Lucene search
K

2555 matches found

NVD
NVD
added 2026/01/05 10:15 a.m.7 views

CVE-2025-68758

In the Linux kernel, the following vulnerability has been resolved: backlight: led-bl: Add devlink to supplier LEDs LED Backlight is a consumer of one or multiple LED class devices, but devlink is currently unable to create correct supplier-producer links when the supplier is a class device. It...

0.00165EPSS
Exploits0References8
OSV
OSV
added 2026/01/05 10:15 a.m.4 views

UBUNTU-CVE-2025-68758

In the Linux kernel, the following vulnerability has been resolved: backlight: led-bl: Add devlink to supplier LEDs LED Backlight is a consumer of one or multiple LED class devices, but devlink is currently unable to create correct supplier-producer links when the supplier is a class device. It...

5.7AI score0.00165EPSS
Exploits0References37
OSV
OSV
added 2026/01/05 9:32 a.m.2 views

CVE-2025-68758 backlight: led-bl: Add devlink to supplier LEDs

In the Linux kernel, the following vulnerability has been resolved: backlight: led-bl: Add devlink to supplier LEDs LED Backlight is a consumer of one or multiple LED class devices, but devlink is currently unable to create correct supplier-producer links when the supplier is a class device. It...

6AI score0.00165EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2026/01/05 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-68758

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - backlight: led-bl: Add devlink to supplier LEDs LED Backlight is a consumer of one or multiple LED class devices, but devlink is currently unable to create...

6.2AI score0.00165EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.6 views

PT-2026-21915

Name of the Vulnerable Software and Affected Versions Wireshark versions 4.4.0 through 4.4.13 Wireshark versions 4.6.0 through 4.6.3 Description A flaw exists in the RF4CE Profile protocol dissector within Wireshark. This issue can lead to a denial of service. Recommendations Update Wireshark to ...

7.5CVSS5.2AI score0.00184EPSS
Exploits3References79
CVE
CVE
added 2025/12/30 4:10 p.m.9 views

CVE-2025-66080

CVE-2025-66080 affects Cookie Banner for GDPR / CCPA – WPLP Cookie Consent (WordPress plugin) and is a Missing Authorization vulnerability. Wordfence reports affected versions up to 4.0.3 with Patched status in later updates; exploitation would involve access-control bypass via misconfigured secu...

5.3CVSS5.9AI score0.00235EPSS
Exploits0References1
CVE
CVE
added 2025/12/29 4:1 p.m.18 views

CVE-2025-69211

CVE-2025-69211 affects Nest.js applications using the Fastify platform integration before version 11.1.11. The issue is a bypass in the Fastify URL encoding middleware that can skip security checks implemented via NestMiddleware (via MiddlewareConsumer) or app.use(), particularly when middleware ...

9.1CVSS6.5AI score0.00355EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/12/29 12:0 a.m.6 views

PT-2025-53755

Name of the Vulnerable Software and Affected Versions Nest versions prior to 11.1.11 Description Nest is a framework used for building scalable Node.js server-side applications. A flaw exists where the Fastify URL encoding middleware can be bypassed. This impacts applications utilizing...

9.1CVSS6.4AI score0.00355EPSS
Exploits1References6
SUSE CVE
SUSE CVE
added 2025/12/17 12:24 a.m.5 views

SUSE CVE-2025-68232

In the Linux kernel, the following vulnerability has been resolved: veth: more robust handing of race to avoid txq getting stuck Commit dc82a33297fc "veth: apply qdisc backpressure on full ptrring to reduce TX drops" introduced a race condition that can lead to a permanently stalled TXQ. This was...

6.3AI score0.00155EPSS
Exploits0References3
OSV
OSV
added 2025/12/16 2:15 p.m.3 views

UBUNTU-CVE-2025-68232

In the Linux kernel, the following vulnerability has been resolved: veth: more robust handing of race to avoid txq getting stuck Commit dc82a33297fc "veth: apply qdisc backpressure on full ptrring to reduce TX drops" introduced a race condition that can lead to a permanently stalled TXQ. This was...

