KB5071547: Windows Server 2022 / Azure Stack HCI 22H2 Security Update (December 2025)

The remote Windows host is missing security update 5071547 or hotpatch 5071413. It is, therefore, affected by multiple vulnerabilities - Untrusted pointer dereference in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to execute code over a network. CVE-2025-62549 -...

Microsoft Brokering File System 资源管理错误漏洞

Microsoft Brokering File System is a file system from Microsoft Corporation USA. A resource management error vulnerability exists in Microsoft Brokering File System. An attacker could exploit this vulnerability to elevate privileges. The following products and versions are affected:Windows Server...

PT-2025-50164

Name of the Vulnerable Software and Affected Versions Windows Projected File System affected versions not specified Description A buffer over-read exists in Windows Projected File System. A successful exploit could allow an authorized attacker to elevate privileges locally. The issue allows...

KB5071507: Windows Server 2008 Security Update (December 2025)

The remote Windows host is missing security update 5071507. It is, therefore, affected by multiple vulnerabilities - Untrusted pointer dereference in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to execute code over a network. CVE-2025-62549 - Null pointer...

PT-2025-50158

Name of the Vulnerable Software and Affected Versions Windows Resilient File System ReFS affected versions not specified Description A heap-based buffer overflow exists in Windows Resilient File System ReFS. This flaw potentially allows an authorized attacker to execute code over a network...

Microsoft Brokering File System 资源管理错误漏洞

Microsoft Brokering File System is a file system from Microsoft Corporation USA. A resource management error vulnerability exists in Microsoft Brokering File System. An attacker could exploit this vulnerability to elevate privileges. The following products and editions are affected:Windows Server...

PT-2025-50162

Name of the Vulnerable Software and Affected Versions Windows Projected File System affected versions not specified Description A buffer over-read exists in Windows Projected File System. A successful exploit could allow an authorized attacker to elevate privileges locally. This issue allows...

PT-2025-50191

Name of the Vulnerable Software and Affected Versions Microsoft Brokering File System affected versions not specified Description A flaw exists in the Microsoft Brokering File System that could allow an attacker to gain higher-level access to a system. This issue involves a use-after-free...

KB5071542: Windows Server version 23H2 Security Update (December 2025)

The remote Windows host is missing security update 5071542. It is, therefore, affected by multiple vulnerabilities - Untrusted pointer dereference in Windows Routing and Remote Access Service RRAS allows an unauthorized attacker to execute code over a network. CVE-2025-62549 - Heap-based buffer...

PT-2025-49656

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix information leak in f2fs move inline dirents When converting an inline directory to a regular one, f2fs is leaking uninitialized memory to disk because it doesn't initialize the entire directory block. Fix this by...

KLA90811 Multiple vulnerabilities in Microsoft Product (ESU)

Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to gain privileges, cause denial of service, spoof user interface, obtain sensitive information, bypass security restrictions, execute arbitrary code. Below is a...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a cifs session state checking issue...

EUVD-2025-201700

Improper configuration of the SSH service in Infinera MTC-9 allows an unauthenticated attacker to execute arbitrary commands and access data on file system . This issue affects MTC-9: from R22.1.1.0275 before R23.0...

cifs: client: fix memory leak in smb3_fs_context_parse_param

...

NFSD: free copynotify stateid in nfs4_free_ol_stateid()

...

EUVD-2023-60071

In the Linux kernel, the following vulnerability has been resolved: irqchip/irq-mvebu-gicp: Fix refcount leak in mvebugicpprobe ofirqfindparent returns a node pointer with refcount incremented, We should use ofnodeput on it when not needed anymore. Add missing ofnodeput to avoid refcount leak...

EUVD-2022-55690

In the Linux kernel, the following vulnerability has been resolved: ext4: fix potential memory leak in ext4fcrecordmodifiedinode As krealloc may return NULL, in this case 'state-fcmodifiedinodes' may not be freed by krealloc, but 'state-fcmodifiedinodes' already set NULL. Then will lead to...

EUVD-2025-201638

In the Linux kernel, the following vulnerability has been resolved: exfat: validate cluster allocation bits of the allocation bitmap syzbot created an exfat image with cluster bits not set for the allocation bitmap. exfat-fs reads and uses the allocation bitmap without checking this. The problem ...

EUVD-2025-201642

In the Linux kernel, the following vulnerability has been resolved: btrfs: ensure no dirty metadata is written back for an fs with errors BUG During development of a minor feature make sure all btrfsbio::endio is called in task context, I noticed a crash in generic/388, where metadata writes...

EUVD-2025-201621

In the Linux kernel, the following vulnerability has been resolved: NFSD: Fix crash in nfsd4readrelease When tracing is enabled, the tracenfsdreaddone trace point crashes during the pynfs read.testNoFh test...