12 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-49434
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Improper Input Validation vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ, Apache ActiveMQ All. An attacker that has access to publish or modify entrie...
CVE-2026-49434
creationtimestamp| type| source ---|---|--- 2026-06-29 21:28:11+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3mphgldvzkq2a 2026-07-03 10:59:13+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpqfcdufmu2u...
CVE-2025-49434
Deserialization of Untrusted Data vulnerability in axiomthemes Cars4Rent cars4rent allows Object Injection.This issue affects Cars4Rent: from n/a through = 1.4.2...
CVE-2025-49434
Deserialization of Untrusted Data vulnerability in WordPress Cars4Rent Theme/Cars4Rent plugin (CVE-2025-49434) affects Cars4Rent: from n/a through <= 1.4.2. Root cause: PHP object deserialization leading to Object Injection. Impact is rated Critical (CVSS 3.1 base 9.8) with potential HIGH impa...
Linux Distros Unpatched Vulnerability : CVE-2022-49434
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - PCI: Avoid pcidevlock AB/BA deadlock with sriovnumvfsstore The sysfs sriovnumvfsstore path acquires the device lock before the config space access lock:...
CVE-2022-49434
In the Linux kernel, the following vulnerability has been resolved: PCI: Avoid pcidevlock AB/BA deadlock with sriovnumvfsstore The sysfs sriovnumvfsstore path acquires the device lock before the config space access lock: sriovnumvfsstore devicelock A 1 acquire device lock sriovconfigure...
CVE-2022-49434
The CVE-2022-49434 issue is in the Linux kernel where pci_dev_lock() historically acquired the config space access lock before the device lock, risking AB/BA deadlocks with sriov_numvfs_store() that already takes the device lock first. The fix is to reverse the order in pci_dev_lock() so it acqui...
CVE-2022-49434 PCI: Avoid pci_dev_lock() AB/BA deadlock with sriov_numvfs_store()
In the Linux kernel, the following vulnerability has been resolved: PCI: Avoid pcidevlock AB/BA deadlock with sriovnumvfsstore The sysfs sriovnumvfsstore path acquires the device lock before the config space access lock: sriovnumvfsstore devicelock A 1 acquire device lock sriovconfigure...
CVE-2022-49434 PCI: Avoid pci_dev_lock() AB/BA deadlock with sriov_numvfs_store()
In the Linux kernel, the following vulnerability has been resolved: PCI: Avoid pcidevlock AB/BA deadlock with sriovnumvfsstore The sysfs sriovnumvfsstore path acquires the device lock before the config space access lock: sriovnumvfsstore devicelock A 1 acquire device lock sriovconfigure...
CVE-2022-49434
In the Linux kernel, the following vulnerability has been resolved: PCI: Avoid pcidevlock AB/BA deadlock with sriovnumvfsstore The sysfs sriovnumvfsstore path acquires the device lock before the config space access lock: sriovnumvfsstore devicelock A 1 acquire device lock sriovconfigure...
CVE-2023-49434
creationtimestamp| type| source ---|---|--- 2023-12-31 07:07:37+00:00| seen| https://t.me/ctinow/160989...
CVE-2023-49434
CVE-2023-49434 affects Tenda AX9 (firmware v22.03.01.46). The vulnerability is a buffer/stack overflow in the /goform/SetNetControlList endpoint, triggered by the input length of the “list” parameter not being properly validated. Exploitation could allow a remote attacker to execute arbitrary cod...