Lucene search
K

9099 matches found

OSV
OSV
added 2025/05/20 5:15 p.m.2 views

UBUNTU-CVE-2025-37971

In the Linux kernel, the following vulnerability has been resolved: staging: bcm2835-camera: Initialise dev in v4l2dev Commit 42a2f6664e18 "staging: vc04services: Move global gstate to vchiqstate" changed mmalinit to pass dev-v4l2dev.dev to vchiqmmalinit, however nothing iniitialised dev-v4l2dev,...

5.5CVSS6.5AI score0.00146EPSS
Exploits0References9
Cvelist
Cvelist
added 2025/05/20 4:47 p.m.18 views

CVE-2025-37971 staging: bcm2835-camera: Initialise dev in v4l2_dev

In the Linux kernel, the following vulnerability has been resolved: staging: bcm2835-camera: Initialise dev in v4l2dev Commit 42a2f6664e18 "staging: vc04services: Move global gstate to vchiqstate" changed mmalinit to pass dev-v4l2dev.dev to vchiqmmalinit, however nothing iniitialised dev-v4l2dev,...

0.00146EPSS
Exploits0References3
OSV
OSV
added 2025/05/20 4:47 p.m.11 views

CVE-2025-37971 staging: bcm2835-camera: Initialise dev in v4l2_dev

In the Linux kernel, the following vulnerability has been resolved: staging: bcm2835-camera: Initialise dev in v4l2dev Commit 42a2f6664e18 "staging: vc04services: Move global gstate to vchiqstate" changed mmalinit to pass dev-v4l2dev.dev to vchiqmmalinit, however nothing iniitialised dev-v4l2dev,...

5.5CVSS6.5AI score0.00146EPSS
Exploits0References6
OSV
OSV
added 2025/05/20 4:15 p.m.1 views

DEBIAN-CVE-2025-37895

In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix error handling path in bnxtinitchip WARNON is triggered in flushwork if bnxtinitchip fails because we call cancelworksync on dim work that has not been initialized. WARNING: CPU: 37 PID: 5223 at kernel/workqueue.c:420...

5.5CVSS5.7AI score0.00157EPSS
Exploits0References1
OSV
OSV
added 2025/05/20 4:15 p.m.2 views

UBUNTU-CVE-2025-37895

In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix error handling path in bnxtinitchip WARNON is triggered in flushwork if bnxtinitchip fails because we call cancelworksync on dim work that has not been initialized. WARNING: CPU: 37 PID: 5223 at kernel/workqueue.c:420...

5.5CVSS6.2AI score0.00157EPSS
Exploits0References12
Positive Technologies
Positive Technologies
added 2025/05/20 12:0 a.m.4 views

PT-2025-22157 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel has been resolved, related to the bnxt en driver. The issue occurs when the bnxt init chip function fails, triggering a WARN ON in flush work becaus...

6.7AI score0.09796EPSS
Exploits3References60
NVD
NVD
added 2025/05/19 3:15 p.m.6 views

CVE-2025-3908

The configuration initialization tool in OpenVPN 3 Linux v20 through v24 on Linux allows a local attacker to use symlinks pointing at an arbitrary directory which will change the ownership and permissions of that destination directory...

6.2CVSS0.00182EPSS
Exploits0References2
OSV
OSV
added 2025/05/19 3:15 p.m.9 views

CVE-2025-3908

The configuration initialization tool in OpenVPN 3 Linux v20 through v24 on Linux allows a local attacker to use symlinks pointing at an arbitrary directory which will change the ownership and permissions of that destination directory...

6.2CVSS6.5AI score0.00182EPSS
Exploits0References2
OSV
OSV
added 2025/05/19 3:15 p.m.3 views

UBUNTU-CVE-2025-3908

The configuration initialization tool in OpenVPN 3 Linux v20 through v24 on Linux allows a local attacker to use symlinks pointing at an arbitrary directory which will change the ownership and permissions of that destination directory...

6.2CVSS6AI score0.00182EPSS
Exploits0References3
CVE
CVE
added 2025/05/19 2:59 p.m.57 views

CVE-2025-3908

OpenVPN 3 Linux affected versions v20–v24 on Linux are vulnerable to a local privilege escalation where a attacker can exploit symlinks to point at an arbitrary directory, changing ownership and permissions of the destination directory. Root cause: configuration initialization tool does not valid...

