Lucene search
+L

272 matches found

euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-24451

Malicious code in bioql PyPI...

7.2CVSS6.7AI score0.0024EPSS
Exploits0References1
cve
cve
added 2025/09/17 8:51 p.m.19 views

CVE-2025-7977

The CVE-2025-7977 issue affects Ashlar-Vellum Cobalt LI parsing. It is described as an Out-Of-Bounds Read in LI file parsing that can lead to Remote Code Execution. The flaw arises from insufficient validation of user-supplied data during LI file parsing, causing a read before the start of an all...

7.8CVSS7.2AI score0.00203EPSS
Exploits0References1Affected Software1
mscve
mscve
added 2025/09/04 7:51 a.m.4 views

hwmon: (corsair-cpro) Validate the size of the received input buffer

...

7.8CVSS6.8AI score0.00153EPSS
Exploits0
susecve
susecve
added 2025/08/22 11:28 p.m.4 views

SUSE CVE-2025-38667

In the Linux kernel, the following vulnerability has been resolved: iio: fix potential out-of-bound write The buffer is set to 20 characters. If a caller write more characters, count is truncated to the max available space in "simplewritetobuffer". To protect from OoB access, check that the input...

7.8CVSS6.7AI score0.00133EPSS
Exploits0References3
nvd
nvd
added 2025/08/16 2:15 p.m.10 views

CVE-2023-4130

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix wrong next length validation of ea buffer in smb2setea There are multiple smb2eainfo buffers in FILEFULLEAINFORMATION request from client. ksmbd find next smb2eainfo using -NextEntryOffset of current smb2eainfo. ksmbd...

5.5CVSS0.00224EPSS
Exploits1References4
osv
osv
added 2025/08/16 2:15 p.m.5 views

UBUNTU-CVE-2023-4130

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix wrong next length validation of ea buffer in smb2setea There are multiple smb2eainfo buffers in FILEFULLEAINFORMATION request from client. ksmbd find next smb2eainfo using -NextEntryOffset of current smb2eainfo. ksmbd...

5.5CVSS5.8AI score0.00224EPSS
Exploits1References7
osv
osv
added 2025/07/28 12:15 p.m.5 views

UBUNTU-CVE-2025-38494

In the Linux kernel, the following vulnerability has been resolved: HID: core: do not bypass hidhwrawrequest hidhwrawrequest is actually useful to ensure the provided buffer and length are valid. Directly calling in the low level transport driver function bypassed those checks and allowed invalid...

7.8CVSS6.4AI score0.002EPSS
Exploits0References39
debiancve
debiancve
added 2025/07/28 11:22 a.m.3 views

CVE-2025-38494

In the Linux kernel, the following vulnerability has been resolved: HID: core: do not bypass hidhwrawrequest hidhwrawrequest is actually useful to ensure the provided buffer and length are valid. Directly calling in the low level transport driver function bypassed those checks and allowed invalid...

7.8CVSS5.9AI score0.002EPSS
Exploits0
nvd
nvd
added 2025/07/25 2:15 p.m.6 views

CVE-2025-38413

In the Linux kernel, the following vulnerability has been resolved: virtio-net: xsk: rx: fix the frame's length check When calling buftoxdp, the len argument is the frame data's length without virtio header's length vi-hdrlen. We check that len with xskpoolgetrxframesize + vi-hdrlen to ensure the...

5.5CVSS0.00154EPSS
Exploits0References3
redhatcve
redhatcve
added 2025/07/23 9:32 p.m.10 views

CVE-2025-7275

IrfanView CADImage Plugin CGM File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the...

7.8CVSS7.9AI score0.0022EPSS
Exploits0References1
osv
osv
added 2025/07/21 8:15 p.m.5 views

CVE-2025-7233

IrfanView CADImage Plugin DWG File Parsing Out-Of-Bounds Read Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in th...

5.5CVSS4.7AI score0.00209EPSS
Exploits0References1
osv
osv
added 2025/07/09 11:15 a.m.8 views

AZL-64859 CVE-2025-38249 affecting package kernel for versions less than 6.6.96.1-1

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fix out-of-bounds read in sndusbgetaudioformatuac3 In sndusbgetaudioformatuac3, the length value returned from sndusbctlmsg is used directly for memory allocation without validation. This length is controlled by...

7.1CVSS6.5AI score0.00153EPSS
Exploits0References1
zdi
zdi
added 2025/07/08 12:0 a.m.5 views

IrfanView CADImage Plugin DXF File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IrfanView CADImage Plugin. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS6.6AI score0.00209EPSS
Exploits0
nvd
nvd
added 2025/07/04 2:15 p.m.4 views

CVE-2025-38196

In the Linux kernel, the following vulnerability has been resolved: iouring/rsrc: validate buffer count with offset for cloning syzbot reports that it can trigger a WARNON for kmalloc attempt that's too big: WARNING: CPU: 0 PID: 6488 at mm/slub.c:5024 kvmallocnodenoprof+0x520/0x640 mm/slub.c:5024...

5.5CVSS0.00129EPSS
Exploits0References2
cve
cve
added 2025/07/04 1:37 p.m.35 views

CVE-2025-38196

CVE-2025-38196 affects the Linux kernel io_uring resource (io_uring/rsrc) cloning path. The bug arises when registering clone buffers where the sum of offset and count exceeds the available range, causing an allocation via kmalloc to be too large and potentially triggering a WARN_ON in kmalloc (m...

5.5CVSS6.6AI score0.00129EPSS
Exploits0References2Affected Software1
ptsecurity
ptsecurity
added 2025/06/19 12:0 a.m.5 views

PT-2025-33595

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains an issue in the hwmon component, specifically within the corsair-cpro driver. The vulnerability involves insufficient validation of the size of received input...

7.8CVSS7.1AI score0.00153EPSS
Exploits0
redhatcve
redhatcve
added 2025/05/23 3:57 a.m.8 views

CVE-2023-52710

Huawei Matebook D16Model: CREM-WXX9, BIOS: v2.26, As the communication buffer size hasn’t been properly validated to be of the expected size, it can partially overlap with the beginning SMRAM.This can be leveraged by a malicious OS attacker to corrupt data structures stored at the beginning of...

7.8CVSS7.3AI score0.00129EPSS
Exploits0
redhatcve
redhatcve
added 2025/05/22 11:29 p.m.6 views

CVE-2022-1108

A potential vulnerability due to improper buffer validation in the SMI handler LenovoFlashDeviceInterface in Thinkpad X1 Fold Gen 1 could be exploited by an attacker with local access and elevated privileges to execute arbitrary code...

7.2CVSS7.2AI score0.0024EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/22 9:7 p.m.9 views

CVE-2021-33625

An issue was discovered in Kernel 5.x in Insyde InsydeH2O, affecting HddPassword. Software SMI services that use the Communicate function of the EFISMMCOMMUNICATIONPROTOCOL do not check whether the address of the buffer is valid, which allows use of SMRAM, MMIO, or OS kernel addresses...

7.5CVSS7AI score0.00314EPSS
Exploits0
redhatcve
redhatcve
added 2025/05/22 6:56 p.m.9 views

CVE-2021-45971

An issue was discovered in SdHostDriver in Insyde InsydeH2O with kernel 5.1 before 05.16.25, 5.2 before 05.26.25, 5.3 before 05.35.25, 5.4 before 05.43.25, and 5.5 before 05.51.25. A vulnerability exists in the SMM System Management Mode branch that registers a SWSMI handler that does not...

8.2CVSS6.9AI score0.00279EPSS
Exploits0
Rows per page
Query Builder