Lucene search
K

1041 matches found

CVE
CVE
added 2025/07/04 1:37 p.m.52 views

CVE-2025-38201

CVE-2025-38201 affects the Linux kernel netfilter nft_set_pipapo. The issue arises when resizing hashtables in netfilter, where WARN_ON_ONCE can trigger if GFP flags allow high bucket counts; the fix clamps the maximum map bucket size to INT_MAX. The vulnerability is described as local-attack-vec...

7.8CVSS6.4AI score0.00185EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2025/07/04 1:37 p.m.4 views

CVE-2025-38201 netfilter: nft_set_pipapo: clamp maximum map bucket size to INT_MAX

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftsetpipapo: clamp maximum map bucket size to INTMAX Otherwise, it is possible to hit WARNONONCE in kvmallocnodenoprof when resizing hashtable because GFPNOWARN is unset. Similar to: b541ba7d1f5a "netfilter: conntrack...

7.8CVSS7.3AI score0.00185EPSS
Exploits0References10
CVE
CVE
added 2025/07/01 2:49 p.m.45 views

CVE-2025-34064

OneLogin AD Connector is affected by a cloud infrastructure misconfiguration that sends log data to a hardcoded S3 bucket (onelogin-adc-logs-production) without validating bucket ownership. An attacker who registers an unclaimed bucket can receive log files from other tenants, potentially exposin...

9CVSS6.3AI score0.00446EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/07/01 12:0 a.m.9 views

PT-2025-27552 · Onelogin · Onelogin Ad Connector

Name of the Vulnerable Software and Affected Versions: OneLogin AD Connector affected versions not specified Description: A cloud infrastructure misconfiguration in OneLogin AD Connector results in log data being sent to a hardcoded S3 bucket onelogin-adc-logs-production without validating bucket...

9CVSS5.9AI score0.00446EPSS
Exploits0References9
SUSE CVE
SUSE CVE
added 2025/06/19 3:15 a.m.2 views

SUSE CVE-2025-38039

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Avoid WARNON when configuring MQPRIO with HTB offload enabled When attempting to enable MQPRIO while HTB offload is already configured, the driver currently returns -EINVAL and triggers a WARNON, leading to an...

5.5CVSS6.6AI score0.00155EPSS
Exploits0References3
OSV
OSV
added 2025/06/18 10:15 a.m.2 views

DEBIAN-CVE-2025-38039

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Avoid WARNON when configuring MQPRIO with HTB offload enabled When attempting to enable MQPRIO while HTB offload is already configured, the driver currently returns -EINVAL and triggers a WARNON, leading to an...

5.5CVSS5.6AI score0.00155EPSS
Exploits0References1
OSV
OSV
added 2025/06/18 10:15 a.m.3 views

UBUNTU-CVE-2025-38039

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Avoid WARNON when configuring MQPRIO with HTB offload enabled When attempting to enable MQPRIO while HTB offload is already configured, the driver currently returns -EINVAL and triggers a WARNON, leading to an...

5.5CVSS6.2AI score0.00155EPSS
Exploits0References30
CNNVD
CNNVD
added 2025/06/18 12:0 a.m.1 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the net/mlx5e driver not properly handling HTB offload cases when configuring MQPRIO, resulting in an unwant...

5.5CVSS7.5AI score0.00155EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2025/06/10 9:31 p.m.5 views

@nx/azure-cache Vulnerable to Build Cache Poisoning via Untrusted Pull Requests

A critical security vulnerability exists in remote cache extensions for common build systems utilizing bucket-based remote cache such as those using Amazon S3, Google Cloud Storage, or similar object storage that allows any contributor with pull request privileges to inject compromised artifacts...

9.4CVSS7AI score0.00192EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2025/06/10 9:31 p.m.3 views

GHSA-RRR2-JCR8-7Q3X @nx/azure-cache Vulnerable to Build Cache Poisoning via Untrusted Pull Requests

A critical security vulnerability exists in remote cache extensions for common build systems utilizing bucket-based remote cache such as those using Amazon S3, Google Cloud Storage, or similar object storage that allows any contributor with pull request privileges to inject compromised artifacts...

9.4CVSS7AI score0.00192EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/06/10 12:0 a.m.4 views

Nx 安全漏洞

Nx is an application from Nx, Inc. A security vulnerability exists in Nx that stems from a design flaw in the bucket-based remote cache that could lead to the injection of compromised artifacts into a trusted production environment...

9.4CVSS6.8AI score0.00192EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/23 6:40 a.m.7 views

CVE-2024-51908

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in kevinabl Adventure Bucket List adventure-bucket-list allows DOM-Based XSS.This issue affects Adventure Bucket List: from n/a through = 1.0.9...

6.5CVSS7.2AI score0.00312EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:2 a.m.3 views

CVE-2023-28433

Minio is a Multi-Cloud Object Storage framework. All users on Windows prior to version RELEASE.2023-03-20T20-16-18Z are impacted. MinIO fails to filter the \ character, which allows for arbitrary object placement across buckets. As a result, a user with low privileges, such as an access key,...

8.8CVSS6.8AI score0.00981EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:1 a.m.4 views

CVE-2023-28434

Minio is a Multi-Cloud Object Storage framework. Prior to RELEASE.2023-03-20T20-16-18Z, an attacker can use crafted requests to bypass metadata bucket name checking and put an object into any bucket while processing PostPolicyBucket. To carry out this attack, the attacker requires credentials wit...

8.8CVSS8.3AI score0.06736EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:33 a.m.12 views

CVE-2023-6017

H2O included a reference to an S3 bucket that no longer existed allowing an attacker to take over the S3 bucket URL...

8.7CVSS6.8AI score0.00855EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/23 1:11 a.m.7 views

CVE-2022-36022

Deeplearning4J is a suite of tools for deploying and training deep learning models using the JVM. Packages org.deeplearning4j:dl4j-examples and org.deeplearning4j:platform-tests through version 1.0.0-M2.1 may use some unclaimed S3 buckets in tests in examples. This is likely affect people who use...

5.3CVSS6.8AI score0.00389EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 11:51 p.m.5 views

CVE-2022-22997

Addressed a remote code execution vulnerability by resolving a command injection vulnerability and closing an AWS S3 bucket that potentially allowed an attacker to execute unsigned code on My Cloud Home devices...

9.8CVSS8.4AI score0.01369EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:57 p.m.9 views

CVE-2022-32558

An issue was discovered in Couchbase Server before 7.0.4. Sample bucket loading may leak internal user passwords during a failure...

7.5CVSS6.8AI score0.0116EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:35 p.m.6 views

CVE-2021-43963

An issue was discovered in Couchbase Sync Gateway 2.7.0 through 2.8.2. The bucket credentials used to read and write data in Couchbase Server were insecurely being stored in the metadata within sync documents written to the bucket. Users with read access could use these credentials to obtain writ...

8.1CVSS6.3AI score0.00501EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/05/21 12:46 a.m.3 views

SUSE CVE-2025-37953

In the Linux kernel, the following vulnerability has been resolved: schhtb: make htbdeactivate idempotent Alan reported a NULL pointer dereference in htbnextrbnode after we made htbqlennotify idempotent. It turns out in the following case it introduced some regression: htbdequeuetree: |-...

5.5CVSS6.4AI score0.00152EPSS
Exploits0References25
Rows per page
Query Builder