Lucene search
K

262 matches found

Positive Technologies
Positive Technologies
added 2025/12/30 12:0 a.m.11 views

PT-2025-54085

In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: don't reset device side if dwc3 was configured as host-only Commit c4a5153e87fd "usb: dwc3: core: Power-off core/PHYs on system suspend in host mode" replaces check for HOST only dr mode with current dr role. But durin...

6.4AI score
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/12/30 12:0 a.m.10 views

PT-2025-53965

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s DRM subsystem related to the it6505 driver. Specifically, the HPD interrupt could be triggered before the it6505 device was fully registered as a DRM...

7.8CVSS7AI score0.00462EPSS
Exploits2References842
RedhatCVE
RedhatCVE
added 2025/12/18 3:38 a.m.4 views

CVE-2025-14302

Certain motherboard models developed by GIGABYTE has a Protection Mechanism Failure vulnerability. Because IOMMU was not properly enabled, unauthenticated physical attackers can use a DMA-capable PCIe device to read and write arbitrary physical memory before the OS kernel and its security feature...

7CVSS6.8AI score0.00314EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/17 3:7 a.m.29 views

CVE-2025-14302 GIGABYTE|Motherboard - Protection Mechanism Failure

Certain motherboard models developed by GIGABYTE has a Protection Mechanism Failure vulnerability. Because IOMMU was not properly enabled, unauthenticated physical attackers can use a DMA-capable PCIe device to read and write arbitrary physical memory before the OS kernel and its security feature...

7CVSS0.00314EPSS
Exploits0References3
NVD
NVD
added 2025/12/09 1:16 a.m.5 views

CVE-2023-53787

In the Linux kernel, the following vulnerability has been resolved: regulator: da9063: fix null pointer deref with partial DT config When some of the da9063 regulators do not have corresponding DT nodes a null pointer dereference occurs on boot because such regulators have no initdata causing the...

0.00162EPSS
Exploits0References2
OSV
OSV
added 2025/12/04 10:15 p.m.3 views

CVE-2025-13940

An Expected Behavior Violation CWE-440 vulnerability in WatchGuard Fireware OS may allow an attacker to bypass the Fireware OS boot time system integrity check and prevent the Firebox from shutting down in the event of a system integrity check failure. The on-demand system integrity check in the...

5.5CVSS5.8AI score0.00107EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/04 9:47 p.m.2 views

CVE-2025-13940 WatchGuard Firebox Boot Time System Integrity Check Bypass

An Expected Behavior Violation CWE-440 vulnerability in WatchGuard Fireware OS may allow an attacker to bypass the Fireware OS boot time system integrity check and prevent the Firebox from shutting down in the event of a system integrity check failure. The on-demand system integrity check in the...

6.7CVSS6.5AI score0.00107EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/04 9:47 p.m.24 views

CVE-2025-13940 WatchGuard Firebox Boot Time System Integrity Check Bypass

An Expected Behavior Violation CWE-440 vulnerability in WatchGuard Fireware OS may allow an attacker to bypass the Fireware OS boot time system integrity check and prevent the Firebox from shutting down in the event of a system integrity check failure. The on-demand system integrity check in the...

6.7CVSS0.00107EPSS
Exploits0References1
CVE
CVE
added 2025/12/04 9:47 p.m.12 views

CVE-2025-13940

WatchGuard Fireware OS contains an Expected Behavior Violation (CWE-440) vulnerability (CVE-2025-13940) that could allow bypass of the boot-time system integrity check and prevent Firebox shutdown in the event of a failure. Affected versions are Fireware OS 12.8.1–12.11.4 and 2025.1–2025.1.2. The...

6.7CVSS6.5AI score0.00107EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/12/04 12:0 a.m.4 views

PT-2025-49164

Name of the Vulnerable Software and Affected Versions WatchGuard Fireware OS versions 12.8.1 through 12.11.4 WatchGuard Fireware OS versions 2025.1 through 2025.1.2 Description A flaw exists within the Fireware OS that could allow an attacker to circumvent the boot time system integrity check. Th...

6.7CVSS6.5AI score0.00107EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2025/12/03 5:2 p.m.5 views

CVE-2025-59705

Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow a Physically Proximate Attacker to Escalate Privileges by enabling the USB interface through chassis probe insertion during system boot, aka "Unauthorized Reactivation of the USB interface" or F01...

6.8CVSS6.8AI score0.00263EPSS
Exploits1References1
CVE
CVE
added 2025/12/02 12:0 a.m.13 views

CVE-2025-59705

CVE-2025-59705 affects Entrust nShield Connect XC, nShield 5c, and nShield HSMi up to 13.6.11 or 13.7. The issue is a privilege-escalation path via enabling the USB interface by inserting a chassis probe during system boot, described as "Unauthorized Reactivation of the USB interface" (F01). The ...

6.8CVSS6.5AI score0.00263EPSS
Exploits1References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/12/02 12:0 a.m.1 views

CVE-2025-59705

Entrust nShield Connect XC, nShield 5c, and nShield HSMi through 13.6.11, or 13.7, allow a Physically Proximate Attacker to Escalate Privileges by enabling the USB interface through chassis probe insertion during system boot, aka "Unauthorized Reactivation of the USB interface" or F01...

6.5AI score0.00263EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/11/18 6:20 p.m.13 views

CVE-2025-61661 Grub2: grub2: out-of-bounds write via malicious usb device

A vulnerability has been identified in the GRUB Grand Unified Bootloader component. This flaw occurs because the bootloader mishandles string conversion when reading information from a USB device, allowing an attacker to exploit inconsistent length values. A local attacker can connect a malicious...

4.8CVSS0.00172EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2025/11/17 10:31 a.m.10 views

kernel: of_numa: fix uninitialized memory nodes causing kernel panic

A flaw was found in the linux kernel ofnuma subsystem fails to properly initialize memory‑only NUMA nodes i.e., nodes without CPUs. When such nodes remain uninitialized, a subsequent call to freeareainit may access NODEDATA for those nodes and trigger a kernel panic due to a NULL pointer...

5.5CVSS6AI score0.00134EPSS
Exploits0References5
Redos
Redos
added 2025/11/06 12:0 a.m.4 views

ROS-20251106-09

A vulnerability in the QEMU hardware emulator is related to the incorrect release and use of the irqfd for vector 0 during boot time in QEMU Virtio PCI Bindings hw/virtio/virtio/pci.c. Exploitation of the of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS6.7AI score0.00324EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/10/27 12:0 a.m.9 views

Siemens SIMATIC, SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-43889)

padata: vulnerability due to a possible divide-by-zero error in padatamthelper during bootup, caused by an uninitialized chunksize being zero. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...

5.5CVSS6.9AI score0.00237EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.12 views

EUVD-2011-5258

Malware in sbrugna...

8.4CVSS6.4AI score0.00352EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-27187

Malware in sbrugna...

5.5CVSS6.7AI score0.01561EPSS
Exploits1References9
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.2 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987149)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987149 advisory. In the Linux kernel, the following vulnerability has been resolved: rtc: cmos: Fix event handler registration ordering issue Because acpiinstallfixedeventhandler...

5.5CVSS5.8AI score0.00245EPSS
Exploits0References4
Rows per page
Query Builder