USN-7801-3 linux-oracle-6.8 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM32 architecture; - ARM64 architecture; - x86 architecture; - Compute Acceleration Framework; - Bus devices; - AM...

CVE-2025-9063

An authentication bypass security issue exists within FactoryTalk View Machine Edition Web Browser ActiveX control. Exploitation of this vulnerability allows unauthorized access to the PanelView Plus 7 Series B, including access to the file system, retrieval of diagnostic information, event logs,...

Improper Access Control

vite is vulnerable to improper access control. The vulnerability is due to files starting with the same name as those in the public directory being served while bypassing the server.fs settings, which allows an attacker to access restricted files when the Vite dev server is exposed to the network...

PT-2025-49388

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the exFAT file system within the Linux kernel that can lead to a Denial-of-Service DoS condition. Malformed dentries in an exFAT filesystem can cause the kernel to hang...

QNAP QTS and QuTS hero null pointer dereference vulnerability (CNVD-2025-27564)

QNAP QTS is a NAS operating system developed by QNAPSystems, Inc. designed for network attached storage devices, providing data management, backup, multimedia entertainment, etc. QNAP QuTS hero is an enterprise-grade operating system developed by QNAP for its networked storage devices NAS, which ...

PT-2025-42317

Name of the Vulnerable Software and Affected Versions Samba affected versions not specified Description An issue exists in Samba’s vfs streams xattr module where uninitialized heap memory can be written into alternate data streams. This can allow an authenticated user to read residual memory...

UBUNTU-CVE-2025-9640

A flaw was found in Samba, in the vfsstreamsxattr module, where uninitialized heap memory could be written into alternate data streams. This allows an authenticated user to read residual memory content that may include sensitive data, resulting in an information disclosure vulnerability...

Ubuntu 18.04 LTS / 20.04 LTS : Linux kernel (Azure) vulnerabilities (USN-7819-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-7819-1 advisory. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update...

EUVD-2025-34389

Windows Resilient File System ReFS Deduplication Service Elevation of Privilege Vulnerability...

EUVD-2025-34290

Windows Resilient File System ReFS Deduplication Service Elevation of Privilege Vulnerability...

EUVD-2025-34302

Use after free in Microsoft Brokering File System allows an unauthorized attacker to elevate privileges locally...

EUVD-2025-34411

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Resilient File System ReFS allows an unauthorized attacker to elevate privileges locally...

EUVD-2025-34421

Use after free in Windows NTFS allows an unauthorized attacker to elevate privileges locally...

CVE-2025-59210

Windows Resilient File System ReFS Deduplication Service Elevation of Privilege Vulnerability...

CVE-2025-59206

Windows Resilient File System ReFS Deduplication Service Elevation of Privilege Vulnerability...

CVE-2025-59206

Windows Resilient File System ReFS Deduplication Service Elevation of Privilege Vulnerability...

CVE-2025-59189

Use after free in Microsoft Brokering File System allows an unauthorized attacker to elevate privileges locally...

CVE-2025-59189

Use after free in Microsoft Brokering File System allows an unauthorized attacker to elevate privileges locally...

CVE-2025-55687

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Resilient File System ReFS allows an unauthorized attacker to elevate privileges locally...

CVE-2025-55687

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Resilient File System ReFS allows an unauthorized attacker to elevate privileges locally...