Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990606)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990606 advisory. In the Linux kernel, the following vulnerability has been resolved: phy: qcom-qmp: fix reset-controller leak on probe errors Make sure to release the lane reset...

PT-2025-45349

Name of the Vulnerable Software and Affected Versions Dell Integrated Dell Remote Access Controller 9, 14G versions prior to 7.00.00.181 Dell Integrated Dell Remote Access Controller 15G and 16G versions 6.10.80.00 through 7.20.10.50 Dell Integrated Dell Remote Access Controller 10, 17G versions...

Advantech WebAccess/VPN 安全漏洞

Advantech WebAccess/VPN is a virtual private network feature integrated in Advantech WebAccess/SCADA software, designed to provide a secure and reliable network connectivity solution for industrial automation and remote monitoring systems. Advantech WebAccess/VPN suffers from a cross-site scripti...

PT-2025-45372

Name of the Vulnerable Software and Affected Versions Advantech WebAccess/VPN versions prior to 1.1.5 Description The software contains a SQL injection issue in the NetworksController.addNetworkAction function. An authenticated, low-privileged user can inject SQL code through datatable search...

Advantech WebAccess/VPN 安全漏洞

Advantech WebAccess/VPN is a virtual private network feature integrated in Advantech WebAccess/SCADA software, designed to provide a secure and reliable network connectivity solution for industrial automation and remote monitoring systems. Advantech WebAccess/VPN suffers from a SQL injection...

PT-2025-45513

Name of the Vulnerable Software and Affected Versions KubeVirt versions prior to 1.7.0-beta.0 Description KubeVirt, a virtual machine management add-on for Kubernetes, contains a flaw in the virt-controller. An attacker can disrupt control over a running Virtual Machine Instance VMI by creating a...

Dell iDRAC9和Dell iDRAC10 路径遍历漏洞

The Dell iDRAC9 and Dell iDRAC10 are both products of Dell Inc. of the United States Dell.The Dell iDRAC9 is provides provides comprehensive, embedded management, automation capabilities across the PowerEdge family of servers. The Dell iDRAC10 is an integrated remote access controller. A path...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990523)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990523 advisory. In the Linux kernel, the following vulnerability has been resolved: xhci: Fix command ring pointer corruption while aborting a command The command ring pointer is...

PT-2025-45403

Name of the Vulnerable Software and Affected Versions containerd versions 1.7.28 and below containerd versions 2.0.0-beta.0 through 2.0.6 containerd versions 2.1.0-beta.0 through 2.1.4 containerd versions 2.2.0-beta.0 through 2.2.0-rc.1 Description containerd, an open-source container runtime, is...

CVE-2025-62720

LinkAce is a self-hosted archive to collect website links. Versions 2.3.1 and below allow any authenticated user to export the entire database of links from all users in the system, including private links that should only be accessible to their owners. The HTML and CSV export functions in the...

@kontaa/subgraph (>=1.0.1 <=1.2.3), @kontaa/utils (>=1.2.1 <=1.2.3) +4 more potentially affected by CVE-2025-64430 via parse-server (>=5.6.0 <=6.5.11)

parse-server NPM version =5.6.0, =1.0.1, =1.2.1, =2.4.46, =1.0.0, =1.0.1, =1.0.23 - servable-publishable =1.1.0 Source cves: CVE-2025-64430 Source advisory: OSV:GHSA-X4QJ-2F4Q-R4RX...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989348)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989348 advisory. In the Linux kernel, the following vulnerability has been resolved: net/sched: actskbmod: Skip non-Ethernet packets Currently tcfskbmodact assumes that packets use...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989174)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989174 advisory. In the Linux kernel, the following vulnerability has been resolved: can: dev: cangetechoskb: prevent call to kfreeskb in hard IRQ context If a driver calls...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-988870)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-988870 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/msm/dp: do not complete dpauxcmdfifotx if irq is not for aux transfer There are 3 possible...

Samba WINS hook RCE (CVE-2025-10230)

In the front-end WINS hook handling: NetBIOS names from registration packets are passed to a shell without proper validation or escaping. Unsanitized NetBIOS name data from WINS registration packets are inserted into a shell command and executed by the Samba Active Directory Domain Controller's...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990130)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990130 advisory. In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcicore: cancel all works upon hciunregisterdev syzbot is reporting that calling...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989065)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989065 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: xhci-plat: fix crash when suspend if remote wake enable Crashed at i.mx8qm platform when...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989822)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989822 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Check endpoint is valid before dereferencing it When the host controller is not...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989070)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989070 advisory. In the Linux kernel, the following vulnerability has been resolved: phy: qcom-qmp: fix reset-controller leak on probe errors Make sure to release the lane reset...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989356)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989356 advisory. In the Linux kernel, the following vulnerability has been resolved: nvme: fix a possible use-after-free in controller reset during load Unlike .queuerq, in...