PT-2025-53979

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the Linux kernel's Network File System Daemon NFSD related to the NFSv2 GETACL result encoder. A conversion oversight within the xdr stream encoders resulted in the...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992449)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992449 advisory. In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix data corruption after failed write When buffered write fails to copy data into...

PT-2025-53974

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's CIFS implementation within the cifs ses add channel function. Specifically, the function fails to free a transaction ID xid before returning, leading ...

PT-2025-53971

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A credential leak exists in the nfs4 discover trunking function within the NFSv4 implementation of the Linux kernel. This issue could potentially expose sensitive credentials...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992188)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992188 advisory. In the Linux kernel, the following vulnerability has been resolved: cifs: fix oops during encryption When running xfstests against Azure the following oops occurred ...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992244)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992244 advisory. In the Linux kernel, the following vulnerability has been resolved: NFS: Fix an Oops in nfsdautomount When mounting from a NFSv4 referral, path-dentry can end up bei...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992492)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992492 advisory. In the Linux kernel, the following vulnerability has been resolved: NFSv4/pnfs: Fix a use-after-free bug in open If someone cancels the open RPC call, then we must n...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992294)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992294 advisory. In the Linux kernel, the following vulnerability has been resolved: fs/jfs: Prevent integer overflow in AG size calculation The JFS filesystem calculates allocation...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992211)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992211 advisory. In the Linux kernel, the following vulnerability has been resolved: cifs: Fix warning and UAF when destroy the MR list If the MR allocate failed, the MR recovery wor...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992477)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992477 advisory. In the Linux kernel, the following vulnerability has been resolved: nfsd: put dlstid if fail to queue dlrecall Before calling nfsd4runcb to queue dlrecall to the...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992314)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992314 advisory. In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on destination blkaddr during recovery As Wenqing Liu reported in...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992605)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992605 advisory. In the Linux kernel, the following vulnerability has been resolved: fs: jfs: fix shift-out-of-bounds in dbDiscardAG This should be applied to most URSAN bugs found...

CVE-2025-15205

A vulnerability was identified in code-projects Student File Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /download.php. The manipulation of the argument istoreid leads to sql injection. The attack can be initiated remotely. The exploit is publicly...

CVE-2025-59888

Improper quotation in search paths in the Eaton UPS Companion software installer could lead to arbitrary code execution of an attacker with the access to the file system. This security issue has been fixed in the latest version of EUC which is available on the Eaton download center...

CVE-2025-59888

Improper quotation in search paths in the Eaton UPS Companion software installer could lead to arbitrary code execution of an attacker with the access to the file system. This security issue has been fixed in the latest version of EUC which is available on the Eaton download center...

CVE-2025-59888

Improper quotation in search paths in the Eaton UPS Companion software installer could lead to arbitrary code execution of an attacker with the access to the file system. This security issue has been fixed in the latest version of EUC which is available on the Eaton download center...

CVE-2025-59888

Improper quotation in search paths in the Eaton UPS Companion software installer could lead to arbitrary code execution of an attacker with the access to the file system. This security issue has been fixed in the latest version of EUC which is available on the Eaton download center...

CVE-2025-59888

Summary of findings (CVE-2025-59888) : The Eaton UPS Companion installer contains an vulnerability due to an improper quotation in search paths. Multiple connected sources confirm the issue affects the Eaton UPS Companion software installer and can enable arbitrary code execution when an attacker...

Eaton UPS Companion 安全漏洞

Eaton UPS Companion is a power management software from Eaton Corporation USA. A security vulnerability exists in Eaton UPS Companion that stems from an improperly referenced search path that could lead to the execution of arbitrary code by an attacker with file system access...

PT-2025-53453

Name of the Vulnerable Software and Affected Versions Eaton UPS Companion affected versions not specified Description A flaw exists in the Eaton UPS Companion software installer related to improper handling of quotation marks in search paths. This could allow an attacker with file system access t...