Lucene search
K

9108 matches found

BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.7 views

The vulnerability of the nfs_fattr_init() function in the fs/nfs/inode.c module of the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the nfsfattrinit function in the fs/nfs/inode.c module of the Linux kernel is related to the use of an uninitialized resource. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.4AI score0.00253EPSS
Exploits0References19Affected Software7
RedHat Linux
RedHat Linux
added 2025/03/24 1:51 p.m.4 views

microcode_ctl: Improper initialization in UEFI firmware OutOfBandXML module

Improper initialization in UEFI firmware OutOfBandXML module in some IntelR Processors may allow a privileged user to potentially enable information disclosure via local access...

6.8CVSS5.8AI score0.00222EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2025/03/21 12:0 a.m.4 views

The vulnerability of the `bnxt_rdma_aux_device_init()` function in the `driver/net/ethernet/broadcom/bnxt/bnxt_ulp.c` module of the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the bnxtrdmaauxdeviceinit function in the driver/net/ethernet/broadcom/bnxt/bnxtulp.c file of the Linux kernel is related to code errors. Exploiting this vulnerability could allow an attacker to cause a service failure...

7.5CVSS6.6AI score0.00225EPSS
Exploits0References14Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/03/21 12:0 a.m.5 views

The vulnerability of the p9_fcall_init() function in the net/9p/client.c module of the 9P protocol implementation in the Linux operating system allows a hacker to induce a service failure.

The vulnerability of the p9fcallinit function in the net/9p/client.c module of the 9P protocol implementation in the Linux operating system is related to incorrect initialization of resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

7.5CVSS6.7AI score0.00228EPSS
Exploits0References25Affected Software5
BDU FSTEC
BDU FSTEC
added 2025/03/20 12:0 a.m.4 views

The vulnerability of the pci_epf_test_core_init() function in the drivers/pci/endpoint/functions/pci-epf-test.c module of the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the pciepftestcoreinit function in the drivers/pci/endpoint/functions/pci-epf-test.c module of the Linux kernel is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...

7.5CVSS6.1AI score0.00196EPSS
Exploits0References6Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/03/20 12:0 a.m.9 views

SUSE SLES15: kernel-livepatch-5_14_21-150400_24_122-default / etc (SUSE-SU-2025:0920-1)

The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:0920-1 advisory. This update for the Linux Kernel 5.14.21-15040024122 fixes several issues. The following security issues were fixed: - CVE-2024-46818:...

7.8CVSS7.3AI score0.00809EPSS
Exploits0References16
OSV
OSV
added 2025/03/19 9:33 a.m.8 views

SUSE-SU-2025:0924-1 Security update for the Linux Kernel (Live Patch 61 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-122231 fixes several issues. The following security issues were fixed: - CVE-2024-46818: drm/amd/display: Check gpioid before used as array index bsc1231204. - CVE-2024-50302: HID: core: zero-initialize the report buffer bsc1233679...

7.8CVSS8.1AI score0.00809EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/03/19 12:52 a.m.5 views

kernel: RDMA/srpt: Do not register event handler until srpt device is fully setup

In the Linux kernel, the following vulnerability has been resolved: RDMA/srpt: Do not register event handler until srpt device is fully setup Upon rare occasions, KASAN reports a use-after-free Write in srptrefreshport. This seems to be because an event handler is registered before the srpt devic...

7CVSS6.7AI score0.00235EPSS
Exploits0References5
Zero Day Initiative
Zero Day Initiative
added 2025/03/18 12:0 a.m.8 views

Autodesk AutoCAD CATPRODUCT File Parsing Uninitialized Variable Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Autodesk AutoCAD. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of...

7.8CVSS6.8AI score0.00224EPSS
Exploits0References1
SUSE Linux
SUSE Linux
added 2025/03/17 9:40 p.m.1 views

Security update for the Linux Kernel (Live Patch 62 for SLE 12 SP5)

This update for the Linux Kernel 4.12.14-122234 fixes one issue. The following security issue was fixed: CVE-2024-50302: HID: core: zero-initialize the report buffer bsc1233679. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or...

8.5CVSS7.6AI score0.00809EPSS
Exploits0References4
SUSE Linux
SUSE Linux
added 2025/03/17 5:33 p.m.8 views

Security update for the Linux Kernel RT (Live Patch 5 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506001017 fixes several issues. The following security issues were fixed: CVE-2024-56648: net: hsr: avoid potential out-of-bound access in fillframeinfo bsc1235452. CVE-2024-50302: HID: core: zero-initialize the report buffer bsc1233679. Patch Instructions:...

