Lucene search
K

18 matches found

OSV
OSV
added 4 days ago5 views

ROOT-OS-DEBIAN-11-CVE-2024-40911 CVE-2024-40911 in rootio-linux - Patched by Root

Root has patched CVE-2024-40911 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...

5.5CVSS6.8AI score0.0028EPSS
Exploits0
CVE
CVE
added 2026/04/21 7:55 p.m.16 views

CVE-2026-40911

CVE-2026-40911 affects WWBN AVideo before version 30.x via the YPTSocket WebSocket plugin. The WebSocket server relays attacker-supplied JSON fields without sanitization, and plugin/YPTSocket/script.js directly feeds relayed json.msg.autoEvalCodeOnHTML and json.callback into eval(), enabling unau...

10CVSS5.9AI score0.00645EPSS
Exploits1References2Affected Software1
Circl
Circl
added 2026/04/13 12:21 p.m.6 views

CVE-2026-40911

creationtimestamp| type| source ---|---|--- 2026-04-13 12:21:35+00:00| published-proof-of-concept| https://github.com/WWBN/AVideo/security/advisories/GHSA-gph2-j4c9-vhhr 2026-04-21 22:00:45+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mjzy7zu4dk2z 2026-04-21 22:17:26+00:0...

10CVSS5.3AI score0.00645EPSS
Exploits1References8
Circl
Circl
added 2025/12/03 2:14 p.m.4 views

CVE-2024-40911

creationtimestamp| type| source ---|---|--- 2025-12-03 14:14:49+00:00| seen| https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8...

5.5CVSS7.1AI score0.0028EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/29 9:31 p.m.27 views

CVE-2025-40911

Net::CIDR::Set versions 0.10 through 0.13 for Perl does not properly handle leading zero characters in IP CIDR address strings, which could allow attackers to bypass access control that is based on IP addresses. Leading zeros are used to indicate octal numbers, which can confuse users who are...

6.5CVSS7AI score0.00493EPSS
Exploits0References1
NVD
NVD
added 2025/05/27 10:15 p.m.39 views

CVE-2025-40911

Net::CIDR::Set versions 0.10 through 0.13 for Perl does not properly handle leading zero characters in IP CIDR address strings, which could allow attackers to bypass access control that is based on IP addresses. Leading zeros are used to indicate octal numbers, which can confuse users who are...

6.5CVSS0.00306EPSS
Exploits0References3
OSV
OSV
added 2025/05/27 10:15 p.m.4 views

UBUNTU-CVE-2025-40911

Net::CIDR::Set versions 0.10 through 0.13 for Perl does not properly handle leading zero characters in IP CIDR address strings, which could allow attackers to bypass access control that is based on IP addresses. Leading zeros are used to indicate octal numbers, which can confuse users who are...

6.5CVSS5.8AI score0.00306EPSS
Exploits0References6
Circl
Circl
added 2025/05/27 9:41 p.m.19 views

CVE-2025-40911

creationtimestamp| type| source ---|---|--- 2025-05-27 21:41:00+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lq6nk7kdp652 2025-05-27 23:41:22+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lq6uh33hid2a...

6.5CVSS6.7AI score0.00306EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/05/27 9:17 p.m.9 views

CVE-2025-40911 Net::CIDR::Set versions 0.10 through 0.13 for Perl does not properly consider leading zero characters in IP CIDR address strings, which could allow attackers to bypass access control that is based on IP addresses

Net::CIDR::Set versions 0.10 through 0.13 for Perl does not properly handle leading zero characters in IP CIDR address strings, which could allow attackers to bypass access control that is based on IP addresses. Leading zeros are used to indicate octal numbers, which can confuse users who are...

6.9AI score0.00306EPSS
Exploits0References3
OSV
OSV
added 2025/05/27 9:17 p.m.7 views

CVE-2025-40911 Net::CIDR::Set versions 0.10 through 0.13 for Perl does not properly consider leading zero characters in IP CIDR address strings, which could allow attackers to bypass access control that is based on IP addresses

Net::CIDR::Set versions 0.10 through 0.13 for Perl does not properly handle leading zero characters in IP CIDR address strings, which could allow attackers to bypass access control that is based on IP addresses. Leading zeros are used to indicate octal numbers, which can confuse users who are...

6.5CVSS6AI score0.00306EPSS
Exploits0References7
CVE
CVE
added 2025/05/27 9:17 p.m.74 views

CVE-2025-40911

CVE-2025-40911 affects Net::CIDR::Set for Perl versions 0.10–0.13, which misparses IP CIDR strings with leading zeros, allowing potential access-control bypass. Root cause: octal interpretation of leading zeros; Net::CIDR::Set derived code from Net::CIDR::Lite (CVE-2021-47154). Public details poi...

6.5CVSS6.6AI score0.00306EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/05/27 9:17 p.m.19 views

CVE-2025-40911 Net::CIDR::Set versions 0.10 through 0.13 for Perl does not properly consider leading zero characters in IP CIDR address strings, which could allow attackers to bypass access control that is based on IP addresses

Net::CIDR::Set versions 0.10 through 0.13 for Perl does not properly handle leading zero characters in IP CIDR address strings, which could allow attackers to bypass access control that is based on IP addresses. Leading zeros are used to indicate octal numbers, which can confuse users who are...

0.00306EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2025/05/27 9:17 p.m.27 views

CVE-2025-40911

Net::CIDR::Set versions 0.10 through 0.13 for Perl does not properly handle leading zero characters in IP CIDR address strings, which could allow attackers to bypass access control that is based on IP addresses. Leading zeros are used to indicate octal numbers, which can confuse users who are...

6.5CVSS5.4AI score0.00306EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2024-40911

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wifi: cfg80211: Lock wiphy in cfg80211getstation Wiphy should be locked before calling rdevgetstation see lockdep assert in ieee80211getstation. This fixes the...

5.5CVSS6.7AI score0.0028EPSS
Exploits0References4
OSV
OSV
added 2024/07/12 1:15 p.m.4 views

UBUNTU-CVE-2024-40911

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: Lock wiphy in cfg80211getstation Wiphy should be locked before calling rdevgetstation see lockdep assert in ieee80211getstation. This fixes the following kernel NULL dereference: Unable to handle kernel NULL point...

5.5CVSS6.1AI score0.0028EPSS
Exploits0References38
Vulnrichment
Vulnrichment
added 2024/07/12 12:20 p.m.18 views

CVE-2024-40911 wifi: cfg80211: Lock wiphy in cfg80211_get_station

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: Lock wiphy in cfg80211getstation Wiphy should be locked before calling rdevgetstation see lockdep assert in ieee80211getstation. This fixes the following kernel NULL dereference: Unable to handle kernel NULL point...

6.6AI score0.0028EPSS
Exploits0References5
Cvelist
Cvelist
added 2024/07/12 12:20 p.m.22 views

CVE-2024-40911 wifi: cfg80211: Lock wiphy in cfg80211_get_station

In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: Lock wiphy in cfg80211getstation Wiphy should be locked before calling rdevgetstation see lockdep assert in ieee80211getstation. This fixes the following kernel NULL dereference: Unable to handle kernel NULL point...

0.0028EPSS
Exploits0References5
CVE
CVE
added 2024/07/12 12:20 p.m.177 views

CVE-2024-40911

CVE-2024-40911 affects the Linux kernel WiFi stack: linux wifi cfg80211_get_station may dereference a NULL pointer if the wiphy is not locked, leading to an Unable to handle kernel NULL pointer dereference. The fix locks the wiphy before rdev_get_station() (see ieee80211_get_station lockdep asser...

5.5CVSS6.9AI score0.0028EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder