Lucene search
+L

280 matches found

Vulnrichment
Vulnrichment
added 2026/03/10 10:49 p.m.2 views

CVE-2025-20068

Improper input validation in the UEFI ImcErrorHandler module for some IntelR reference platforms may allow an escalation of privilege. System software adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via...

7.1CVSS5.7AI score0.00101EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/10 10:49 p.m.3 views

CVE-2025-20068

Improper input validation in the UEFI ImcErrorHandler module for some IntelR reference platforms may allow an escalation of privilege. System software adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may potentially occur via...

7.1CVSS5.7AI score0.00101EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/03/07 12:25 a.m.7 views

SUSE CVE-2026-26018

CoreDNS is a DNS server that chains plugins. Prior to version 1.14.2, a denial of service vulnerability exists in CoreDNS's loop detection plugin that allows an attacker to crash the DNS server by sending specially crafted DNS queries. The vulnerability stems from the use of a predictable...

7.5CVSS5.7AI score0.01093EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2026/03/06 10:8 p.m.12 views

CoreDNS Loop Detection Denial of Service Vulnerability

Executive Summary A Denial of Service vulnerability exists in CoreDNS's loop detection plugin that allows an attacker to crash the DNS server by sending specially crafted DNS queries. The vulnerability stems from the use of a predictable pseudo-random number generator PRNG for generating a secret...

7.5CVSS5.7AI score0.01093EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/06 3:35 p.m.2 views

CVE-2026-26018 CoreDNS Loop Detection Denial of Service Vulnerability

CoreDNS is a DNS server that chains plugins. Prior to version 1.14.2, a denial of service vulnerability exists in CoreDNS's loop detection plugin that allows an attacker to crash the DNS server by sending specially crafted DNS queries. The vulnerability stems from the use of a predictable...

7.5CVSS5.7AI score0.01093EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/03/06 12:0 a.m.9 views

PT-2026-23722

Name of the Vulnerable Software and Affected Versions CoreDNS versions prior to 1.14.2 Description CoreDNS is a DNS server that utilizes chained plugins. A denial of service condition exists in the loop detection plugin due to a predictable pseudo-random number generator PRNG used for generating ...

9.9CVSS5.8AI score0.02054EPSS
Exploits18References218
Positive Technologies
Positive Technologies
added 2026/02/18 12:0 a.m.10 views

PT-2026-20475

A vulnerability has been found in wren-lang wren up to 0.4.0. This impacts the function printError of the file src/vm/wren compiler.c of the component Error Message Handler. Such manipulation leads to stack-based buffer overflow. An attack has to be approached locally. The exploit has been...

4.8CVSS5.5AI score0.0025EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2026/02/13 12:0 a.m.4 views

SUSE SLES15 Security Update : nodejs20 (SUSE-SU-2026:0457-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0457-1 advisory. - Update to 20.20.0: - CVE-2026-22036: Updated undici to 6.23.0 bsc1256848 - CVE-2025-59465: Add TLSSocket default error handler...

9.1CVSS7AI score0.03782EPSS
Exploits2References22
SUSE Linux
SUSE Linux
added 2026/02/11 9:25 a.m.10 views

Security update for nodejs20

This update for nodejs20 fixes the following issues: Update to 20.20.0: CVE-2026-22036: Updated undici to 6.23.0 bsc1256848 CVE-2025-59465: Add TLSSocket default error handler bsc1256573 CVE-2025-55132: Disable futimes when permission model is enabled bsc1256571 CVE-2025-55130: Require full read...

9.2CVSS5.8AI score0.03782EPSS
Exploits2References28
SUSE CVE
SUSE CVE
added 2026/02/05 12:24 a.m.7 views

SUSE CVE-2026-23110

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Wake up the error handler when final completions race against each other The fragile ordering between marking commands completed or failed so that the error handler only wakes when the last running command completes o...

4.7CVSS5.3AI score0.00096EPSS
Exploits0References19
UbuntuCve
UbuntuCve
added 2026/02/04 5:16 p.m.11 views

CVE-2026-23110

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Wake up the error handler when final completions race against each other The fragile ordering between marking commands completed or failed so that the error handler only wakes when the last running command completes o...

4.7CVSS5.7AI score0.00096EPSS
Exploits0References15
OSV
OSV
added 2026/02/04 5:16 p.m.6 views

UBUNTU-CVE-2026-23110

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Wake up the error handler when final completions race against each other The fragile ordering between marking commands completed or failed so that the error handler only wakes when the last running command completes o...

4.7CVSS5.7AI score0.00096EPSS
Exploits0References16
CVE
CVE
added 2026/02/04 4:8 p.m.37 views

CVE-2026-23110

CVE-2026-23110 relates to the Linux kernel SCSI core: Wake up the error handler when final completions race against each other. The description identifies two race conditions that can prevent the error handler from waking up, potentially leaving I/O in the error state. Root causes are memory-orde...

4.7CVSS5.3AI score0.00096EPSS
Exploits0References7Affected Software1
Debian CVE
Debian CVE
added 2026/02/04 4:8 p.m.5 views

CVE-2026-23110

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Wake up the error handler when final completions race against each other The fragile ordering between marking commands completed or failed so that the error handler only wakes when the last running command completes o...

4.7CVSS5.1AI score0.00096EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/02/04 4:8 p.m.5 views

CVE-2026-23110 scsi: core: Wake up the error handler when final completions race against each other

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Wake up the error handler when final completions race against each other The fragile ordering between marking commands completed or failed so that the error handler only wakes when the last running command completes o...

5.4AI score0.00096EPSS
Exploits0References6
EUVD
EUVD
added 2026/02/04 4:8 p.m.6 views

EUVD-2026-5431

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Wake up the error handler when final completions race against each other The fragile ordering between marking commands completed or failed so that the error handler only wakes when the last running command completes o...

5.3AI score0.00096EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/02/04 4:8 p.m.3 views

CVE-2026-23110

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Wake up the error handler when final completions race against each other The fragile ordering between marking commands completed or failed so that the error handler only wakes when the last running command completes o...

5.3AI score0.00096EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2026/02/04 4:8 p.m.38 views

CVE-2026-23110 scsi: core: Wake up the error handler when final completions race against each other

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Wake up the error handler when final completions race against each other The fragile ordering between marking commands completed or failed so that the error handler only wakes when the last running command completes o...

0.00096EPSS
Exploits0References6
OSV
OSV
added 2026/02/04 4:8 p.m.5 views

CVE-2026-23110 scsi: core: Wake up the error handler when final completions race against each other

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Wake up the error handler when final completions race against each other The fragile ordering between marking commands completed or failed so that the error handler only wakes when the last running command completes o...

4.7CVSS5.2AI score0.00096EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2026/02/04 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-23110

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - scsi: core: Wake up the error handler when final completions race against each other The fragile ordering between marking commands completed or failed so that t...

4.7CVSS5.9AI score0.00096EPSS
Exploits0References3
Rows per page
Query Builder