CVE-2025-71272

A flaw was found in the Linux kernel, specifically within the 'most: core' module. The mostregisterinterface function does not correctly release allocated resources when it encounters an early failure. This resource leak can be triggered by a local attacker, potentially leading to memory exhausti...

CVE-2026-31486

A flaw was found in the Linux kernel's hwmon subsystem, specifically within the pmbus/core module. The regulator operations, which manage power management bus PMBus registers and shared data, were not adequately protected by a mutex a mechanism to prevent simultaneous access to shared resources...

ROS-20260414-73-0044

A vulnerability in the smclgrterminate function of the net/smc/smccore.c module of the Linux kernel's implementation of the SMC family of socket protocols is related to the occurrence of mutual blocking. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

baserCMS 操作系统命令注入漏洞

BaserCMS is a corporate-level content management system CMS developed by the BaserCMS team. Versions of BaserCMS prior to 5.2.3 had a vulnerability related to operating system command injection. This vulnerability originated from the core module of the installation process. Attackers could...

UBUNTU-CVE-2026-21619

Uncontrolled Resource Consumption, Deserialization of Untrusted Data vulnerability in hexpm hexcore hexapi modules, hexpm hex mixhexapi modules, erlang rebar3 r3hexapi modules allows Object Injection, Excessive Allocation. This vulnerability is associated with program files src/hexapi.erl,...

GO-2026-4504 emp3r0r Affected by Concurrent Map Access DoS (panic/crash) in github.com/jm33-m0/emp3r0r/core

emp3r0r Affected by Concurrent Map Access DoS panic/crash in github.com/jm33-m0/emp3r0r/core...

Race Condition

Overview Affected versions of this package are vulnerable to Race Condition in which maps from multiple components may be accessed without synchronization. When under heavy concurrent activity, either spontaneous or attacker-generated, the process can be caused to panic and crash with fatal error...

PT-2026-6649

Name of the Vulnerable Software and Affected Versions enclave-vm versions prior to 2.10.1 @enclave-vm/core versions prior to 2.10.1 Description The security measures within enclave-vm are inadequate. The Abstract Syntax Tree AST sanitization can be circumvented using dynamic property accesses. Th...

ROS-20260112-7354

A vulnerability in the PROGNAME function of the kernel/bpf/core.c module of the Linux kernel is related to the use of an uninitialized resource. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

CVE-2023-54184 scsi: target: iscsit: Free cmds before session free

In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsit: Free cmds before session free Commands from recovery entries are freed after session has been closed. That leads to use-after-free at command free or NPE with such call trace: Time2Retain timer expired for...

GHSA-P3VC-G9F9-MGW4 Melis Platform CMS Unauthenticated Admin Account Creation

Vulnerability in the melis-core module of Melis Technology's Melis Platform, which, if exploited, allows an unauthenticated attacker to create an administrator account via a request to '/melis/MelisCore/ToolUser/addNewUser'...

EUVD-2007-1808

Malware in sbrugna...

EUVD-2018-14893

Malware in sbrugna...

EUVD-2018-3943

Malware in sbrugna...

EUVD-2018-6813

Malware in sbrugna...

EUVD-2022-6088

Malicious code in bioql PyPI...

MAL-2025-15105 Malicious code in authub-core-module (npm)

The package authub-core-module was found to contain malicious code...

Malicious code in authub-core-module (npm)

The package authub-core-module was found to contain malicious code...

Bouncy Castle for Java on All (API modules) allows Excessive Allocation

A resource allocation vulnerability exists in Bouncy Castle for Java by Legion of the Bouncy Castle Inc. that affects all API modules. The vulnerability allows attackers to cause excessive memory allocation through unbounded resource consumption, potentially leading to denial of service. The issu...

SUSE CVE-2025-38399

In the Linux kernel, the following vulnerability has been resolved: scsi: target: Fix NULL pointer dereference in corescsi3decodespeciport The function corescsi3decodespeciport, in its error code path, unconditionally calls corescsi3lunaclundependitem passing the destsedeve pointer, which may be...