Lucene search
K

28 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/11 12:0 a.m.9 views

Ubuntu 20.04 LTS : Linux kernel (FIPS) vulnerabilities (USN-7585-3)

The remote Ubuntu 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7585-3 advisory. It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls...

7.8CVSS5.8AI score0.00254EPSS
Exploits0References33
Tenable Nessus
Tenable Nessus
added 2026/04/30 12:0 a.m.6 views

Amazon Linux 2023 : cifs-utils, cifs-utils-devel, cifs-utils-info (ALAS2023-2026-1597)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1597 advisory. A flaw was found in cifs-utils. When trying to obtain Kerberos credentials, the cifs.upcall program from the cifs-utils package makes an upcall to the wrong namespace in containerized environments. Thi...

5.9CVSS5.8AI score0.00149EPSS
Exploits0References4
OSV
OSV
added 2025/07/17 4:36 p.m.15 views

USN-7653-1 linux-hwe-6.8 vulnerabilities

It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. CVE-2025-2312 Several security issues were discovered in the Linux kernel. An...

7.8CVSS6.7AI score0.00596EPSS
Exploits4References159
OSV
OSV
added 2025/07/16 5:23 p.m.12 views

USN-7585-7 linux-raspi, linux-raspi-5.4 vulnerabilities

It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. CVE-2025-2312 Several security issues were discovered in the Linux kernel. An...

7.8CVSS6.8AI score0.00254EPSS
Exploits0References33
OSV
OSV
added 2025/07/08 10:30 p.m.10 views

USN-7628-1 linux-azure, linux-azure-6.11 vulnerabilities

It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. CVE-2025-2312 Several security issues were discovered in the Linux kernel. An...

8.8CVSS6.5AI score0.28222EPSS
Exploits3References184
OSV
OSV
added 2025/07/04 2:24 p.m.9 views

USN-7605-2 linux-lowlatency, linux-lowlatency-hwe-6.11 vulnerabilities

It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. CVE-2025-2312 Several security issues were discovered in the Linux kernel. An...

8.8CVSS6.7AI score0.28222EPSS
Exploits0References178
OSV
OSV
added 2025/06/30 5:22 p.m.8 views

USN-7605-1 linux, linux-aws, linux-gcp, linux-gcp-6.11, linux-hwe-6.11, linux-oracle, linux-raspi, linux-realtime vulnerabilities

It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. CVE-2025-2312 Several security issues were discovered in the Linux kernel. An...

8.8CVSS6.5AI score0.28222EPSS
Exploits0References178
OSV
OSV
added 2025/06/26 12:34 p.m.13 views

USN-7602-1 linux-xilinx-zynqmp vulnerabilities

Michael Randrianantenaina discovered that the Bluetooth driver in the Linux Kernel contained an improper access control vulnerability. A nearby attacker could use this to connect a rougue device and possibly execute arbitrary code. CVE-2024-8805 It was discovered that the CIFS network file system...

8.8CVSS7AI score0.13036EPSS
Exploits3References197
OSV
OSV
added 2025/06/25 3:5 p.m.9 views

USN-7585-3 linux-azure-fips, linux-fips vulnerabilities

It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. CVE-2025-2312 Several security issues were discovered in the Linux kernel. An...

7.8CVSS6.8AI score0.00254EPSS
Exploits0References33
OpenVAS
OpenVAS
added 2025/06/12 12:0 a.m.4 views

Mageia: Security Advisory (MGASA-2025-0176)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS7.5AI score0.00149EPSS
Exploits0References4
OSV
OSV
added 2025/06/05 4:26 p.m.12 views

MGASA-2025-0176 Updated cifs-utils packages fix security vulnerability

cifs.upcall makes an upcall to the wrong namespace in containerized environments. CVE-2025-2312...

5.9CVSS7.8AI score0.00149EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2025/06/04 12:0 a.m.6 views

SUSE: Security Advisory (SUSE-SU-2025:1381-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS10AI score0.00149EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2025/05/28 12:0 a.m.3 views

Ubuntu: Security Advisory (USN-7536-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS7.1AI score0.00149EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2025/04/30 12:0 a.m.11 views

openSUSE Security Advisory (SUSE-SU-2025:1381-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS10AI score0.00149EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/04/29 12:0 a.m.15 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : cifs-utils (SUSE-SU-2025:1381-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:1381-1 advisory. - CVE-2025-2312: Fixed cifs.upcall making an upcall to the wrong namespace in containerized environments...

5.9CVSS7.1AI score0.00149EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/04/28 7:37 a.m.0 views

Security update for cifs-utils

This update for cifs-utils fixes the following issues: CVE-2025-2312: Fixed cifs.upcall making an upcall to the wrong namespace in containerized environments while trying to get Kerberos credentials bsc1239680 Patch Instructions: To install this SUSE update use the SUSE recommended installation...

6.5CVSS9.5AI score0.00149EPSS
Exploits0References4
OSV
OSV
added 2025/04/28 7:37 a.m.2 views

SUSE-SU-2025:1381-1 Security update for cifs-utils

This update for cifs-utils fixes the following issues: - CVE-2025-2312: Fixed cifs.upcall making an upcall to the wrong namespace in containerized environments while trying to get Kerberos credentials bsc1239680...

5.9CVSS6.7AI score0.00149EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/04/10 12:0 a.m.10 views

Azure Linux 3.0 Security Update: cifs-utils (CVE-2025-2312)

The version of cifs-utils installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-2312 advisory. - A flaw was found in cifs-utils. When trying to obtain Kerberos credentials, the cifs.upcall program from...

5.9CVSS6.9AI score0.00149EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2025/04/09 3:9 p.m.12 views

CVE-2025-2312 affecting package cifs-utils for versions less than 7.3-1

CVE-2025-2312 affecting package cifs-utils for versions less than 7.3-1. An upgraded version of the package is available that resolves this issue...

5.9CVSS5.9AI score0.00149EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/04/09 12:0 a.m.11 views

CBL Mariner 2.0 Security Update: cifs-utils (CVE-2025-2312)

The version of cifs-utils installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-2312 advisory. - A flaw was found in cifs-utils. When trying to obtain Kerberos credentials, the cifs.upcall program from...

5.9CVSS6.9AI score0.00149EPSS
Exploits0References2
Rows per page
Query Builder