UBUNTU-CVE-2025-71149

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

CVE-2025-71149

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

CVE-2026-24633

Missing Authorization vulnerability in Passionate Brains Add Expires Headers & Optimized Minify add-expires-headers allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Add Expires Headers & Optimized Minify: from n/a through = 3.1.0...

CVE-2026-24633

CVE-2026-24633 concerns a Missing Authorization issue in Passionate Brains Add Expires Headers & Optimized Minify (plugin), affecting versions up to and including 3.1.0. Red Hat and CVE records corroborate the missing authorization/configuration risk. The PT-2026-4463 advisory explicitly recommen...

CVE-2026-24633 WordPress Add Expires Headers & Optimized Minify plugin <= 3.2.0 - Broken Access Control vulnerability

Missing Authorization vulnerability in Passionate Brains Add Expires Headers & Optimized Minify add-expires-headers allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Add Expires Headers & Optimized Minify: from n/a through = 3.2.0...

CVE-2026-24620

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in PluginOps Landing Page Builder page-builder-add allows Stored XSS.This issue affects Landing Page Builder: from n/a through = 1.5.3.3...

CVE-2025-71149 io_uring/poll: correctly handle io_poll_add() return value on update

In the Linux kernel, the following vulnerability has been resolved: iouring/poll: correctly handle iopolladd return value on update When the core of iouring was updated to handle completions consistently and with fixed return codes, the POLLREMOVE opcode with updates got slightly broken. If a...

CVE-2025-71149

...

CVE-2025-71149

CVE-2025-71149 is reported in multiple advisories as a Linux kernel io_uring/poll issue. The root cause is incorrect handling of the return value from io_poll_add() during updates, which can affect completion/event signaling (CQEs) for POLL_ADD/POLL_REMOVE scenarios. Affected advisories reference...

CVE-2025-71149

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

CVE-2026-0773

Upsonic Cloudpickle Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Upsonic. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...

CVE-2026-0773

Upsonic Cloudpickle Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Upsonic. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...

CVE-2026-0773 Upsonic Cloudpickle Deserialization of Untrusted Data Remote Code Execution Vulnerability

Upsonic Cloudpickle Deserialization of Untrusted Data Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of Upsonic. Authentication is not required to exploit this vulnerability. The specific flaw exists within the...

Upsonic code issue vulnerabilities

Upsonic is an open-source AI proxy framework developed by Upsonic. Upsonic has code vulnerabilities, which stem from the lack of validation for data provided by users at the addtool endpoint. This vulnerability may lead to the deserialization of untrusted data and remote code execution...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-004903)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004903 advisory. In the Linux kernel, the following vulnerability has been resolved: staging: vmeuser: Fix possible UAF in tsi148dmalistadd Smatch report warning as follows:...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-004862)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004862 advisory. In the Linux kernel, the following vulnerability has been resolved: siox: fix possible memory leak in sioxdeviceadd If deviceregister returns error in sioxdeviceadd,...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-004925)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004925 advisory. In the Linux kernel, the following vulnerability has been resolved: mmc: rtsxusbsdmmc: fix return value check of mmcaddhost mmcaddhost may return error, if we ignore...

PT-2026-4451

Name of the Vulnerable Software and Affected Versions PluginOps Landing Page Builder versions through 1.5.3.3 Description The software contains a flaw related to improper input handling during web page generation, specifically a Stored Cross-site Scripting issue. This impacts the page-builder-add...

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-004851)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004851 advisory. In the Linux kernel, the following vulnerability has been resolved: rapidio: fix possible name leaks when rioadddevice fails Patch series rapidio: fix three possible...

Linux Distros Unpatched Vulnerability : CVE-2026-22986

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - gpiolib: fix race condition for gdev-srcu If two drivers were calling gpiochipadddatawithkey, one may be traversing the srcu-protected list in gpionametodesc,...