5.7AI score0.00155EPSS
Exploits0References12
Cvelist
Cvelist
added 2025/12/16 2:4 p.m.26 views

CVE-2025-68232 veth: more robust handing of race to avoid txq getting stuck

In the Linux kernel, the following vulnerability has been resolved: veth: more robust handing of race to avoid txq getting stuck Commit dc82a33297fc "veth: apply qdisc backpressure on full ptrring to reduce TX drops" introduced a race condition that can lead to a permanently stalled TXQ. This was...

0.00155EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/12/16 12:0 a.m.5 views

PT-2025-51421

Name of the Vulnerable Software and Affected Versions WP Legal Pages WP Cookie Notice for GDPR, CCPA & ePrivacy Consent versions through 4.0.7 Description An authorization issue exists in WP Legal Pages WP Cookie Notice for GDPR, CCPA & ePrivacy Consent. The issue involves incorrectly configured...

5.3CVSS6.4AI score0.00214EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/12/16 12:0 a.m.6 views

PT-2025-51645

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition within the virtual ethernet veth module can lead to a permanently stalled transmit queue TXQ. This issue stemmed from a flawed implementation in commit dc82a33297fc, whi...

9.8CVSS6.4AI score0.00378EPSS
Exploits7References211
CISA
CISA
added 2025/12/11 12:0 p.m.29 views

2025 CWE Top 25 Most Dangerous Software Weaknesses

The Cybersecurity and Infrastructure Security Agency CISA, in collaboration with the Homeland Security Systems Engineering and Development Institute HSSEDI, operated by the MITRE Corporation, has released the 2025 Common Weakness Enumeration CWE Top 25 Most Dangerous Software Weaknesseslink is...

7.2AI score
Exploits0References4
Malwarebytes
Malwarebytes
added 2025/12/04 5:55 p.m.6 views

How scammers use fake insurance texts to steal your identity

Sometimes it’s hard to understand how some scams work or why criminals would even try them on you. In this case it may have been a matter of timing. One of my co-workers received this one: “Insurance estimates for certain age ranges: 20-30 200 – 300/mo 31-40 270 – 450/mo 41-64 350 – 500/mo Please...

6.7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2025/12/02 4:22 p.m.7 views

Air fryer app caught asking for voice data (re-air) (Lock and Code S06E24)

This week on the Lock and Code podcast … It's often said online that if a product is free, you're the product, but what if that bargain was no longer true? What if, depending on the device you paid hard-earned money for, you still became a product yourself, to be measured, anonymized, collated,...

6.9AI score
Exploits0
Malwarebytes
Malwarebytes
added 2025/11/13 12:51 p.m.5 views

Are you paying more than other people? NY cracks down on surveillance pricing

When you search for a product online, you might think you're getting the same price as everyone else. Think again. Your price might be different based on everything from your location to what you've looked at online. Companies often use algorithms to set their prices that rely heavily on customer...

6.2AI score
Exploits0
Vulnrichment
Vulnrichment
added 2025/10/27 1:39 p.m.3 views

CVE-2025-50055

Cross-site scripting XSS vulnerability in the SAML Authentication module in OpenVPN Access Server version 2.14.0 through 2.14.3 allows configured remote SAML Assertion Consumer Service ACS endpoint servers to inject arbitrary web script or HTML via the RelayState parameter...

5.6AI score0.00204EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/27 1:39 p.m.10 views

CVE-2025-50055

Cross-site scripting XSS vulnerability in the SAML Authentication module in OpenVPN Access Server version 2.14.0 through 2.14.3 allows configured remote SAML Assertion Consumer Service ACS endpoint servers to inject arbitrary web script or HTML via the RelayState parameter...

0.00204EPSS
Exploits0References1
CVE
CVE
added 2025/10/27 1:39 p.m.37 views

CVE-2025-50055

OpenVPN Access Server 2.14.0–2.14.3 exposes an XSS vulnerability in the SAML Authentication module via the RelayState parameter. The issue allows an attacker-controlled RelayState to inject arbitrary script/HTML, potentially leading to client-side impact. The CVE description in official records n...

6.4CVSS5.6AI score0.00204EPSS
Exploits0References1
Rows per page
Query Builder