Lucene search
K

219893 matches found

CNNVD
CNNVD
added 2026/05/01 12:0 a.m.10 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from targetcorefile not initializing the kiwritestream field of aiocmd-iocb, which could result in a write comman...

7.5CVSS5.8AI score0.00358EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.10 views

Prosody 安全漏洞

Prosody is an instant messaging server software from Prosody open source. A security vulnerability exists in Prosody versions prior to 0.12.6 and versions prior to 13.0.5 in versions 1.0.0 through 13.0.0, which stems from improper handling of access control in an activation scenario with...

6.5CVSS5.8AI score0.00204EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.6 views

PT-2026-36479

An issue was discovered in Prosody before 0.12.6 and 1.0.0 through 13.0.0 before 13.0.5, when mod proxy65 is enabled. Because mod proxy65 mishandles access control in a paused scenario, relaying of unauthenticated traffic can occur...

6.5CVSS5.8AI score0.00256EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.5 views

PT-2026-36355

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A stack out-of-bounds write exists in the f audio complete function. The issue occurs because the function copies req-length bytes into a 4-byte stack variable using memcpy. Since...

7.8CVSS5.5AI score0.00129EPSS
Exploits0References18
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.8 views

Automotive Grade Linux app-framework-binder 访问控制错误漏洞

Automotive Grade Linux app-framework-binder is an application framework communication component from Automotive Grade Linux, Inc. An Access Control Error vulnerability exists in Automotive Grade Linux app-framework-binder version 19.90.0 and earlier, which stems from a lack of authentication on...

7.8CVSS5.9AI score0.00123EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/01 12:0 a.m.7 views

CVE-2025-52347

An issue in the component DirectIo64.sys of PassMark BurnInTest v11.0 Build 1011, OSForensics v11.1 Build 1007, and PerformanceTest v11.1 Build 1004 allows attackers to access kernel memory and escalate privileges via a crafted IOCTL 0x8011E044 call...

5.8AI score0.00109EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/01 12:0 a.m.6 views

EUVD-2025-209609

An issue in the component DirectIo64.sys of PassMark BurnInTest v11.0 Build 1011, OSForensics v11.1 Build 1007, and PerformanceTest v11.1 Build 1004 allows attackers to access kernel memory and escalate privileges via a crafted IOCTL 0x8011E044 call...

7.8CVSS5.8AI score0.00109EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.10 views

UTT HiPER 1200GW 缓冲区错误漏洞

UTT HiPER 1200GW is a wireless gateway device developed by UTT Corporation. Versions of UTT HiPER 1200GW prior to 2.5.3-170306 contained a buffer error vulnerability. This vulnerability originated from the strcopy function in the file/goform/formRemoteControl, and could lead to a buffer overflow...

9CVSS7.7AI score0.00472EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.10 views

maccms_pro 访问控制错误漏洞

Maccmspro is a content management system developed by Maccmspro’s individual developers. Versions of Maccmspro prior to 2022.1.3 had an access control vulnerability. This vulnerability stemmed from an unlimited upload issue in the install function of the file/admi.php/admin/addon/add.html within...

5.8CVSS5.8AI score0.00231EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.9 views

PT-2026-36339

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the SMB client where the system fails to fully validate the Discretionary Access Control List DACL before rewriting it in cifsacl. The functions build sec desc and id...

8.8CVSS6.1AI score0.00259EPSS
Exploits0References131
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.9 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. The Linux kernel suffers from an out-of-bounds read vulnerability. The vulnerability stems from insufficient ACE size validation in the smbcheckpermdacl function of ksmbd, whic...

8.3CVSS5.8AI score0.00315EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from incomplete DACL validation in the functions buildsecdesc and idmodetocifsacl. This vulnerability...

8.8CVSS5.8AI score0.00259EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.17 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the fact that the function smbinheritdacl does not verify the numaces value. This can lead to...

8.8CVSS5.8AI score0.00369EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the possibility of overflowing the u16 DACL size when performing operations on setposixaclentriesdacl a...

5.5CVSS5.8AI score0.00117EPSS
Exploits0References1
Oracle linux
Oracle linux
added 2026/05/01 12:0 a.m.8 views

Unbreakable Enterprise kernel security update: Copy Fail

5.15.0-319.201.4.4 - crypto: algifaead - Fix minimum RX size check for decryption Herbert Xu Orabug: 39291961 - crypto: afalg - Fix page reassignment overflow in afalgpulltsgl Herbert Xu Orabug: 39291961 - crypto: authencesn - Fix src offset when decrypting in-place Herbert Xu Orabug: 39291961 -...

7.8CVSS6.1AI score0.96775EPSS
Exploits228
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.5 views

PT-2026-36519

Name of the Vulnerable Software and Affected Versions agl-service-can-low-level affected versions not specified Description A stack buffer overflow exists in the uds-c library. The send diagnostic request function in uds.c allocates a 6-byte stack buffer but copies up to 7 bytes via memcpy at an...

7.5CVSS6.3AI score0.00314EPSS
Exploits0References5
CVE
CVE
added 2026/05/01 12:0 a.m.13 views

CVE-2025-52347

The CVE-2025-52347 entry concerns DirectIo64.sys in PassMark BurnInTest v11.0 Build 1011, OSForensics v11.1 Build 1007, and PerformanceTest v11.1 Build 1004. The underlying issue is a vulnerability in the DirectIo64.sys component that allows attackers to access kernel memory and escalate privileg...

7.8CVSS5.8AI score0.00109EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.11 views

PassMark多款产品 输入验证错误漏洞

PassMark Burnintest and others are products of PassMark Australia.PassMark Burnintest is a software that can be used to test the reliability and load testing of computers.PassMark OSForensics is a digital forensics analysis tool.PassMark PerformanceTest is a computer performance testing tool. An...

7.8CVSS5.8AI score0.00109EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2026/05/01 12:0 a.m.106 views

📄 cPanel / WHM Authentication Bypass / CRLF Injection

A critical authentication bypass vulnerability exists in the cPanel/WHM cpsrvd daemon due to improper neutralization of line delimiters CRLF in the whostmgrsession cookie and Authorization headers. An unauthenticated remote attacker can leverage this flaw to inject malicious session parameters...

9.8CVSS6.1AI score0.981EPSS
Exploits64
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.9 views

PT-2026-36532

Name of the Vulnerable Software and Affected Versions BurnInTest version 11.0 Build 1011 OSForensics version 11.1 Build 1007 PerformanceTest version 11.1 Build 1004 Description A flaw in the DirectIo64.sys component allows attackers to access kernel memory and escalate privileges. This is achieve...

7.8CVSS5.8AI score0.00109EPSS
Exploits0References8
Rows per page
Query Builder