Lucene search
K

808 matches found

Amazon
Amazon
added 2025/09/29 12:0 a.m.10 views

Important: amazon-ssm-agent

Issue Overview: The net/http package accepted data in the chunked transfer encoding containing an invalid chunk-size line terminated by a bare LF. When used in conjunction with a server or proxy which incorrectly interprets a bare LF in a chunk extension as part of the extension, this could permi...

9.1CVSS7.1AI score0.00724EPSS
Exploits0
Amazon
Amazon
added 2025/09/29 12:0 a.m.6 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: NFSD: Fix the behavior of READ near OFFSETMAX CVE-2022-48827 In the Linux kernel, the following vulnerability has been resolved: NFSD: Fix iasize underflow CVE-2022-48828 In the Linux kernel, the following...

7.8CVSS7AI score0.00263EPSS
Exploits0
Amazon
Amazon
added 2025/09/16 12:0 a.m.3 views

Medium: gstreamer1-plugins-base

Issue Overview: In GStreamer through 1.26.1, the subparse plugin's parsesubriptime function may write data past the bounds of a stack buffer, leading to a crash. CVE-2025-47806 In GStreamer through 1.26.1, the subparse plugin's subripunescapeformatting function may dereference a NULL pointer whil...

5.6CVSS7AI score0.00428EPSS
Exploits3
Amazon
Amazon
added 2025/09/16 12:0 a.m.4 views

Important: microcode_ctl

Issue Overview: Improper buffer restrictions for some IntelR XeonR Processor firmware with SGX enabled may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2025-20053 Missing reference to active allocated resource for some IntelR XeonR processors may all...

7.2CVSS7.2AI score0.00143EPSS
Exploits0
Amazon
Amazon
added 2025/09/16 12:0 a.m.8 views

Important: kernel-livepatch-5.10.239-236.958

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: ACPICA: Refuse to evaluate a method if arguments are missing CVE-2025-38386 Affected Packages: kernel-livepatch-5.10.239-236.958 Issue Correction: Please ensure you have live patching enabled. Run yum update...

5.5CVSS6.6AI score0.00166EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/09/16 12:0 a.m.3 views

Amazon Linux 2 : redis, --advisory ALAS2REDIS6-2025-014 (ALASREDIS6-2025-014)

The version of redis installed on the remote host is prior to 6.2.14-2. It is, therefore, affected by a vulnerability as referenced in the ALAS2REDIS6-2025-014 advisory. TOCTOU in linenoiseHistorySave in linenoise allows local attackers to overwrite arbitrary files and change permissions via a...

6.8CVSS5.8AI score0.00099EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/09/16 12:0 a.m.4 views

Amazon Linux 2 : ImageMagick, --advisory ALAS2-2025-3000 (ALAS-2025-3000)

The version of ImageMagick installed on the remote host is prior to 6.9.10.97-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-3000 advisory. ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version...

8.8CVSS7.6AI score0.04065EPSS
Exploits4References10
Tenable Nessus
Tenable Nessus
added 2025/09/16 12:0 a.m.7 views

Amazon Linux 2 : giflib, --advisory ALAS2-2025-2998 (ALAS-2025-2998)

The version of giflib installed on the remote host is prior to 4.1.6-9. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2998 advisory. A memory leak out-of-memory in gif2rgb in util/gif2rgb.c in giflib 5.1.4 allows remote attackers trigger an out of memory exception ...

8.8CVSS7.8AI score0.01533EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/09/16 12:0 a.m.6 views

Amazon Linux 2 : gstreamer1-plugins-good, --advisory ALAS2-2025-3003 (ALAS-2025-3003)

The version of gstreamer1-plugins-good installed on the remote host is prior to 1.18.4-6. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-3003 advisory. GStreamer is a library for constructing graphs of media-handling components. The function qtdemuxparsesbg...

8.1CVSS7.3AI score0.01072EPSS
Exploits2References8
Tenable Nessus
Tenable Nessus
added 2025/09/16 12:0 a.m.7 views

Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.4-2025-109 (ALASKERNEL-5.4-2025-109)

The version of kernel installed on the remote host is prior to 5.4.298-218.429. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.4-2025-109 advisory. In the Linux kernel, the following vulnerability has been resolved: ACPI: processor: idle: Check...

