Lucene search
K

23165 matches found

CVE
CVE
added 2025/02/26 2:23 a.m.145 views

CVE-2022-49565

CVE-2022-49565 concerns the Linux kernel, specifically perf/x86/intel/lbr, where unchecked MSR writes (WRMSR to 0x689) can occur due to an absent TSX quirk application when accessing LBR data. The issue manifests on systems with LBR_FORMAT_EIP_FLAGS2 and, if TSX is disabled, requires a quirk to a...

5.5CVSS6.5AI score0.00204EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2025/02/26 2:23 a.m.8 views

CVE-2022-49565

In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel/lbr: Fix unchecked MSR access error on HSW The fuzzer triggers the below trace. 7763.384369 unchecked MSR access error: WRMSR to 0x689 tried to write 0x1fffffff8101349e at rIP: 0xffffffff810704a4...

5.5CVSS5.4AI score0.00204EPSS
Exploits0
OSV
OSV
added 2025/02/26 2:23 a.m.10 views

CVE-2022-49565 perf/x86/intel/lbr: Fix unchecked MSR access error on HSW

In the Linux kernel, the following vulnerability has been resolved: perf/x86/intel/lbr: Fix unchecked MSR access error on HSW The fuzzer triggers the below trace. 7763.384369 unchecked MSR access error: WRMSR to 0x689 tried to write 0x1fffffff8101349e at rIP: 0xffffffff810704a4...

5.5CVSS5.1AI score0.00204EPSS
Exploits0References5
CVE
CVE
added 2025/02/26 2:5 a.m.117 views

CVE-2021-47659

CVE-2021-47659 affects the Linux kernel DRM plane path. The vulnerability arises because the range check for format_count is performed late in __drm_universal_plane_init(); if format_count > 64 yields a WARN_ON, it can leak the plane->format_types array and skip drm_mode_object_unregister()...

5.5CVSS5.4AI score0.00252EPSS
Exploits0References7Affected Software1
Debian CVE
Debian CVE
added 2025/02/26 2:5 a.m.7 views

CVE-2021-47659

In the Linux kernel, the following vulnerability has been resolved: drm/plane: Move range check for formatcount earlier While the check for formatcount 64 in drmuniversalplaneinit shouldn't be hit it's a WARNON, in its current position it will then leak the plane-formattypes array and fail to cal...

5.5CVSS5.5AI score0.00252EPSS
Exploits0
Cvelist
Cvelist
added 2025/02/26 1:54 a.m.13 views

CVE-2022-49113 powerpc/secvar: fix refcount leak in format_show()

In the Linux kernel, the following vulnerability has been resolved: powerpc/secvar: fix refcount leak in formatshow Refcount leak will happen when formatshow returns failure in multiple cases. Unified management of ofnodeput can fix this problem...

0.00243EPSS
Exploits0References5
CVE
CVE
added 2025/02/26 1:54 a.m.54 views

CVE-2022-49045

CVE-2022-49045 entry is rejected by the CVE Numbering Authority and is not an active vulnerability entry.

5.4AI score
Exploits0
CNNVD
CNNVD
added 2025/02/26 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure to check the formatcount range in advance resulting in resource consumption...

5.5CVSS5.5AI score0.00252EPSS
Exploits0References8
CNNVD
CNNVD
added 2025/02/26 12:0 a.m.12 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a null pointer dereference to ctx-activefmt in calctxv4l2initformats...

5.5CVSS5.4AI score0.00246EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/02/26 12:0 a.m.5 views

PT-2025-19688 · Git +1 · Libredwg

Name of the Vulnerable Software and Affected Versions: libdwg affected versions not specified Description: The software is susceptible to an index-out-of-bounds issue discovered through OSS-Fuzz testing. The crash occurs during the processing of .dwg files, specifically within the dwg decode eed,...

6.9AI score
Exploits0References2
OSV
OSV
added 2025/02/25 9:15 p.m.2 views

DEBIAN-CVE-2024-53878

NVIDIA CUDA toolkit for Linux and Windows contains a vulnerability in the cuobjdump binary, where a user could cause a crash by passing a malformed ELF file to cuobjdump. A successful exploit of this vulnerability might lead to a partial denial of service...

2.8CVSS5.3AI score0.00219EPSS
Exploits0References1
OSV
OSV
added 2025/02/25 9:15 p.m.5 views

CVE-2024-53873

NVIDIA CUDA toolkit for Windows contains a vulnerability in the cuobjdump binary, where a user could cause an out-of-bounds read by passing a malformed ELF file to cuobjdump. A successful exploit of this vulnerability might lead to a partial denial of service...

3.3CVSS5.8AI score0.0024EPSS
Exploits0References1
OSV
OSV
added 2025/02/25 9:15 p.m.2 views

DEBIAN-CVE-2024-53876

NVIDIA CUDA toolkit for all platforms contains a vulnerability in the nvdisasm binary, where a user could cause an out-of-bounds read by passing a malformed ELF file to nvdisasm. A successful exploit of this vulnerability might lead to a partial denial of service...

3.3CVSS5.3AI score0.0024EPSS
Exploits0References1
OSV
OSV
added 2025/02/25 9:15 p.m.1 views

DEBIAN-CVE-2024-53875

NVIDIA CUDA toolkit for all platforms contains a vulnerability in the cuobjdump binary, where a user could cause an out-of-bounds read by passing a malformed ELF file to cuobjdump. A successful exploit of this vulnerability might lead to a partial denial of service...

3.3CVSS5.3AI score0.0024EPSS
Exploits0References1
OSV
OSV
added 2025/02/25 9:15 p.m.2 views

UBUNTU-CVE-2024-53878

NVIDIA CUDA toolkit for Linux and Windows contains a vulnerability in the cuobjdump binary, where a user could cause a crash by passing a malformed ELF file to cuobjdump. A successful exploit of this vulnerability might lead to a partial denial of service...

2.8CVSS5.8AI score0.00219EPSS
Exploits0References3
GithubExploit
GithubExploit
added 2025/02/25 9:13 p.m.143 views

CVEs

It is...

7.1AI score
Exploits0
RedHat Linux
RedHat Linux
added 2025/02/25 7:38 p.m.6 views

jinja2: Jinja has a sandbox breakout through indirect reference to format method

A flaw was found in the Jinja package. In affected versions of Jinja, an oversight in how the Jinja sandboxed environment detects calls to str.format allows an attacker that controls the content of a template to execute arbitrary Python code. To exploit the vulnerability, an attacker needs to...

7.8CVSS7.5AI score0.005EPSS
Exploits0References7
GithubExploit
GithubExploit
added 2025/02/25 1:9 p.m.78 views

report

...

7.1AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/02/24 12:0 a.m.5 views

XOne Web Monitor 02.10.2024.530 SQL Injection

An unauthenticated SQL injection vulnerability has been discovered in the login functionality of XOne Web Monitor version 02.10.2024.530 framework 1.0.4.9. This flaw allows attackers to exploit improper handling of user input during the authentication process to extract all stored usernames and...

9.8CVSS8.1AI score0.01149EPSS
Exploits1
Snyk
Snyk
added 2025/02/21 9:42 p.m.2 views

Deserialization of Untrusted Data

Overview qiskit-terra is a Software for developing quantum computing programs Affected versions of this package are vulnerable to Deserialization of Untrusted Data via the deserialization of QPY files containing malformed symengine serialization streams. An attacker can terminate the process by...

8.6CVSS7AI score0.0066EPSS
Exploits0References2
Rows per page
Query Builder