Lucene search
K

7652 matches found

OSV
OSV
added 2025/02/26 1:55 a.m.11 views

CVE-2022-49130 ath11k: mhi: use mhi_sync_power_up()

In the Linux kernel, the following vulnerability has been resolved: ath11k: mhi: use mhisyncpowerup If amss.bin was missing ath11k would crash during 'rmmod ath11kpci'. The reason for that was that we were using mhiasyncpowerup which does not check any errors. But mhisyncpowerup on the other hand...

5.5CVSS5.3AI score0.00243EPSS
Exploits0References8
Redos
Redos
added 2025/02/26 12:0 a.m.8 views

ROS-20250226-03

Vulnerability of MongoDB database management system is related to incorrect consistency checking in the input data during index processing with PrepareUnique parameter. input data during index processing with PrepareUnique parameter. Exploitation of the vulnerability could allow an attacker actin...

6.5CVSS6.6AI score0.0057EPSS
Exploits0
CNNVD
CNNVD
added 2025/02/26 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a lack of bounds checking in vmaccess...

7.8CVSS5.5AI score0.00269EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/02/26 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from insufficient integrity checking of inlinedots inode in f2fs...

5.5CVSS5.2AI score0.0024EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/02/24 12:0 a.m.7 views

Moodle 安全漏洞

Moodle is Moodle open source set of free e-learning software platform, also known as course management system, learning management system or virtual learning environment. A vulnerability exists in Moodle for privilege issues. The vulnerability stems from insufficient permission checking that allo...

5.3CVSS6.7AI score0.00275EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/02/21 12:0 a.m.3 views

Vyper 安全漏洞

Vyper is a Pythonic smart contract language for EVM open sourced by vyperlang. A security vulnerability exists in Vyper that stems from improper boundary checking for dynamic array operations...

9.1CVSS8.8AI score0.00527EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/02/14 12:0 a.m.7 views

PT-2025-6825

Name of the Vulnerable Software and Affected Versions Keylime versions 7.8.0 through 7.12.0 Description The issue arises from the Keylime registrar implementing stricter type checking in version 7.12.0, causing it to reject data formats previously stored in the database by versions 7.8.0 and late...

4.3CVSS5.8AI score0.00365EPSS
Exploits0References23
RedhatCVE
RedhatCVE
added 2025/02/12 4:29 a.m.18 views

CVE-2025-21691

In the Linux kernel, the following vulnerability has been resolved: cachestat: fix page cache statistics permission checking When the 'cachestat' system call was added in commit cf264e1329fb "cachestat: implement cachestat syscall", it was meant to be a much more convenient and performant version...

7.1CVSS7AI score0.00191EPSS
Exploits0References4
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.4 views

Astra Linux – Vulnerability in WebKit2GTK

A vulnerability related to out-of-bounds reads has been addressed through improved bounds checking. This issue is fixed in Safari 17.6, iOS 16.7.9 and iPadOS 16.7.9, iOS 17.6 and iPadOS 17.6, macOS Sonoma 14.6, tvOS 17.6, visionOS 1.3, and watchOS 10.6. Processing maliciously crafted web content...

6.5CVSS6.7AI score0.00712EPSS
Exploits0References3
NVD
NVD
added 2025/02/11 5:15 a.m.5 views

CVE-2025-1211

Versions of the package hackney before 1.21.0 are vulnerable to Server-side Request Forgery SSRF due to improper parsing of URLs by URI built-in module and hackey. Given the URL http://[email protected]/, the URI function will parse and see the host as 127.0.0.1 which is correct, and hackney...

6.5CVSS0.0048EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/02/11 5:0 a.m.7 views

CVE-2025-1211

Versions of the package hackney before 1.21.0 are vulnerable to Server-side Request Forgery SSRF due to improper parsing of URLs by URI built-in module and hackey. Given the URL http://[email protected]/, the URI function will parse and see the host as 127.0.0.1 which is correct, and hackney...

6.5CVSS6.5AI score0.0048EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/02/11 5:0 a.m.14 views

CVE-2025-1211

Versions of the package hackney before 1.21.0 are vulnerable to Server-side Request Forgery SSRF due to improper parsing of URLs by URI built-in module and hackey. Given the URL http://[email protected]/, the URI function will parse and see the host as 127.0.0.1 which is correct, and hackney...

6.5CVSS0.0048EPSS
Exploits0References4
NVD
NVD
added 2025/02/10 4:15 p.m.11 views

CVE-2025-21691

In the Linux kernel, the following vulnerability has been resolved: cachestat: fix page cache statistics permission checking When the 'cachestat' system call was added in commit cf264e1329fb "cachestat: implement cachestat syscall", it was meant to be a much more convenient and performant version...

5.5CVSS0.00191EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/02/10 3:58 p.m.20 views

CVE-2025-21691 cachestat: fix page cache statistics permission checking

In the Linux kernel, the following vulnerability has been resolved: cachestat: fix page cache statistics permission checking When the 'cachestat' system call was added in commit cf264e1329fb "cachestat: implement cachestat syscall", it was meant to be a much more convenient and performant version...

0.00191EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2025/02/10 3:58 p.m.13 views

CVE-2025-21691

In the Linux kernel, the following vulnerability has been resolved: cachestat: fix page cache statistics permission checking When the 'cachestat' system call was added in commit cf264e1329fb "cachestat: implement cachestat syscall", it was meant to be a much more convenient and performant version...

5.5CVSS5.6AI score0.00191EPSS
Exploits0
OSV
OSV
added 2025/02/10 3:58 p.m.11 views

CVE-2025-21691 cachestat: fix page cache statistics permission checking

In the Linux kernel, the following vulnerability has been resolved: cachestat: fix page cache statistics permission checking When the 'cachestat' system call was added in commit cf264e1329fb "cachestat: implement cachestat syscall", it was meant to be a much more convenient and performant version...

5.5CVSS6.5AI score0.00191EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/02/05 7:29 a.m.7 views

CVE-2024-23480

A fallback mechanism in code sign checking on macOS may allow arbitrary code execution. This issue affects Zscaler Client Connector on MacOS prior to 4.2...

7.5CVSS7.5AI score0.00301EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 7:6 a.m.7 views

CVE-2024-32017

RIOT is a real-time multi-threading operating system that supports a range of devices that are typically 8-bit, 16-bit and 32-bit microcontrollers. The size check in the gcoapdnsserverproxyget function contains a small typo that may lead to a buffer overflow in the subsequent strcpy. In detail, t...

9.8CVSS8.3AI score0.01476EPSS
Exploits2References1
RedhatCVE
RedhatCVE
added 2025/02/05 7:1 a.m.5 views

CVE-2024-32504

An issue was discovered in Samsung Mobile Processor and Wearable Processor Exynos 850, Exynos 1080, Exynos 2100, Exynos 1280, Exynos 1380, Exynos 1330, Exynos W920, Exynos W930. The mobile processor lacks proper length checking, which can result in an OOB Out-of-Bounds Write vulnerability...

8.4CVSS7AI score0.00167EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 3:8 a.m.8 views

CVE-2024-6302

Lack of privilege checking when processing a redaction in Conduit versions v0.6.0 and lower, allowing a local user to redact any message from users on the same server, given that they are able to send redaction events...

8.1CVSS6.8AI score0.00284EPSS
Exploits0References1
Rows per page
Query Builder