15 matches found
ROOT-OS-DEBIAN-13-CVE-2025-40272 CVE-2025-40272 in rootio-linux - Patched by Root
Root has patched CVE-2025-40272 in the rootio-linux package for Root:Debian:13. Multiple fixed versions available...
ROOT-OS-UBUNTU-2404-CVE-2025-40272 CVE-2025-40272 in rootio-linux - Patched by Root
Root has patched CVE-2025-40272 in the rootio-linux package for Root:Ubuntu:24.04. Multiple fixed versions available...
ROOT-OS-UBUNTU-2204-CVE-2025-40272 CVE-2025-40272 in rootio-linux - Patched by Root
Root has patched CVE-2025-40272 in the rootio-linux package for Root:Ubuntu:22.04. Multiple fixed versions available...
BELL-CVE-2025-40272
Bulletin has no description...
Linux Distros Unpatched Vulnerability : CVE-2025-40272
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mm/secretmem: fix use-after-free race in fault handler When a page fault occurs in a secret memory file created with memfdsecret2, the kernel will allocate a ne...
CVE-2025-40272
creationtimestamp| type| source ---|---|--- 2025-12-06 23:42:16+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m7e6ieaogk2a 2026-03-19 00:00:00+00:00| seen| https://www.cert.ssi.gouv.fr/avis/CERTFR-2026-AVI-0316/ 2026-04-02 17:00:00+00:00| seen|...
EUVD-2025-40272
Malicious code in candra-lapis73-sluey npm...
edk2 security update
20231122-6.0.1.el94.2 - Replace upstream references Orabug:36569119 20231122-6.el94.2 - edk2-NetworkPkg-SECURITY-PATCH-CVE-2023-45237.patch RHEL-40270 RHEL-40272 - edk2-NetworkPkg-TcpDxe-SECURITY-PATCH-CVE-2023-45236.patch RHEL-40270 RHEL-40272 -...
CVE-2023-40272
CVE-2023-40272 - Apache Airflow Spark Provider : Multiple sources describe a vulnerability in the Airflow Spark Provider for versions before 4.1.3 where an attacker can pass malicious parameters during connection establishment, enabling reading of files on the Airflow server. Affected software: A...
CVE-2023-40272 Apache Airflow Spark Provider Arbitrary File Read via JDBC
Apache Airflow Spark Provider, versions before 4.1.3, is affected by a vulnerability that allows an attacker to pass in malicious parameters when establishing a connection giving an opportunity to read files on the Airflow server. It is recommended to upgrade to a version that is not affected...
CVE-2022-40272
DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate is unused by its CNA. Notes: none...
CVE-2021-40272
OP5 Monitor 8.3.1, 8.3.2, and OP5 8.3.3 are vulnerable to Cross Site Scripting XSS...
Merchandise Online Store SQL Injection Vulnerability (CNVD-2022-40272)
Merchandise Online Store is a merchandise online store system. merchandise Online Store has a security vulnerability that can be exploited by attackers via /vloggersmerch/admin/?page=inventory/manageinventory& id= for SQL injection attacks...
CVE-2022-40272
...
CVE-2022-40272
This CVE entry is rejected/not used and does not represent an active vulnerability.