8.6CVSS7.8AI score0.00809EPSS
Exploits0References8
SUSE Linux
SUSE Linux
added 2025/03/17 4:3 p.m.1 views

Security update for the Linux Kernel RT (Live Patch 3 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506001011 fixes several issues. The following security issues were fixed: CVE-2024-46818: drm/amd/display: Check gpioid before used as array index bsc1231204. CVE-2024-46815: drm/amd/display: Check numvalidsets before accessing readerwmsets bsc1231196...

8.6CVSS7.8AI score0.00809EPSS
Exploits0References16
RedhatCVE
RedhatCVE
added 2025/03/15 2:25 a.m.11 views

CVE-2025-2149

A vulnerability was found in PyTorch 2.6.0+cu124. It has been rated as problematic. Affected by this issue is the function nnqSigmoid of the component Quantized Sigmoid Module. The manipulation of the argument scale/zeropoint leads to improper initialization. The attack needs to be approached...

2.5CVSS6.6AI score0.00233EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2025/03/13 12:0 a.m.5 views

The vulnerability of the nnq_Sigmoid() function in the Quantized Sigmoid Module framework of the PyTorch machine learning library allows attackers to exploit it to compromise the integrity of protected information.

The vulnerability of the nnqSigmoid function in the Quantized Sigmoid Module of the PyTorch machine learning framework is related to incorrect initialization of resources when processing parameters scale and zeropoint. Exploiting this vulnerability can allow attackers to compromise the integrity ...

2.5CVSS5.5AI score0.00233EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2025/03/12 3:33 p.m.21 views

CVE-2025-1960

CWE-1188: Initialization of a Resource with an Insecure Default vulnerability exists that could cause an attacker to execute unauthorized commands when a system’s default password credentials have not been changed on first use. The default username is not displayed correctly in the WebHMI interfa...

9.8CVSS0.00497EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/03/12 3:23 p.m.10 views

SUSE CVE-2025-21862

In the Linux kernel, the following vulnerability has been resolved: dropmonitor: fix incorrect initialization order Syzkaller reports the following bug: BUG: spinlock bad magic on CPU1, syz-executor.0/7995 lock: 0xffff88805303f3e0, .magic: 00000000, .owner: /-1, .ownercpu: 0 CPU: 1 PID: 7995 Comm...

5.5CVSS7.7AI score0.00209EPSS
Exploits0References16
RedhatCVE
RedhatCVE
added 2025/03/12 11:32 a.m.9 views

CVE-2025-2129

A vulnerability was found in Mage AI 0.9.75. It has been classified as problematic. This affects an unknown part. The manipulation leads to insecure default initialization of resource. It is possible to initiate the attack remotely. The complexity of an attack is rather high. The exploitability i...

6.3CVSS7.1AI score0.01045EPSS
Exploits1References1
OSV
OSV
added 2025/03/12 10:15 a.m.6 views

DEBIAN-CVE-2025-21862

In the Linux kernel, the following vulnerability has been resolved: dropmonitor: fix incorrect initialization order Syzkaller reports the following bug: BUG: spinlock bad magic on CPU1, syz-executor.0/7995 lock: 0xffff88805303f3e0, .magic: 00000000, .owner: /-1, .ownercpu: 0 CPU: 1 PID: 7995 Comm...

5.5CVSS5.7AI score0.00209EPSS
Exploits0References1
NVD
NVD
added 2025/03/12 10:15 a.m.18 views

CVE-2025-21862

In the Linux kernel, the following vulnerability has been resolved: dropmonitor: fix incorrect initialization order Syzkaller reports the following bug: BUG: spinlock bad magic on CPU1, syz-executor.0/7995 lock: 0xffff88805303f3e0, .magic: 00000000, .owner: /-1, .ownercpu: 0 CPU: 1 PID: 7995 Comm...

5.5CVSS0.00209EPSS
Exploits0References12
OSV
OSV
added 2025/03/12 10:15 a.m.13 views

AZL-58578 CVE-2025-21862 affecting package kernel for versions less than 5.15.179.1-1

In the Linux kernel, the following vulnerability has been resolved: dropmonitor: fix incorrect initialization order Syzkaller reports the following bug: BUG: spinlock bad magic on CPU1, syz-executor.0/7995 lock: 0xffff88805303f3e0, .magic: 00000000, .owner: /-1, .ownercpu: 0 CPU: 1 PID: 7995 Comm...

5.5CVSS6.4AI score0.00209EPSS
Exploits0References1
Rows per page
Query Builder