Lucene search
K

9097 matches found

ATTACKERKB
ATTACKERKB
added 2025/07/08 12:48 p.m.2 views

CVE-2025-21422

Cryptographic issue while processing crypto API calls, missing checks may lead to corrupted key usage or IV reuses...

7.8CVSS5.8AI score0.00088EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2025/07/08 12:0 a.m.4 views

libvpx security update

1.3.0-8.0.1 - Fixes CVE-2025-5283 vpxcodecencinitmulti fix double free on init fail Orabug: 38103810...

5.4CVSS7.4AI score0.00493EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/07/08 12:0 a.m.5 views

PT-2025-28647

Name of the Vulnerable Software and Affected Versions Git versions 2.43.7 through 2.50.1 Description Git contains a link following vulnerability stemming from inconsistent handling of carriage return characters in configuration files. This flaw allows attackers to execute arbitrary code via...

8.6CVSS8.4AI score0.02775EPSS
Exploits9References243
CNNVD
CNNVD
added 2025/07/08 12:0 a.m.4 views

Qualcomm Chipsets 加密问题漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A cryptographic issue vulnerability exists in Qualcomm Chipsets that stems from an encryption issue when handling cryptographic API calls, which could lead to corrupted key usage or IV reuse...

7.8CVSS6.7AI score0.00088EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/07/07 11:23 p.m.7 views

SUSE CVE-2025-38227

In the Linux kernel, the following vulnerability has been resolved: media: vidtv: Terminating the subsequent process of initialization failure syzbot reported a slab-use-after-free Read in vidtvmuxinit. 1 After PSI initialization fails, the si member is accessed again, resulting in this uaf. Afte...

7.8CVSS6.4AI score0.00149EPSS
Exploits0References23
RedHat Linux
RedHat Linux
added 2025/07/07 2:28 a.m.4 views

webkitgtk: Memory initialization issue possibly leading to memory disclosure

A memory initialization issue was addressed with improved memory handling. This issue is fixed in macOS Big Sur 11.3, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5. Processing maliciously crafted web content may result in the disclosure of process memory...

6.5CVSS6.7AI score0.01291EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/07/07 12:0 a.m.4 views

PT-2025-31075

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw in Comedi subdevice instruction handlers where data elements beyond the first insn-n elements may be accessed in certain cases. The do insn ioctl and do...

5.5CVSS6.6AI score0.00156EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/07/07 12:0 a.m.5 views

Vulnerability of components in page.h and init.c of the Linux operating system’s kernel, which allows a hacker to cause a service failure

The vulnerability of the page.h and init.c components in the Linux operating system’s kernel is related to memory initialization errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.2AI score0.0021EPSS
Exploits0References10Affected Software4
RedhatCVE
RedhatCVE
added 2025/07/06 2:14 p.m.2 views

CVE-2025-38227

In the Linux kernel, the following vulnerability has been resolved: media: vidtv: Terminating the subsequent process of initialization failure syzbot reported a slab-use-after-free Read in vidtvmuxinit. 1 After PSI initialization fails, the si member is accessed again, resulting in this uaf. Afte...

5.5CVSS6.3AI score0.00149EPSS
Exploits0References4
OSV
OSV
added 2025/07/04 9:30 p.m.5 views

GHSA-794X-8X6X-QPFC Zipkin Server vulnerable to Insecure Resource Initialization through its /heapdump endpoint

Zipkin through 3.5.1 has a /heapdump endpoint associated with the use of Spring Boot Actuator, a similar issue to CVE-2025-48927...

5.3CVSS9.4AI score0.00284EPSS
Exploits0References5
Github Security Blog
Github Security Blog
added 2025/07/04 9:30 p.m.10 views

Zipkin Server vulnerable to Insecure Resource Initialization through its /heapdump endpoint

Zipkin through 3.5.1 has a /heapdump endpoint associated with the use of Spring Boot Actuator, a similar issue to CVE-2025-48927...

5.3CVSS7.1AI score0.00284EPSS
Exploits0References5Affected Software1
SUSE CVE
SUSE CVE
added 2025/07/04 2:38 p.m.4 views

SUSE CVE-2025-38153

In the Linux kernel, the following vulnerability has been resolved: net: usb: aqc111: fix error handling of usbnet read calls Syzkaller, courtesy of syzbot, identified an error see report 1 in aqc111 driver, caused by incomplete sanitation of usb read calls' results. This problem is quite similar...

