19 matches found
ROOT-OS-DEBIAN-13-CVE-2025-37860 CVE-2025-37860 in rootio-linux - Patched by Root
Root has patched CVE-2025-37860 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...
ROOT-OS-DEBIAN-12-CVE-2025-37860 CVE-2025-37860 in rootio-linux - Patched by Root
Root has patched CVE-2025-37860 in the rootio-linux package for Root:Debian:12. Multiple fixed versions available...
Oracle Linux 8 / 9 : Unbreakable Enterprise kernel (ELSA-2026-50253)
The remote Oracle Linux 8 / 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-50253 advisory. - crypto: algifaead - Revert to operating out-of-place Herbert Xu Orabug: 39291961 CVE-2026-31431 Tenable has extracted the preceding description block...
CVE-2025-37860 vulnerabilities
Vulnerabilities for packages: linux-gcp, linux-aws, linux-vmware, linux-azure, linux-qemu...
Linux Distros Unpatched Vulnerability : CVE-2025-37860
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - sfc: fix NULL dereferences in ef100processdesignparam Since cited commit, ef100probemain and hence also ef100checkdesignparams run before efx-netdev is created;...
CVE-2024-37860
Buffer Overflow vulnerability in Open Robotic Operating System 2 ROS2 navigation2- ROS2-humble&& navigation2-humble allows a local attacker to execute arbitrary code via a crafted .yaml file to the nav2amcl process...
CVE-2025-37860
creationtimestamp| type| source ---|---|--- 2025-04-18 07:59:23+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/12407 2026-04-02 17:00:00+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0397/ 2026-04-07 18:00:00+00:00| seen|...
CVE-2025-37860
In the Linux kernel, the following vulnerability has been resolved: sfc: fix NULL dereferences in ef100processdesignparam Since cited commit, ef100probemain and hence also ef100checkdesignparams run before efx-netdev is created; consequently, we cannot netifsettsomaxsize or segs at this point. Mo...
CVE-2024-37860
Buffer Overflow vulnerability in Open Robotic Operating System 2 ROS2 navigation2- ROS2-humble&& navigation2-humble allows a local attacker to execute arbitrary code via a crafted .yaml file to the nav2amcl process...
CVE-2024-37860
creationtimestamp| type| source ---|---|--- 2024-12-05 22:53:28+00:00| seen| https://infosec.exchange/users/cve/statuses/113602671900729203 2024-12-06 01:24:02+00:00| seen| https://t.me/cvedetector/12153...
CVE-2024-37860
Buffer Overflow vulnerability in Open Robotic Operating System 2 ROS2 navigation2- ROS2-humble&& navigation2-humble allows a local attacker to execute arbitrary code via a crafted .yaml file to the nav2amcl process...
CVE-2024-37860
The CVE-2024-37860 entry concerns a buffer overflow in ROS 2 navigation2 (navigation2-humble) affecting the nav2_amcl process. Affected component is navigation2/nav2_amcl; the root cause is a crafted YAML file that can overflow a buffer, enabling a local attacker to execute arbitrary code . The p...
CVE-2023-37860
creationtimestamp| type| source ---|---|--- 2023-08-09 12:16:56+00:00| seen| https://t.me/cibsecurity/68084...
CVE-2023-37860
In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 a remote unauthenticated attacker can obtain the r/w community string of the SNMPv2 daemon...
CVE-2023-37860 PHOENIX CONTACT: Missing Authorization in WP 6xxx Web panels
In PHOENIX CONTACTs WP 6xxx series web panels in versions prior to 4.0.10 a remote unauthenticated attacker can obtain the r/w community string of the SNMPv2 daemon...
CVE-2023-37860
PHOENIX CONTACT WP 6xxx series web panels are affected in versions before 4.0.10. An unauthenticated remote attacker can obtain the read/write (r/w) SNMPv2 community string from the web panel, exposing SNMP credentials and potentially enabling indirect impact on device management. The issue is fi...
CVE-2022-37860
The CVE-2022-37860 issue affects the TP-Link M7350 V3 web configuration interface (firmware version 190531). All connected documents describe a pre-authentication command injection vulnerability in the web UI, stemming from insufficient input/data handling at the management level. Impact stated a...
CVE-2021-37860
creationtimestamp| type| source ---|---|--- 2021-09-22 20:29:00+00:00| seen| https://t.me/cibsecurity/29239...
CVE-2021-37860
Mattermost CVE-2021-37860 affects Mattermost 5.38 and earlier. The issue stems from insufficient sanitization of clipboard contents, enabling a user‑assisted attacker to inject arbitrary web script in deployments that explicitly disable the default CSP. Exploitation details are not provided in th...