6.2CVSS6.4AI score0.00182EPSS
Exploits0References2Affected Software1
AstraLinux
AstraLinux
added 2025/05/19 2:38 p.m.3 views

Astra Linux - уязвимость в linux-5.10

In the Linux kernel, the following vulnerability has been resolved: s390/cpumf: Fix double free on error in cpumfpmueventinit In PMU event initialization functions - cpumsfpmueventinit - cpumfpmueventinit - cfdiageventinit the partially created event had to be removed when an error was detected...

6.3AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/05/19 12:0 a.m.7 views

PT-2025-21991 · Openvpn · Openvpn 3 Linux

Name of the Vulnerable Software and Affected Versions: OpenVPN 3 Linux versions 20 through 24 Description: The configuration initialization tool in OpenVPN 3 Linux allows a local attacker to use symlinks pointing at an arbitrary directory, which will change the ownership and permissions of that...

6.2CVSS6.2AI score0.00182EPSS
Exploits0References13
BDU FSTEC
BDU FSTEC
added 2025/05/19 12:0 a.m.4 views

The vulnerability of programming tools for balancing and managing connections in Pgpool-II and HAProxy for PostgreSQL databases lies in their insecure resource initialization, which allows attackers to gain unauthorized access to the database.

The vulnerabilities of the Pgpool-II and HAProxy software for PostgreSQL databases in terms of connection balancing and management involve insecure resource initialization. Exploiting these vulnerabilities can allow an attacker, operating remotely, to gain unauthorized access to the database with...

9.6CVSS5.5AI score0.0044EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/05/16 12:0 a.m.7 views

The vulnerability of the VLAN (Virtual Local Area Network) technology in the microprogramming-based industrial wireless switches ABB ARG600, ARP600, ARR600, and ARC600 allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the VLAN Virtual Local Area Network technology in the microprogramming-based industrial wireless switches ABB ARG600, ARP600, ARR600, and ARC600 is related to incorrect initialization of resources. Exploiting this vulnerability can allow an attacker to compromise the...

10CVSS7.8AI score0.00801EPSS
Exploits0References2Affected Software4
BDU FSTEC
BDU FSTEC
added 2025/05/16 12:0 a.m.4 views

The vulnerability of the AES-128-CBC encryption algorithm in the microprogramming-based router software Tenda RX2 Pro allows a hacker to disclose the protected information.

The vulnerability of the AES-128-CBC encryption algorithm in the microprogramming-based router software Tenda RX2 Pro relates to the repeated use of the Initialization Vector IV during the generation of cryptographic keys. Exploiting this vulnerability could allow a malicious actor to disclose th...

6.5CVSS5.5AI score0.00266EPSS
Exploits1References2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/05/14 5:34 a.m.29 views

Security Bulletin: Vulnerability in [All] linux (Kernel) affects IBM Integrated Analytics System (Sailfish) [11 CVES].

Summary The All linux Kernel package is used by IBM Integrated Analytics System . IBM Integrated Analytics System has addressed the applicable CVE CVE-2024-41093, CVE-2024-42079, CVE-2024-45018, CVE-2024-40961, CVE-2024-35839, CVE-2024-38608, CVE-2024-38586, CVE-2024-39503, CVE-2024-40984,...

7.8CVSS6.8AI score0.00286EPSS
Exploits0Affected Software1
Packet Storm News
Packet Storm News
added 2025/05/14 12:0 a.m.3 views

Privacy-Preserving Runtime Verification

Runtime verification offers scalable solutions to improve the safety and reliability of systems. However, systems that require verification or monitoring by a third party to ensure compliance with a specification might contain sensitive information, causing privacy concerns when usual runtime...

6.8AI score
Exploits0
NVD
NVD
added 2025/05/13 9:16 p.m.4 views

CVE-2025-24495

Incorrect initialization of resource in the branch prediction unit for some IntelR Core™ Ultra Processors may allow an authenticated user to potentially enable information disclosure via local access...

6.8CVSS0.00159EPSS
Exploits0References2
OSV
OSV
added 2025/05/13 9:16 p.m.6 views

CVE-2025-24495

Incorrect initialization of resource in the branch prediction unit for some IntelR Core™ Ultra Processors may allow an authenticated user to potentially enable information disclosure via local access...

6.1AI score
Exploits0References1
Cvelist
Cvelist
added 2025/05/13 9:2 p.m.12 views

CVE-2025-24495

Incorrect initialization of resource in the branch prediction unit for some IntelR Core™ Ultra Processors may allow an authenticated user to potentially enable information disclosure via local access...

6.8CVSS0.00159EPSS
Exploits0References1
Rows per page
Query Builder