Lucene search
K

24 matches found

OSV
OSV
added yesterday3 views

ROOT-OS-DEBIAN-12-CVE-2025-38691 CVE-2025-38691 in rootio-linux - Patched by Root

Root has patched CVE-2025-38691 in the rootio-linux package for Root:Debian:12. Multiple fixed versions available...

5.5CVSS6.9AI score0.00165EPSS
Exploits0
OSV
OSV
added 3 days ago4 views

ROOT-OS-UBUNTU-2404-CVE-2025-38691 CVE-2025-38691 in rootio-linux - Patched by Root

Root has patched CVE-2025-38691 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...

5.5CVSS7.2AI score0.00165EPSS
Exploits0
OSV
OSV
added 4 days ago4 views

ROOT-OS-UBUNTU-2204-CVE-2025-38691 CVE-2025-38691 in rootio-linux - Patched by Root

Root has patched CVE-2025-38691 in the rootio-linux package for Root:Ubuntu:22.04. Multiple fixed versions available...

5.5CVSS6.9AI score0.00165EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/02/16 12:0 a.m.12 views

Siemens SIMATIC S7-1500 Use of Uninitialized Resource (CVE-2025-38691)

In the Linux kernel, the following vulnerability has been resolved: pNFS: Fix uninited ptr deref in block/scsi layout The error occurs on the third attempt to encode extents. When function exttreepreparecommit reallocates a larger buffer to retry encoding extents, the layoutupdatepages page array...

5.5CVSS5.5AI score0.00165EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/09 6:30 p.m.1 views

EUVD-2025-38691

Malicious code in xaver-nasiuduk93-ruro npm...

6.6AI score
Exploits0
CBLMariner
CBLMariner
added 2025/10/01 7:21 p.m.3 views

CVE-2025-38691 affecting package kernel for versions less than 6.6.104.2-1

CVE-2025-38691 affecting package kernel for versions less than 6.6.104.2-1. An upgraded version of the package is available that resolves this issue...

5.5CVSS6.8AI score0.00165EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/09/06 12:0 a.m.1 views

Linux Distros Unpatched Vulnerability : CVE-2025-38691

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - pNFS: Fix uninited ptr deref in block/scsi layout The error occurs on the third attempt to encode extents. When function exttreepreparecommit reallocates a larg...

5.5CVSS6.7AI score0.00165EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/09/04 5:3 p.m.0 views

CVE-2025-38691

In the Linux kernel, the following vulnerability has been resolved: pNFS: Fix uninited ptr deref in block/scsi layout The error occurs on the third attempt to encode extents. When function exttreepreparecommit reallocates a larger buffer to retry encoding extents, the "layoutupdatepages" page arr...

6.2CVSS5.7AI score0.00165EPSS
Exploits0References4
OSV
OSV
added 2025/09/04 4:15 p.m.5 views

AZL-73920 CVE-2025-38691 affecting package kernel for versions less than 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: pNFS: Fix uninited ptr deref in block/scsi layout The error occurs on the third attempt to encode extents. When function exttreepreparecommit reallocates a larger buffer to retry encoding extents, the "layoutupdatepages" page arr...

5.5CVSS6AI score0.00165EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2025/09/04 4:15 p.m.1 views

CVE-2025-38691

In the Linux kernel, the following vulnerability has been resolved: pNFS: Fix uninited ptr deref in block/scsi layout The error occurs on the third attempt to encode extents. When function exttreepreparecommit reallocates a larger buffer to retry encoding extents, the "layoutupdatepages" page arr...

5.5CVSS6AI score0.00165EPSS
Exploits0References36
Circl
Circl
added 2025/09/01 9:14 a.m.3 views

CVE-2022-38691

creationtimestamp| type| source ---|---|--- 2025-09-01 09:14:53+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lxrbay2bbr2j 2025-09-02 21:02:33+00:00| seen| https://bsky.app/profile/beikokucyber.bsky.social/post/3lxuzbcfd7e2b...