4.4CVSS6.3AI score0.00163EPSS
Exploits0References23
NVD
NVD
added 2025/07/04 2:15 p.m.21 views

CVE-2025-38231

In the Linux kernel, the following vulnerability has been resolved: nfsd: Initialize ssc before laundromatwork to prevent NULL dereference In nfs4statestartnet, laundromatwork may access nfsdssc through nfs4laundromat - nfsd4sscexpireumount. If nfsdssc isn't initialized, this can cause NULL point...

5.5CVSS0.0015EPSS
Exploits0References10
NVD
NVD
added 2025/07/04 2:15 p.m.7 views

CVE-2025-38227

In the Linux kernel, the following vulnerability has been resolved: media: vidtv: Terminating the subsequent process of initialization failure syzbot reported a slab-use-after-free Read in vidtvmuxinit. 1 After PSI initialization fails, the si member is accessed again, resulting in this uaf. Afte...

7.8CVSS0.00149EPSS
Exploits0References9
OSV
OSV
added 2025/07/04 2:15 p.m.8 views

AZL-64722 CVE-2025-38231 affecting package kernel for versions less than 6.6.96.1-1

In the Linux kernel, the following vulnerability has been resolved: nfsd: Initialize ssc before laundromatwork to prevent NULL dereference In nfs4statestartnet, laundromatwork may access nfsdssc through nfs4laundromat - nfsd4sscexpireumount. If nfsdssc isn't initialized, this can cause NULL point...

5.5CVSS6.8AI score0.0015EPSS
Exploits0References1
OSV
OSV
added 2025/07/04 2:15 p.m.11 views

AZL-64779 CVE-2025-38227 affecting package kernel for versions less than 6.6.96.1-1

In the Linux kernel, the following vulnerability has been resolved: media: vidtv: Terminating the subsequent process of initialization failure syzbot reported a slab-use-after-free Read in vidtvmuxinit. 1 After PSI initialization fails, the si member is accessed again, resulting in this uaf. Afte...

7.8CVSS6.3AI score0.00149EPSS
Exploits0References1
OSV
OSV
added 2025/07/04 2:15 p.m.2 views

DEBIAN-CVE-2025-38227

In the Linux kernel, the following vulnerability has been resolved: media: vidtv: Terminating the subsequent process of initialization failure syzbot reported a slab-use-after-free Read in vidtvmuxinit. 1 After PSI initialization fails, the si member is accessed again, resulting in this uaf. Afte...

7.8CVSS5.7AI score0.00149EPSS
Exploits0References1
OSV
OSV
added 2025/07/04 2:15 p.m.1 views

UBUNTU-CVE-2025-38227

In the Linux kernel, the following vulnerability has been resolved: media: vidtv: Terminating the subsequent process of initialization failure syzbot reported a slab-use-after-free Read in vidtvmuxinit. 1 After PSI initialization fails, the si member is accessed again, resulting in this uaf. Afte...

7.8CVSS6.2AI score0.00149EPSS
Exploits0References35
OSV
OSV
added 2025/07/04 2:15 p.m.3 views

UBUNTU-CVE-2025-38231

In the Linux kernel, the following vulnerability has been resolved: nfsd: Initialize ssc before laundromatwork to prevent NULL dereference In nfs4statestartnet, laundromatwork may access nfsdssc through nfs4laundromat - nfsd4sscexpireumount. If nfsdssc isn't initialized, this can cause NULL point...

5.5CVSS6.1AI score0.0015EPSS
Exploits0References41
OSV
OSV
added 2025/07/04 1:37 p.m.5 views

CVE-2025-38231 nfsd: Initialize ssc before laundromat_work to prevent NULL dereference

In the Linux kernel, the following vulnerability has been resolved: nfsd: Initialize ssc before laundromatwork to prevent NULL dereference In nfs4statestartnet, laundromatwork may access nfsdssc through nfs4laundromat - nfsd4sscexpireumount. If nfsdssc isn't initialized, this can cause NULL point...

5.5CVSS6.2AI score0.0015EPSS
Exploits0References12
Rows per page
Query Builder