7.8CVSS6.5AI score0.00358EPSS
Exploits0References124
Tenable Nessus
Tenable Nessus
added 2025/09/16 12:0 a.m.5 views

Amazon Linux 2 : kernel, --advisory ALAS2-2025-3001 (ALAS-2025-3001)

The version of kernel installed on the remote host is prior to 4.14.355-280.684. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-3001 advisory. In the Linux kernel, the following vulnerability has been resolved: mm/khugepaged: fix -anonvma race CVE-2023-5293...

7.8CVSS6.3AI score0.00182EPSS
Exploits0References12
Amazon
Amazon
added 2025/09/16 12:0 a.m.12 views

Important: kernel-livepatch-5.10.238-234.956

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: ACPICA: Refuse to evaluate a method if arguments are missing CVE-2025-38386 Affected Packages: kernel-livepatch-5.10.238-234.956 Issue Correction: Please ensure you have live patching enabled. Run yum update...

5.5CVSS6.6AI score0.00166EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/09/16 12:0 a.m.5 views

Amazon Linux 2 : microcode_ctl, --advisory ALAS2-2025-2993 (ALAS-2025-2993)

The version of microcodectl installed on the remote host is prior to 2.1-47. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-2993 advisory. Improper buffer restrictions for some IntelR XeonR Processor firmware with SGX enabled may allow a privileged user to...

7.2CVSS7.2AI score0.00143EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/09/16 12:0 a.m.8 views

Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.15-2025-089 (ALASKERNEL-5.15-2025-089)

The version of kernel installed on the remote host is prior to 5.15.191-132.213. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.15-2025-089 advisory. In the Linux kernel, the following vulnerability has been resolved: ACPI: processor: idle: Check...

7.8CVSS6.8AI score0.0037EPSS
Exploits1References134
Amazon
Amazon
added 2025/09/16 12:0 a.m.9 views

Important: microcode_ctl

Issue Overview: A potential security vulnerability in some Intelr Processors may allow information disclosure. Intel is releasing microcode updates and prescriptive guidance to mitigate this potential vulnerability. Info:...

7.8CVSS7.3AI score0.00371EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/09/06 12:0 a.m.5 views

Amazon Linux 2 : memcached, --advisory ALAS2MEMCACHED1.5-2025-001 (ALASMEMCACHED1.5-2025-001)

The version of memcached installed on the remote host is prior to 1.5.17-1. It is, therefore, affected by a vulnerability as referenced in the ALAS2MEMCACHED1.5-2025-001 advisory. Buffer Overflow vulnerability in authfile.c memcached 1.6.9 allows attackers to cause a denial of service via crafted...

5.5CVSS6AI score0.0036EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/09/05 12:0 a.m.7 views

Amazon Linux 2 : postgresql, --advisory ALAS2POSTGRESQL13-2025-012 (ALASPOSTGRESQL13-2025-012)

The version of postgresql installed on the remote host is prior to 13.22-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2POSTGRESQL13-2025-012 advisory. PostgreSQL optimizer statistics allow a user to read sampled data within a view that the user cannot access...

8.8CVSS7.5AI score0.0257EPSS
Exploits2References8
Tenable Nessus
Tenable Nessus
added 2025/09/05 12:0 a.m.3 views

Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.15-2025-088 (ALASKERNEL-5.15-2025-088)

The version of kernel installed on the remote host is prior to 5.15.189-131.211. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.15-2025-088 advisory. In the Linux kernel, the following vulnerability has been resolved: dma-buf/dma-resv: check if the new...

7.8CVSS6.8AI score0.00248EPSS
Exploits1References16
Tenable Nessus
Tenable Nessus
added 2025/09/05 12:0 a.m.5 views

Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.10-2025-103 (ALASKERNEL-5.10-2025-103)

The version of kernel installed on the remote host is prior to 5.10.240-238.966. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.10-2025-103 advisory. In the Linux kernel, the following vulnerability has been resolved: dma-buf/dma-resv: check if the new...

7.8CVSS6.4AI score0.00211EPSS
Exploits0References16
Tenable Nessus
Tenable Nessus
added 2025/09/05 12:0 a.m.5 views

Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.10-2025-102 (ALASKERNEL-5.10-2025-102)

The version of kernel installed on the remote host is prior to 5.10.240-238.955. It is, therefore, affected by a vulnerability as referenced in the ALAS2KERNEL-5.10-2025-102 advisory. In the Linux kernel, the following vulnerability has been resolved: ACPICA: Refuse to evaluate a method if...

5.5CVSS6.2AI score0.00166EPSS
Exploits0References4
Rows per page
Query Builder