Lucene search
K

311 matches found

Tenable Nessus
Tenable Nessus
added 2025/12/08 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-40226

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - firmware: armscmi: Account for failed debug initialization When the SCMI debug subsystem fails to initialize, the related debug root will be missing, and the...

6.2AI score0.00174EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/12/08 12:0 a.m.11 views

CentOS 9 : kernel-5.14.0-648.el9

The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the kernel-5.14.0-648.el9 build changelog. - In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Fix buffer overflow in debugfs If the user tries to...

7.8CVSS6.3AI score0.00176EPSS
Exploits0References20
RedHat Linux
RedHat Linux
added 2025/11/25 12:47 a.m.2 views

kernel: net: sched: sfb: fix null pointer access issue when sfb_init() fails

A null pointer dereference exists in the linux kernel, such that when sfbinit fails qdisc is NULL, and it will cause gpf issue, leading to damage to the availability of the system...

5.5CVSS7.3AI score0.00191EPSS
Exploits0References5
EUVD
EUVD
added 2025/11/24 3:30 p.m.7 views

EUVD-2025-198707

Use after free in endpoint destructors in Redboltz asyncmqtt 10.2.5 allows local users to cause a denial of service via triggering SSL initialization failure that results in incorrect destruction order between iocontext and endpoint objects...

7.5CVSS6AI score0.00193EPSS
Exploits1References3
NVD
NVD
added 2025/11/24 2:15 p.m.29 views

CVE-2025-65503

Use after free in endpoint destructors in Redboltz asyncmqtt 10.2.5 allows local users to cause a denial of service via triggering SSL initialization failure that results in incorrect destruction order between iocontext and endpoint objects...

7.5CVSS0.00193EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/11/24 12:0 a.m.28 views

CVE-2025-65503

Use after free in endpoint destructors in Redboltz asyncmqtt 10.2.5 allows local users to cause a denial of service via triggering SSL initialization failure that results in incorrect destruction order between iocontext and endpoint objects...

0.00193EPSS
Exploits1References2
CVE
CVE
added 2025/11/24 12:0 a.m.23 views

CVE-2025-65503

CVE-2025-65503 concerns a use-after-free in endpoint destructors of Redboltz async_mqtt 10.2.5, leading to denial of service when SSL initialization fails due to incorrect destruction order between io_context and endpoint objects. Affected component is the endpoint destructor in the Redboltz asyn...

7.5CVSS6.2AI score0.00193EPSS
Exploits1References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/11/18 12:0 a.m.5 views

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-41068)

s390/sclp: sclpinit failure. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid504592; scriptversion"1.2";...

5.5CVSS6.7AI score0.00243EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2025/11/12 3:8 p.m.6 views

kernel: net: sched: sfb: fix null pointer access issue when sfb_init() fails

A null pointer dereference exists in the linux kernel, such that when sfbinit fails qdisc is NULL, and it will cause gpf issue, leading to damage to the availability of the system...

5.5CVSS7.3AI score0.00191EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/11/12 5:21 a.m.4 views

kernel: net: sched: sfb: fix null pointer access issue when sfb_init() fails

A null pointer dereference exists in the linux kernel, such that when sfbinit fails qdisc is NULL, and it will cause gpf issue, leading to damage to the availability of the system...

5.5CVSS7.3AI score0.00191EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/11/11 9:13 a.m.3 views

kernel: vxlan: check vxlan_vnigroup_init() return value

In the Linux kernel, the following vulnerability has been resolved: vxlan: check vxlanvnigroupinit return value vxlaninit must check vxlanvnigroupinit success otherwise a crash happens later, spotted by syzbot. Oops: general protection fault, probably for non-canonical address 0xdffffc000000002c:...

5.5CVSS6.8AI score0.0021EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/11/11 9:13 a.m.5 views

kernel: igb: Fix potential invalid memory access in igb_init_module()

In the Linux kernel, the following vulnerability has been resolved: igb: Fix potential invalid memory access in igbinitmodule The pciregisterdriver can fail and when this happened, the dcanotifier needs to be unregistered, otherwise the dcanotifier can be called when igb fails to install, resulti...

7.1CVSS6.7AI score0.00231EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/11/11 8:21 a.m.3 views

kernel: crypto: tegra - do not transfer req when tegra init fails

In the Linux kernel, the following vulnerability has been resolved: crypto: tegra - do not transfer req when tegra init fails The tegracmacinit or tegrashainit function may return an error when memory is exhausted. It should not transfer the request when they return an error...

5.5CVSS6.8AI score0.00169EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.3 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989514)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989514 advisory. In the Linux kernel, the following vulnerability has been resolved: drm/nouveau: avoid a use-after-free when BO init fails nouveauboinit is backed by ttmboinit and...

7.8CVSS6.2AI score0.0023EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.3 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989757)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989757 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: myrs: Fix crash in error case In myrsdetect, cs-disableintr is NULL when privdata-hwinit...

5.5CVSS6AI score0.00268EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.2 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-990140)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990140 advisory. In the Linux kernel, the following vulnerability has been resolved: ocfs2: free inode when ocfs2getinitinode fails syzbot is reporting busy inodes after unmount, for...

5.5CVSS6.2AI score0.0025EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/31 12:30 a.m.5 views

EUVD-2023-60047

Nagios Network Analyzer versions prior to 2024R1 are vulnerable to cross-site scripting XSS via the Percentile Calculator menu. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in the context of a victim's browser...

5.1CVSS5.4AI score0.00466EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/10/29 12:25 a.m.4 views

SUSE CVE-2025-40062

In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/qm - set NULL to qm-debug.qmdiffregs When the initialization of qm-debug.accdiffreg fails, the probe process does not exit. However, after qm-debug.qmdiffregs is freed, it is not set to NULL. This can lead to a...

5.5CVSS6.5AI score0.00183EPSS
Exploits0References19
OSV
OSV
added 2025/10/28 12:15 p.m.2 views

DEBIAN-CVE-2025-40062

In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/qm - set NULL to qm-debug.qmdiffregs When the initialization of qm-debug.accdiffreg fails, the probe process does not exit. However, after qm-debug.qmdiffregs is freed, it is not set to NULL. This can lead to a...

5.2AI score0.00183EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/16 2:52 p.m.6 views

CVE-2025-60013

When a user attempts to initialize the rSeries FIPS module using a password with special shell metacharacters, the FIPS hardware security module HSM may fail to initialize. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

6.7CVSS7AI score0.00172EPSS
Exploits0References1
Rows per page
Query Builder