23 matches found
ROOT-OS-DEBIAN-13-CVE-2026-31458 CVE-2026-31458 in rootio-linux - Patched by Root
Root has patched CVE-2026-31458 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...
CVE-2026-31458
A flaw was found in the Linux kernel. A privileged local user can exploit this by manipulating the nrcontexts parameter in the mm/damon/sysfs interface to zero while the DAMON Data Access MONitor subsystem is active. This leads to a null pointer dereference when certain sysfs commands are...
DEBIAN-CVE-2026-31458
In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs: check contexts-nr before accessing contextsarr0 Multiple sysfs command paths dereference contextsarr0 without first verifying that kdamond-contexts-nr == 1. A user can set nrcontexts to 0 via sysfs while DAMON is...
UBUNTU-CVE-2026-31458
In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs: check contexts-nr before accessing contextsarr0 Multiple sysfs command paths dereference contextsarr0 without first verifying that kdamond-contexts-nr == 1. A user can set nrcontexts to 0 via sysfs while DAMON is...
CVE-2026-31458
In the Linux kernel, the following vulnerability has been resolved: mm/damon/sysfs: check contexts-nr before accessing contextsarr0 Multiple sysfs command paths dereference contextsarr0 without first verifying that kdamond-contexts-nr == 1. A user can set nrcontexts to 0 via sysfs while DAMON is...
CVE-2022-31458
RTX TRAP v1.0 was discovered to be vulnerable to host header poisoning...
CVE-2023-31458
A vulnerability in the Edge Gateway component of Mitel MiVoice Connect versions 19.3 SP2 22.24.1500.0 and earlier could allow an unauthenticated attacker with internal network access to authenticate with administrative privileges, because initial installation does not enforce a password change. A...
CVE-2025-31458
creationtimestamp| type| source ---|---|--- 2025-03-28 16:04:56+00:00| seen| https://t.me/cvedetector/21430...
CVE-2025-31458
Cross-Site Request Forgery CSRF vulnerability in forsgren Video Embedder video-embedder allows Stored XSS.This issue affects Video Embedder: from n/a through = 1.7.1...
CVE-2025-31458 WordPress Video Embedder plugin <= 1.7.1 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in forsgren Video Embedder allows Stored XSS. This issue affects Video Embedder: from n/a through 1.7.1...
CVE-2025-31458 WordPress Video Embedder plugin <= 1.7.1 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in forsgren Video Embedder video-embedder allows Stored XSS.This issue affects Video Embedder: from n/a through = 1.7.1...
CVE-2025-31458
CVE-2025-31458 details a CSRF vulnerability in the Video Embedder WordPress plugin that enables Stored XSS. Affected: Video Embedder versions up to 1.7.1 (likely patched in 1.7.1). CVSSv3.1 base score 7.1 (AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L). The connected EU and Wordfence references corroborate...
[SECURITY] [DLA 3884-1] cacti security update
------------------------------------------------------------------------- Debian LTS Advisory DLA-3884-1 [email protected] https://www.debian.org/lts/security/ Bastien Roucariès September 09, 2024 https://wiki.debian.org/LTS -...
openSUSE Security Advisory (openSUSE-SU-2024:0274-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu: Security Advisory (USN-6969-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Fedora: Security Advisory (FEDORA-2024-27a594f71d)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2022-31458
RTX TRAP v1.0 was discovered to be vulnerable to host header poisoning...
CVE-2022-31458
RTX TRAP v1.0 was discovered to be vulnerable to host header poisoning...
CVE-2022-31458
CVE-2022-31458 affects RTX TRAP v1.0, with a host header poisoning vulnerability. Exploitation involves manipulating the HTTP Host header to spoof the server and cause it to process requests under a malicious hostname. Reported data from NVD cites a network attack vector with low-moderate impact ...
CVE-2023-31458
A vulnerability in the Edge Gateway component of Mitel MiVoice Connect versions 19.3 SP2 22.24.1500.0 and earlier could allow an unauthenticated attacker with internal network access to authenticate with administrative privileges, because initial installation does not enforce a password change. A...