ROOT-OS-DEBIAN-13-CVE-2025-38736 CVE-2025-38736 in rootio-linux - Patched by Root

Root has patched CVE-2025-38736 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...

CVE-2025-38736

creationtimestamp| type| source ---|---|--- 2026-01-08 16:03:15+00:00| seen| Telegram/wLl24cbUdbdvufUNFyR-AVzoQiHE4u9cukp9xk0DQOdzswo 2026-05-14 10:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-134-10...

EUVD-2025-38736

Malicious code in ocha-ubi100-sukiwir npm...

BELL-CVE-2025-38736

Bulletin has no description...

Linux Distros Unpatched Vulnerability : CVE-2025-38736

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: net: usb: asixdevices: Fix PHY address mask in MDIO bus initialization Syzbot reported...

CVE-2025-38736

In the Linux kernel, the following vulnerability has been resolved: net: usb: asixdevices: Fix PHY address mask in MDIO bus initialization Syzbot reported shift-out-of-bounds exception on MDIO bus initialization. The PHY address should be masked to 5 bits 0-31. Without this mask, invalid PHY...

CVE-2025-38736

In the Linux kernel, the following vulnerability has been resolved: net: usb: asixdevices: Fix PHY address mask in MDIO bus initialization Syzbot reported shift-out-of-bounds exception on MDIO bus initialization. The PHY address should be masked to 5 bits 0-31. Without this mask, invalid PHY...

CVE-2025-38736 net: usb: asix_devices: Fix PHY address mask in MDIO bus initialization

In the Linux kernel, the following vulnerability has been resolved: net: usb: asixdevices: Fix PHY address mask in MDIO bus initialization Syzbot reported shift-out-of-bounds exception on MDIO bus initialization. The PHY address should be masked to 5 bits 0-31. Without this mask, invalid PHY...

CVE-2025-38736

In the Linux kernel, the following vulnerability has been resolved: net: usb: asixdevices: Fix PHY address mask in MDIO bus initialization Syzbot reported shift-out-of-bounds exception on MDIO bus initialization. The PHY address should be masked to 5 bits 0-31. Without this mask, invalid PHY...

CVE-2024-38736 WordPress Realtyna Organic IDX plugin <= 4.14.13 - Arbitrary File Upload vulnerability

Unrestricted Upload of File with Dangerous Type vulnerability in Realtyna Realtyna Organic IDX plugin allows Code Injection.This issue affects Realtyna Organic IDX plugin: from n/a through 4.14.13...

WordPress Realtyna Organic IDX plugin Plugin <= 4.14.13 is vulnerable to Arbitrary File Upload

Software Realtyna Organic IDX plugin Type Plugin Vulnerable versions = 4.14.13 Fixed in 4.14.14 OWASP Top 10 A6: Security Misconfiguration Classification Arbitrary File Upload CVE CVE-2024-38736 Patch priority Low CVSS severity Low 9.1 Developer Claim ownership PSID 7d42084b6471 Credits Peng Zhou...

CVE-2023-38736

creationtimestamp| type| source ---|---|--- 2023-09-08 22:21:37+00:00| seen| https://t.me/cibsecurity/70159...

CVE-2023-38736 IBM QRadar WinCollect Agent privilege escalation

IBM QRadar WinCollect Agent 10.0 through 10.1.6, when installed to run as ADMIN or SYSTEM, is vulnerable to a local escalation of privilege attack that a normal user could utilize to gain SYSTEM permissions. IBM X-Force ID: 262542...

CVE-2023-38736

Consolidated details from IBM and security trackers confirm CVE-2023-38736 affects IBM QRadar WinCollect Agent versions 10.0–10.1.6 when installed to run as ADMIN or SYSTEM. The vulnerability enables local privilege escalation from a non-privileged user to SYSTEM permissions. Remediation in the p...

Security Bulletin: IBM QRadar WinCollect Agent is vulnerable to a local escalation of privilege attack in some configurations (CVE-2023-38736)

Summary IBM QRadar WinCollect Agent when installed to run as Admin or System, or with Admin or System privileges, is vulnerable to a local escalation of privilege attack that a non-privileged user could utilize to gain System permissions. IBM has addressed the relevant vulnerability. Vulnerabilit...

CVE-2022-38736

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none...

CVE-2021-38736

creationtimestamp| type| source ---|---|--- 2022-10-28 18:34:37+00:00| seen| https://t.me/cibsecurity/52216...

CVE-2021-38736

SEMCMS Shop V 1.1 is vulnerable to SQL Injection via AntGlobal.php...

CVE-2021-38736

SEMCMS Shop V 1.1 is vulnerable to SQL Injection via AntGlobal.php...

CVE-2021-38736

The CVE-2021-38736 entry concerns SEMCMS Shop v1.1 with a SQL injection vulnerability in Ant_Global.php. The issue is documented as a high-severity (CVSS v3.1: 9.8, CRITICAL) vulnerability affecting confidentiality, integrity, and availability (C/H/I/A). Connected sources confirm the affected com...