Lucene search
K

75 matches found

debiancve
debiancve
added 2025/12/09 4:9 a.m.3 views

CVE-2025-40330

In the Linux kernel, the following vulnerability has been resolved: bnxten: Shutdown FW DMA in bnxtshutdown The netifclose call in bnxtshutdown only stops packet DMA. There may be FW DMA for trace logging recently added that will continue. If we kexec to a new kernel, the DMA will corrupt memory ...

5.3AI score0.00188EPSS
Exploits0
cnnvd
cnnvd
added 2025/12/09 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the bnxtshutdown function not disabling FW DMA, which could lead to memory corruption...

6.1AI score0.00188EPSS
Exploits0References3
vulnrichment
vulnrichment
added 2025/11/17 5:18 p.m.7 views

CVE-2025-58407 GPU DDK - TOCTOU bug affecting psFWMemContext->uiPageCatBaseRegSet

Kernel or driver software installed on a Guest VM may post improper commands to the GPU Firmware to exploit a TOCTOU race condition and trigger a read and/or write of data outside the allotted memory escaping the virtual machine...

6.6AI score0.00176EPSS
Exploits0References1
nvd
nvd
added 2025/10/24 11:15 p.m.6 views

CVE-2025-34503

Deck Mate 1 executes firmware directly from an external EEPROM without verifying authenticity or integrity. An attacker with physical access can replace or reflash the EEPROM to run arbitrary code that persists across reboots. Because this design predates modern secure-boot or signed-update...

7CVSS0.00119EPSS
Exploits0References2
euvd
euvd
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-15441

Malware in sbrugna...

7.8CVSS7.9AI score0.00187EPSS
Exploits0References5
cve
cve
added 2025/10/06 4:8 p.m.20 views

CVE-2025-0038

The CVE-2025-0038 entry corresponds to AMD Zynq UltraScale+ devices where the PMU Firmware’s CSU runtime services do not validate memory addresses. Connected sources (AMD-SB-8008 and related records) confirm that memory pointers issued to CSU runtime commands can bypass access controls, allowing ...

6.6CVSS6.5AI score0.00118EPSS
Exploits0References1
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-13065

Malicious code in bioql PyPI...

7.2AI score0.00131EPSS
Exploits0References5
euvd
euvd
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-13057

Malicious code in bioql PyPI...

8.2AI score0.00164EPSS
Exploits0References4
euvd
euvd
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-21138

Malicious code in bioql PyPI...

7.8CVSS9.2AI score0.0019EPSS
Exploits0References3
susecve
susecve
added 2025/10/01 11:29 p.m.5 views

SUSE CVE-2023-53532

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: fix deinitialization of firmware resources Currently, in ath11kahbfwresourcesinit, iommu domain mapping is done only for the chipsets having fixed firmware memory. Also, for such chipsets, mapping is done only if it...

4.4CVSS6.3AI score0.00135EPSS
Exploits0References5
ptsecurity
ptsecurity
added 2025/09/06 12:0 a.m.7 views

PT-2025-36385

Name of the Vulnerable Software and Affected Versions: AND power Management Firmware affected versions not specified Description: Improper validation of an array index within the firmware could allow a privileged attacker to corrupt AGESA memory, potentially leading to a loss of system integrity...

4.4CVSS5.9AI score0.00126EPSS
Exploits0References6
redhat
redhat
added 2025/08/18 12:14 p.m.9 views

Important: Red Hat Security Advisory: kernel-rt security update

An update for kernel-rt is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

7.8CVSS6.9AI score0.00178EPSS
Exploits0References6
vulnrichment
vulnrichment
added 2025/08/14 2:0 p.m.3 views

CVE-2025-36581

Dell PowerEdge Platform versions 14G AMD BIOS v1.25.0 and prior, contains an Access of Memory Location After End of Buffer vulnerability. A low privileged attacker with local access could potentially exploit this vulnerability, leading to Information exposure...

3.8CVSS6.8AI score0.00124EPSS
Exploits0References1
nessus
nessus
added 2025/08/12 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-37744

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wifi: ath12k: fix memory leak in ath12kpciremove Kmemleak reported this error: unreferenced object 0xffff1c165cec3060 size 32: comm insmod, pid 560, jiffies...

5.5CVSS6.6AI score0.00131EPSS
Exploits0References3
nessus
nessus
added 2025/08/11 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2021-47228

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - x86/ioremap: Map EFI-reserved memory as encrypted for SEV Some drivers require memory that is marked as EFI boot services data. In order for this memory to not ...

6.2CVSS6.6AI score0.00237EPSS
Exploits0References2
nessus
nessus
added 2025/08/10 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-37764

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: drm/imagination: fix firmware memory leaks Free the memory used to hold the results of...

5.5CVSS6.2AI score0.00164EPSS
Exploits0References2
nessus
nessus
added 2025/08/07 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2025-38438

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ASoC: SOF: Intel: hda: Use devmkstrdup to avoid memleak. sofpdata-tplgfilename can have address allocated by kstrdup and can be overwritten. Memory leak was...

5.5CVSS6.2AI score0.00154EPSS
Exploits0References4
nessus
nessus
added 2025/08/06 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2024-35994

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: firmware: qcom: uefisecapp: Fix memory related IO errors and crashes It turns out that while...

5.5CVSS6AI score0.00183EPSS
Exploits0References2
nvd
nvd
added 2025/07/11 4:15 p.m.7 views

CVE-2025-7028

A vulnerability in the Software SMI handler SwSmiInputValue 0x20 allows a local attacker to supply a crafted pointer FuncBlock through RBX and RCX register values. This pointer is passed unchecked into multiple flash management functions ReadFlash, WriteFlash, EraseFlash, and GetFlashInfo that...

7.8CVSS0.0019EPSS
Exploits0References4
vulnrichment
vulnrichment
added 2025/07/11 3:26 p.m.3 views

CVE-2025-7028 SMM Arbitrary Memory Access via Flash Handler with Unchecked FuncBlock Pointer

A vulnerability in the Software SMI handler SwSmiInputValue 0x20 allows a local attacker to supply a crafted pointer FuncBlock through RBX and RCX register values. This pointer is passed unchecked into multiple flash management functions ReadFlash, WriteFlash, EraseFlash, and GetFlashInfo that...

9AI score0.0019EPSS
Exploits0References3
Rows per page
Query Builder