited ...
@breautek/storm (>=2.0.0 <=3.0.0-rc.0), create-react-solution (>=1.2.0 <=4.4.1) +2 more potentially affected by CVE-2021-23421 via merge-change (>=1.5.3 <=1.8.1)
merge-change NPM version =1.5.3, =2.0.0, =1.2.0, =1.5.0, =4.0.0, =4.4.1 Source cves: CVE-2021-23421 Source advisory: OSV:GHSA-F9CV-665R-275H...
CVE-2021-23421
creationtimestamp| type| source ---|---|--- 2021-08-11 22:38:39+00:00| seen| https://t.me/cibsecurity/27183...
CVE-2021-23421
All versions of package merge-change are vulnerable to Prototype Pollution via the utils.set function...
CVE-2021-23421 Prototype Pollution
All versions of package merge-change are vulnerable to Prototype Pollution via the utils.set function...
CVE-2021-23421
CVE-2021-23421 affects merge-change: all versions are vulnerable to Prototype Pollution via the utils.set function. The root cause is an unsafe recursive merge that can propagate pollution to Object.prototype when certain properties (e.g., proto ) are set or when the path-based API is abused. The...