22 matches found
ROOT-OS-UBUNTU-2404-CVE-2025-38445 CVE-2025-38445 in rootio-linux - Patched by Root
Root has patched CVE-2025-38445 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...
ROOT-OS-UBUNTU-2204-CVE-2025-38445 CVE-2025-38445 in rootio-linux - Patched by Root
Root has patched CVE-2025-38445 in the rootio-linux package for Root:Ubuntu:22.04. Multiple fixed versions available...
CVE-2025-38445 affecting package kernel for versions less than 5.15.200.1-1
CVE-2025-38445 affecting package kernel for versions less than 5.15.200.1-1. An upgraded version of the package is available that resolves this issue...
CVE-2025-38445 affecting package kernel for versions less than 6.6.104.2-1
CVE-2025-38445 affecting package kernel for versions less than 6.6.104.2-1. An upgraded version of the package is available that resolves this issue...
MAL-2025-38445 Malicious code in violin-common (npm)
The package violin-common was found to contain malicious code...
Important: kernel
Issue Overview: In the Linux kernel, the following vulnerability has been resolved: net: tap: NULL pointer derefence in devparseheaderprotocol when skb-dev is null CVE-2022-50073 In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Fix skb refcnt race after locking...
CVE-2025-38445
CVE-2025-38445 covers a Linux kernel issue in md/raid1 where raid1_reshape allocated a mempool on the stack and assigned it to conf->r1bio_pool, causing conf->r1bio_pool.wait.head to reference a stack address. Subsequent access in raid1_read_request/raid1_write_request paths could trigger a...
CVE-2025-38445
In the Linux kernel, the following vulnerability has been resolved: md/raid1: Fix stack memory use after return in raid1reshape In the raid1reshape function, newpool is allocated on the stack and assigned to conf-r1biopool. This results in conf-r1biopool.wait.head pointing to a stack address...
CVE-2021-38445
OCI OpenDDS versions prior to 3.18.1 do not handle a length parameter consistent with the actual length of the associated data, which may allow an attacker to remotely execute arbitrary code...
Joomla Real Estate Manager Component Error-Based SQL Injection
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Joomla Real Estate Manager Component Error-Based SQL Injection', 'Description' = %q This module exploits a SQL injection vulnerability in Joomla...
CVE-2023-38445
In vowifiservice, there is a possible missing permission check.This could lead to local denial of service with no additional execution privileges...
CVE-2023-38445
In CVE-2023-38445, the vulnerable component is vowifiservice. The root cause is a missing permission check, which could allow local denial of service without additional privileges. The NVD entry assigns a CVSS‑3.1 base score of 5.5 (Local, Low attack complexity, privileges required: Low, impact: ...
CVE-2022-38445
creationtimestamp| type| source ---|---|--- 2022-10-15 00:29:17+00:00| seen| https://t.me/cibsecurity/51509...
CVE-2022-38445
Adobe Dimension versions 3.4.5 is affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
CVE-2022-38445
Adobe Dimension 3.4.5 is affected by a Use-After-Free vulnerability in SKP file parsing that could allow arbitrary code execution in the context of the current user. Exploitation requires user interaction (victim opens a malicious SKP file) and is described as local with high impact on confidenti...
Adobe Dimension < 3.4.6 Multiple Vulnerabilities (APSB22-57)
The version of Adobe Dimension installed on the remote host is prior to 3.4.6. It is, therefore, affected by multiple vulnerabilities, including the following: - Two arbitrary code execution vulnerabilities caused by out-of-bounds reads. An unauthenticated, local attacker can exploit these to...
CVE-2021-38445
creationtimestamp| type| source ---|---|--- 2022-05-05 20:36:38+00:00| seen| https://t.me/cibsecurity/42005...
CVE-2021-38445
OCI OpenDDS versions prior to 3.18.1 do not handle a length parameter consistent with the actual length of the associated data, which may allow an attacker to remotely execute arbitrary code...
CVE-2021-38445
OCI OpenDDS versions prior to 3.18.1 do not handle a length parameter consistent with the actual length of the associated data, which may allow an attacker to remotely execute arbitrary code...
CVE-2021-38445
CVE-2021-38445 affects OCI OpenDDS: versions prior to 3.18.1 do not handle a length parameter consistently with the actual data length, enabling remote code execution. The root cause is improper length handling in the OpenDDS data path, leading to potential arbitrary code execution on affected sy...