Lucene search
K

22172 matches found

RedhatCVE
RedhatCVE
added 2026/02/05 1:23 a.m.7 views

CVE-2026-1813

A vulnerability was found in bolo-blog bolo-solo up to 2.6.4. Affected is an unknown function of the file src/main/java/org/b3log/solo/bolo/pic/PicUploadProcessor.java of the component FreeMarker Template Handler. The manipulation of the argument File results in unrestricted upload. It is possibl...

9.8CVSS6.1AI score0.00333EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/02/05 1:22 a.m.5 views

CVE-2026-25151

Qwik is a performance focused javascript framework. Prior to version 1.19.0, Qwik City’s server-side request handler inconsistently interprets HTTP request headers, which can be abused by a remote attacker to circumvent form submission CSRF protections using specially crafted or multi-valued...

5.9CVSS5.5AI score0.00159EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/02/05 12:24 a.m.6 views

SUSE CVE-2026-23110

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Wake up the error handler when final completions race against each other The fragile ordering between marking commands completed or failed so that the error handler only wakes when the last running command completes o...

4.7CVSS5.3AI score0.00096EPSS
Exploits0References19
Positive Technologies
Positive Technologies
added 2026/02/05 12:0 a.m.6 views

PT-2026-6566

Name of the Vulnerable Software and Affected Versions CODE::BLOCKS version 16.01 Description CODE::BLOCKS version 16.01 contains a buffer overflow issue that allows attackers to execute arbitrary code. This is achieved by overwriting the Structured Exception Handler with specially crafted Unicode...

6.7CVSS6.8AI score0.00207EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/02/05 12:0 a.m.8 views

PT-2026-6584

Name of the Vulnerable Software and Affected Versions 10-Strike Network Inventory Explorer version 8.54 Description The software contains a structured exception handler buffer overflow that allows for arbitrary code execution by overwriting SEH records. An attacker can trigger this by crafting a...

8.4CVSS6.8AI score0.0034EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2026/02/05 12:0 a.m.3 views

PT-2026-6565

Rubo DICOM Viewer 2.0 contains a buffer overflow vulnerability in the DICOM server name input field that allows attackers to overwrite Structured Exception Handler SEH. Attackers can craft a malicious text file with carefully constructed payload to execute arbitrary code by overwriting SEH and...

9.8CVSS6.9AI score0.00453EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/02/05 12:0 a.m.6 views

PT-2026-6568

B64dec 1.1.2 contains a buffer overflow vulnerability that allows attackers to execute arbitrary code by overwriting Structured Exception Handler SEH with crafted input. Attackers can leverage an egg hunter technique and carefully constructed payload to inject and execute malicious code during...

9.8CVSS6.5AI score0.00353EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/02/04 11:32 p.m.5 views

CVE-2026-1896

A vulnerability has been found in WeKan up to 8.20. Affected by this vulnerability is the function ComprehensiveBoardMigration of the file server/migrations/comprehensiveBoardMigration.js of the component Migration Operation Handler. The manipulation of the argument boardId leads to improper acce...

6.5CVSS6AI score0.00276EPSS
Exploits0References7
GithubExploit
GithubExploit
added 2026/02/04 10:59 p.m.206 views

Exploit for CVE-2026-25512

CVE-2026-25512 PoC – Group-Office Authenticated RCE via TNEF H...

9.4CVSS5.3AI score0.18536EPSS
Exploits2
OSV
OSV
added 2026/02/04 8:39 p.m.5 views

CVE-2026-25512 Group-Office is vulnerable to RCE due to Command Injection via TNEF Attachment Handler

Group-Office is an enterprise customer relationship management and groupware tool. Prior to versions 6.8.150, 25.0.82, and 26.0.5, there is a remote code execution RCE vulnerability in Group-Office. The endpoint email/message/tnefAttachmentFromTempFile directly concatenates the user-controlled...

9.4CVSS6.7AI score0.18536EPSS
Exploits2References4
UbuntuCve
UbuntuCve
added 2026/02/04 5:16 p.m.8 views

CVE-2026-23110

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Wake up the error handler when final completions race against each other The fragile ordering between marking commands completed or failed so that the error handler only wakes when the last running command completes o...

4.7CVSS5.7AI score0.00096EPSS
Exploits0References12
OSV
OSV
added 2026/02/04 5:16 p.m.3 views

UBUNTU-CVE-2026-23110

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Wake up the error handler when final completions race against each other The fragile ordering between marking commands completed or failed so that the error handler only wakes when the last running command completes o...

4.7CVSS5.7AI score0.00096EPSS
Exploits0References15
Vulnrichment
Vulnrichment
added 2026/02/04 4:8 p.m.4 views

CVE-2026-23110 scsi: core: Wake up the error handler when final completions race against each other

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Wake up the error handler when final completions race against each other The fragile ordering between marking commands completed or failed so that the error handler only wakes when the last running command completes o...

5.4AI score0.00096EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/02/04 4:8 p.m.3 views

CVE-2026-23110

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Wake up the error handler when final completions race against each other The fragile ordering between marking commands completed or failed so that the error handler only wakes when the last running command completes o...

5.3AI score0.00096EPSS
Exploits0References7Affected Software1
CVE
CVE
added 2026/02/04 4:8 p.m.19 views

CVE-2026-23110

CVE-2026-23110 relates to the Linux kernel SCSI core: Wake up the error handler when final completions race against each other. The description identifies two race conditions that can prevent the error handler from waking up, potentially leaving I/O in the error state. Root causes are memory-orde...

4.7CVSS5.3AI score0.00096EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2026/02/04 4:8 p.m.30 views

CVE-2026-23110 scsi: core: Wake up the error handler when final completions race against each other

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Wake up the error handler when final completions race against each other The fragile ordering between marking commands completed or failed so that the error handler only wakes when the last running command completes o...

0.00096EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2026/02/04 4:8 p.m.4 views

CVE-2026-23110

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Wake up the error handler when final completions race against each other The fragile ordering between marking commands completed or failed so that the error handler only wakes when the last running command completes o...

4.7CVSS5.1AI score0.00096EPSS
Exploits0
EUVD
EUVD
added 2026/02/04 4:8 p.m.6 views

EUVD-2026-5431

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Wake up the error handler when final completions race against each other The fragile ordering between marking commands completed or failed so that the error handler only wakes when the last running command completes o...

5.3AI score0.00096EPSS
Exploits0References4
OSV
OSV
added 2026/02/04 4:8 p.m.5 views

CVE-2026-23110 scsi: core: Wake up the error handler when final completions race against each other

In the Linux kernel, the following vulnerability has been resolved: scsi: core: Wake up the error handler when final completions race against each other The fragile ordering between marking commands completed or failed so that the error handler only wakes when the last running command completes o...

4.7CVSS5.2AI score0.00096EPSS
Exploits0References9
Cvelist
Cvelist
added 2026/02/04 4:7 p.m.25 views

CVE-2026-23068 spi: spi-sprd-adi: Fix double free in probe error path

In the Linux kernel, the following vulnerability has been resolved: spi: spi-sprd-adi: Fix double free in probe error path The driver currently uses spiallochost to allocate the controller but registers it using devmspiregistercontroller. If devmregisterrestarthandler fails, the code jumps to the...

0.00129EPSS
Exploits0References5
Rows per page
Query Builder