7.8CVSS5.8AI score0.00327EPSS
Exploits0References2
OSV
OSV
added 2025/08/14 6:52 p.m.2 views

MAL-2025-38691 Malicious code in vulcan-docusaurus-quark-mineralogy (npm)

The package vulcan-docusaurus-quark-mineralogy was found to contain malicious code...

7.2AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 2:19 a.m.5 views

CVE-2023-38691

matrix-appservice-bridge provides an API for setting up bridges. Starting in version 4.0.0 and prior to versions 8.1.2 and 9.0.1, a malicious Matrix server can use a foreign user's MXID in an OpenID exchange, allowing a bad actor to impersonate users when using the provisioning API. The library...

6.5CVSS6.8AI score0.00386EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/02 12:1 p.m.8 views

CVE-2024-38691 WordPress Metorik plugin <= 1.7.1 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Metorik Metorik – Reports & Email Automation for WooCommerce allows Cross Site Request Forgery.This issue affects Metorik – Reports & Email Automation for WooCommerce: from n/a through 1.7.1...

4.3CVSS7AI score0.00188EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/02 12:1 p.m.14 views

CVE-2024-38691 WordPress Metorik plugin <= 1.7.1 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Metorik Metorik – Reports & Email Automation for WooCommerce metorik-helper allows Cross Site Request Forgery.This issue affects Metorik – Reports & Email Automation for WooCommerce: from n/a through = 1.7.1...

4.3CVSS0.00188EPSS
Exploits0References1
CVE
CVE
added 2025/01/02 12:1 p.m.40 views

CVE-2024-38691

CVE-2024-38691 affects the Metorik – Reports & Email Automation for WooCommerce WordPress plugin (

4.3CVSS5.9AI score0.00188EPSS
Exploits0References1
Circl
Circl
added 2023/08/04 8:40 p.m.6 views

CVE-2023-38691

creationtimestamp| type| source ---|---|--- 2023-08-04 20:40:58+00:00| seen| Telegram/fcgQ1damO87-NMVO6KgFK2mX7sEweNwJptjytypSAXDLDI...

6.5CVSS6.3AI score0.00386EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2023/08/04 5:26 p.m.34 views

matrix-appservice-irc (=0.36.0) potentially affected by CVE-2023-38691 via matrix-appservice-bridge (=6.0.0)

matrix-appservice-bridge NPM version =6.0.0 is affected by a known vulnerability. The following packages have a transitive dependency on matrix-appservice-bridge and may be impacted: - matrix-appservice-irc =0.36.0 Source cves: CVE-2023-38691 Source advisory: OSV:GHSA-VC7J-H8XG-FV5X...

6.5CVSS6.5AI score0.00386EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2023/08/04 4:34 p.m.14 views

CVE-2023-38691 matrix-appservice-bridge doesn't verify the sub parameter of an openId token exhange, allowing unauthorized access to provisioning APIs

matrix-appservice-bridge provides an API for setting up bridges. Starting in version 4.0.0 and prior to versions 8.1.2 and 9.0.1, a malicious Matrix server can use a foreign user's MXID in an OpenID exchange, allowing a bad actor to impersonate users when using the provisioning API. The library...

5CVSS6.7AI score0.00386EPSS
Exploits0References2
OSV
OSV
added 2023/08/04 4:34 p.m.31 views

CVE-2023-38691 matrix-appservice-bridge doesn't verify the sub parameter of an openId token exhange, allowing unauthorized access to provisioning APIs

matrix-appservice-bridge provides an API for setting up bridges. Starting in version 4.0.0 and prior to versions 8.1.2 and 9.0.1, a malicious Matrix server can use a foreign user's MXID in an OpenID exchange, allowing a bad actor to impersonate users when using the provisioning API. The library...

5CVSS6.5AI score0.00386EPSS
Exploits0References4
Rows per page
Query Builder