ROOT-OS-DEBIAN-12-CVE-2025-37972 CVE-2025-37972 in rootio-linux - Patched by Root

Root has patched CVE-2025-37972 in the rootio-linux package for Root:Debian:12. Multiple fixed versions available...

ROOT-OS-UBUNTU-2404-CVE-2025-37972 CVE-2025-37972 in rootio-linux - Patched by Root

Root has patched CVE-2025-37972 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...

Linux Distros Unpatched Vulnerability : CVE-2025-37972

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: Input: mtk-pmic-keys - fix possible null pointer dereference In mtkpmickeysprobe, the regs...

MAL-2025-37972 Malicious code in usersv (npm)

The package usersv was found to contain malicious code...

CVE-2025-37972 affecting package kernel for versions less than 6.6.92.2-1

CVE-2025-37972 affecting package kernel for versions less than 6.6.92.2-1. An upgraded version of the package is available that resolves this issue...

CVE-2025-37972

In the Linux kernel, the following vulnerability has been resolved: Input: mtk-pmic-keys - fix possible null pointer dereference In mtkpmickeysprobe, the regs parameter is only set if the button is parsed in the device tree. However, on hardware where the button is left floating, that node will...

CVE-2025-37972

CVE-2025-37972 — The Linux kernel vulnerability in the mtk-pmic-keys driver can cause a NULL pointer dereference in mtk_pmic_keys_probe when the device-tree button node is absent (e.g., left floating). The fix uses the generic regs structure defined for all platforms and allows the key register t...

CVE-2025-37972 Input: mtk-pmic-keys - fix possible null pointer dereference

In the Linux kernel, the following vulnerability has been resolved: Input: mtk-pmic-keys - fix possible null pointer dereference In mtkpmickeysprobe, the regs parameter is only set if the button is parsed in the device tree. However, on hardware where the button is left floating, that node will...

CVE-2025-37972 Input: mtk-pmic-keys - fix possible null pointer dereference

In the Linux kernel, the following vulnerability has been resolved: Input: mtk-pmic-keys - fix possible null pointer dereference In mtkpmickeysprobe, the regs parameter is only set if the button is parsed in the device tree. However, on hardware where the button is left floating, that node will...

CVE-2024-37972

Secure Boot Security Feature Bypass Vulnerability...

CVE-2024-37972 Secure Boot Security Feature Bypass Vulnerability

...

CVE-2024-37972

Technical details for CVE-2024-37972 are not publicly provided in the supplied documents. No affected products, root cause, impact, or remediation are disclosed here. Monitor for updates from authoritative sources.

CVE-2024-37972 Secure Boot Security Feature Bypass Vulnerability

...

CVE-2023-37972

Exposure of Sensitive Information to an Unauthorized Actor vulnerability in MultiVendorX Product Stock Manager & Notifier for WooCommerce.This issue affects Product Stock Manager & Notifier for WooCommerce: from n/a through 2.0.1...

CVE-2023-37972

CVE-2023-37972 – Information Disclosure in WordPress plugin “WooCommerce Product Stock Alert / Product Stock Manager & Notifier for WooCommerce” Affected software: Product Stock Manager & Notifier for WooCommerce (WordPress plugin) — commonly listed as WooCommerce Product Stock Alert. Root cause ...

WordPress WooCommerce Product Stock Alert Plugin <= 2.0.1 is vulnerable to Sensitive Data Exposure

Software WooCommerce Product Stock Alert Type Plugin Vulnerable versions = 2.0.1 Fixed in 2.0.2 OWASP Top 10 A5: Broken Access Control Classification Sensitive Data Exposure CVE CVE-2023-37972 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 90d3154cbc8c Credits Mika Requir...

Google Chrome Security Update (stable-channel-update-for-desktop_21-2021-09) - Linux

Google Chrome is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:google:chrome"; ifdescription...

Zero-day vulnerability in Windows terminal management tool gets a hotfix

Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary Microsoft Endpoint Configuration Manager MECM has a spoofing vulnerability that allows remote attackers to access sensitive data. The zero-day vulnerability has been identified as CVE-2022-37972...

Microsoft Releases Out-of-Band Security Update for Microsoft Endpoint Configuration Manager

Microsoft has released a security update to address a vulnerability in Microsoft Endpoint Configuration Manager, versions 2103-2207. An attacker could exploit this vulnerability to obtain sensitive information. The Cybersecurity and Infrastructure Security Agency CISA encourages users and...

CVE-2022-37972 Microsoft Endpoint Configuration Manager Spoofing Vulnerability

...