18 matches found
ROOT-OS-DEBIAN-11-CVE-2024-40911 CVE-2024-40911 in rootio-linux - Patched by Root
Root has patched CVE-2024-40911 in the rootio-linux package for Root:Debian:11. Multiple fixed versions available...
CVE-2026-40911
CVE-2026-40911 affects WWBN AVideo before version 30.x via the YPTSocket WebSocket plugin. The WebSocket server relays attacker-supplied JSON fields without sanitization, and plugin/YPTSocket/script.js directly feeds relayed json.msg.autoEvalCodeOnHTML and json.callback into eval(), enabling unau...
CVE-2026-40911
creationtimestamp| type| source ---|---|--- 2026-04-13 12:21:35+00:00| published-proof-of-concept| https://github.com/WWBN/AVideo/security/advisories/GHSA-gph2-j4c9-vhhr 2026-04-21 22:00:45+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mjzy7zu4dk2z 2026-04-21 22:17:26+00:0...
CVE-2024-40911
creationtimestamp| type| source ---|---|--- 2025-12-03 14:14:49+00:00| seen| https://vulnerability.circl.lu/bundle/816dcc8e-f25a-4895-9b59-1bbd9caeccb8...
CVE-2025-40911
Net::CIDR::Set versions 0.10 through 0.13 for Perl does not properly handle leading zero characters in IP CIDR address strings, which could allow attackers to bypass access control that is based on IP addresses. Leading zeros are used to indicate octal numbers, which can confuse users who are...
CVE-2025-40911
Net::CIDR::Set versions 0.10 through 0.13 for Perl does not properly handle leading zero characters in IP CIDR address strings, which could allow attackers to bypass access control that is based on IP addresses. Leading zeros are used to indicate octal numbers, which can confuse users who are...
UBUNTU-CVE-2025-40911
Net::CIDR::Set versions 0.10 through 0.13 for Perl does not properly handle leading zero characters in IP CIDR address strings, which could allow attackers to bypass access control that is based on IP addresses. Leading zeros are used to indicate octal numbers, which can confuse users who are...
CVE-2025-40911
creationtimestamp| type| source ---|---|--- 2025-05-27 21:41:00+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lq6nk7kdp652 2025-05-27 23:41:22+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lq6uh33hid2a...
CVE-2025-40911 Net::CIDR::Set versions 0.10 through 0.13 for Perl does not properly consider leading zero characters in IP CIDR address strings, which could allow attackers to bypass access control that is based on IP addresses
Net::CIDR::Set versions 0.10 through 0.13 for Perl does not properly handle leading zero characters in IP CIDR address strings, which could allow attackers to bypass access control that is based on IP addresses. Leading zeros are used to indicate octal numbers, which can confuse users who are...
CVE-2025-40911 Net::CIDR::Set versions 0.10 through 0.13 for Perl does not properly consider leading zero characters in IP CIDR address strings, which could allow attackers to bypass access control that is based on IP addresses
Net::CIDR::Set versions 0.10 through 0.13 for Perl does not properly handle leading zero characters in IP CIDR address strings, which could allow attackers to bypass access control that is based on IP addresses. Leading zeros are used to indicate octal numbers, which can confuse users who are...
CVE-2025-40911
CVE-2025-40911 affects Net::CIDR::Set for Perl versions 0.10–0.13, which misparses IP CIDR strings with leading zeros, allowing potential access-control bypass. Root cause: octal interpretation of leading zeros; Net::CIDR::Set derived code from Net::CIDR::Lite (CVE-2021-47154). Public details poi...
CVE-2025-40911 Net::CIDR::Set versions 0.10 through 0.13 for Perl does not properly consider leading zero characters in IP CIDR address strings, which could allow attackers to bypass access control that is based on IP addresses
Net::CIDR::Set versions 0.10 through 0.13 for Perl does not properly handle leading zero characters in IP CIDR address strings, which could allow attackers to bypass access control that is based on IP addresses. Leading zeros are used to indicate octal numbers, which can confuse users who are...
CVE-2025-40911
Net::CIDR::Set versions 0.10 through 0.13 for Perl does not properly handle leading zero characters in IP CIDR address strings, which could allow attackers to bypass access control that is based on IP addresses. Leading zeros are used to indicate octal numbers, which can confuse users who are...
Linux Distros Unpatched Vulnerability : CVE-2024-40911
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wifi: cfg80211: Lock wiphy in cfg80211getstation Wiphy should be locked before calling rdevgetstation see lockdep assert in ieee80211getstation. This fixes the...
UBUNTU-CVE-2024-40911
In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: Lock wiphy in cfg80211getstation Wiphy should be locked before calling rdevgetstation see lockdep assert in ieee80211getstation. This fixes the following kernel NULL dereference: Unable to handle kernel NULL point...
CVE-2024-40911 wifi: cfg80211: Lock wiphy in cfg80211_get_station
In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: Lock wiphy in cfg80211getstation Wiphy should be locked before calling rdevgetstation see lockdep assert in ieee80211getstation. This fixes the following kernel NULL dereference: Unable to handle kernel NULL point...
CVE-2024-40911 wifi: cfg80211: Lock wiphy in cfg80211_get_station
In the Linux kernel, the following vulnerability has been resolved: wifi: cfg80211: Lock wiphy in cfg80211getstation Wiphy should be locked before calling rdevgetstation see lockdep assert in ieee80211getstation. This fixes the following kernel NULL dereference: Unable to handle kernel NULL point...
CVE-2024-40911
CVE-2024-40911 affects the Linux kernel WiFi stack: linux wifi cfg80211_get_station may dereference a NULL pointer if the wiphy is not locked, leading to an Unable to handle kernel NULL pointer dereference. The fix locks the wiphy before rdev_get_station() (see ieee80211_get_station lockdep asser...