CVE-2025-2149

A vulnerability was found in PyTorch 2.6.0+cu124. It has been rated as problematic. Affected by this issue is the function nnqSigmoid of the component Quantized Sigmoid Module. The manipulation of the argument scale/zeropoint leads to improper initialization. The attack needs to be approached...

CVE-2025-2149 PyTorch Quantized Sigmoid Module nnq_Sigmoid initialization

A vulnerability was found in PyTorch 2.6.0+cu124. It has been rated as problematic. Affected by this issue is the function nnqSigmoid of the component Quantized Sigmoid Module. The manipulation of the argument scale/zeropoint leads to improper initialization. The attack needs to be approached...

CVE-2025-2149

A vulnerability was found in PyTorch 2.6.0+cu124. It has been rated as problematic. Affected by this issue is the function nnqSigmoid of the component Quantized Sigmoid Module. The manipulation of the argument scale/zeropoint leads to improper initialization. The attack needs to be approached...

CVE-2025-2149

CVE-2025-2149 affects PyTorch 2.6.0+cu124, specifically the Quantized Sigmoid Module’s nnq_Sigmoid func. The issue stems from improper initialization caused by manipulation of scale/zero_point, enabling a local attack with high attack complexity; exploitation has been disclosed. Connected IBM adv...

PyTorch 安全漏洞

PyTorch is a Python package open-sourced by PyTorch. A security vulnerability exists in PyTorch version 2.6.0+cu124, which stems from the nnqSigmoid function that may lead to improper initialization...

PT-2025-10577

Name of the Vulnerable Software and Affected Versions PyTorch version 2.6.0+cu124 Description A problem was found in the Quantized Sigmoid Module, specifically in the nnq Sigmoid function. The issue arises from the manipulation of the scale and zero point arguments, leading to improper...

The vulnerability of the memcg_write_event_control() function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the memcgwriteeventcontrol function in the Linux operating system is related to improper initialization. Exploiting this vulnerability can allow an attacker to cause a service failure...

Intel AMT和Intel Standard Manageability 安全漏洞

Intel AMT and Intel Standard Manageability are both active management technology modules from Intel Corporation USA. A security vulnerability exists in Intel AMT and Intel Standard Manageability that stems from improper initialization and could allow a privileged user to disclose information via...

CVE-2021-44169

A improper initialization in Fortinet FortiClient Windows version 6.0.10 and below, version 6.2.9 and below, version 6.4.7 and below, version 7.0.3 and below allows attacker to gain administrative privileges via placing a malicious executable inside the FortiClient installer's directory...

CVE-2024-0819

Improper initialization of default settings in TeamViewer Remote Client prior version 15.51.5 for Windows, Linux and macOS, allow a low privileged user to elevate privileges by changing the personal password setting and establishing a remote connection to a logged-in admin account...

Security Bulletin: IBM QRadar Network Packet Capture includes components with multiple known vulnerabilities

Summary The product includes multiple vulnerable components e.g., framework libraries that could be identified and exploited with automated tools. IBM has addressed the relevant CVEs. Vulnerability Details CVEID:CVE-2024-37891 DESCRIPTION: urllib3 could allow a remote authenticated attacker to...

The vulnerabilities of the functions blkFlushCompleteSeq() and flushEndIo() in the block component (block/blk-flush.c) of the Linux operating system allow a hacker to trigger a service failure.

The vulnerabilities of the functions blkFlushCompleteSeq and flushEndIo in the block component block/blk-flush.c of the Linux kernel are related to improper initialization. Exploiting these vulnerabilities can allow an attacker to cause a service failure...

Intel® NUC Software Advisory

Summary: Summary: Potential security vulnerabilities in some Intel® NUC Software may allow escalation of privilege, denial of service, and information disclosure. Intel is releasing software updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2023-28737...

CVE-2024-54129 Improper Initialization of `imc` Scheme Leading to `SIGABRT` in ION-DTN BPv7

The NASA’s Interplanetary Overlay Network ION is an implementation of Delay/Disruption Tolerant Networking DTN. A vulnerability exists in the version ION-DTN BPv7 implementation version 4.1.3 when receiving a bundle with an improper reference to the imc scheme with valid Service-Specific Part SSP...

CVE-2024-54129

The CVE-2024-54129 entry concerns NASA’s Interplanetary Overlay Network (ION) - DTN BPv7, version 4.1.3. The flaw occurs when receiving a bundle with an improper reference to the imc scheme that contains a valid Service-Specific Part (SSP) in the Previous Node Block, which can cause ION to become...

CVE-2024-25563

Improper initialization in firmware for some IntelR PROSet/Wireless Software and IntelR KillerTM Wi-Fi before version 23.40 may allow a privileged user to potentially enable information disclosure via local access...

The vulnerability of the veth component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the veth component in the Linux operating system’s kernel is related to improper initialization. Exploiting this vulnerability can allow an attacker to cause a service failure...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from not properly initializing the bits of the MANAGEPAGES command when initializing the command mask...

CVE-2024-47728 bpf: Zero former ARG_PTR_TO_{LONG,INT} args in case of error

In the Linux kernel, the following vulnerability has been resolved: bpf: Zero former ARGPTRTOLONG,INT args in case of error For all non-tracing helpers which formerly had ARGPTRTOLONG,INT as input arguments, zero the value for the case of an error as otherwise it could leak memory. For tracing, i...

The vulnerability of the seqpacket_allow() function in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the seqpacketallow function in the Linux operating system’s kernel is related to improper initialization. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...