Lucene search
K

9106 matches found

CVE
CVE
added 2025/03/09 8:0 p.m.83 views

CVE-2025-2129

Mage AI 0.9.75 is associated with an insecure default initialization of a resource (insecure default authentication setup) that could enable a remote attack. Documents describe a network-vector, high attack complexity, and partial confidentiality/integrity/availability impact. The exploitability ...

6.3CVSS5.5AI score0.01045EPSS
Exploits1References4
Cvelist
Cvelist
added 2025/03/09 8:0 p.m.28 views

CVE-2025-2129 Mage AI insecure default initialization of resource

A vulnerability was found in Mage AI 0.9.75. It has been classified as problematic. This affects an unknown part. The manipulation leads to insecure default initialization of resource. It is possible to initiate the attack remotely. The complexity of an attack is rather high. The exploitability i...

6.3CVSS0.01045EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2025/03/09 8:0 p.m.15 views

CVE-2025-2129 Mage AI insecure default initialization of resource

A vulnerability was found in Mage AI 0.9.75. It has been classified as problematic. This affects an unknown part. The manipulation leads to insecure default initialization of resource. It is possible to initiate the attack remotely. The complexity of an attack is rather high. The exploitability i...

6.3CVSS7.1AI score0.01045EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/03/09 12:0 a.m.3 views

Mage AI 安全漏洞

Mage AI is a Mage open source intelligent program for building, running and managing data pipelines. A security vulnerability exists in Mage AI version 0.9.75 that stems from insecure resource initialization...

6.3CVSS6AI score0.01045EPSS
Exploits1References6
Microsoft CVE
Microsoft CVE
added 2025/03/08 8:0 a.m.2 views

Drivers: hv: util: Avoid accessing a ringbuffer not initialized yet

...

5.5CVSS7.4AI score0.00207EPSS
Exploits0
CVE
CVE
added 2025/03/07 9:10 a.m.70 views

CVE-2025-21842

CVE-2025-21842 concerns the Linux kernel amdkfd code: a destructor for GTT memory (amdgpu_amdkfd_free_gtt_mem) takes void** but may be called with a void* due to implicit casting, causing errors during execution. The issue was fixed in the kernel (as described in the Astra Linux advisory and the ...

5.5CVSS7.1AI score0.00207EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2025/03/07 9:10 a.m.16 views

CVE-2025-21842 amdkfd: properly free gang_ctx_bo when failed to init user queue

In the Linux kernel, the following vulnerability has been resolved: amdkfd: properly free gangctxbo when failed to init user queue The destructor of a gtt bo is declared as void amdgpuamdkfdfreegttmemstruct amdgpudevice adev, void memobj; Which takes void as the second parameter. GCC allows passi...

0.00207EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/03/07 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the amdkfd module not properly releasing gangctxbo when it fails to initialize a user queue...

5.5CVSS6AI score0.00207EPSS
Exploits0References4
OSV
OSV
added 2025/03/06 5:15 p.m.1 views

DEBIAN-CVE-2024-58081

In the Linux kernel, the following vulnerability has been resolved: clk: mmp2: call pmgenpdinit only after genpd.name is set Setting the genpd's struct device's name with devsetname is happening within pmgenpdinit. If it remains NULL, things can blow up later, such as when crafting the devfs...

5.5CVSS5.6AI score0.00164EPSS
Exploits0References1
OSV
OSV
added 2025/03/06 5:15 p.m.1 views

UBUNTU-CVE-2024-58081

In the Linux kernel, the following vulnerability has been resolved: clk: mmp2: call pmgenpdinit only after genpd.name is set Setting the genpd's struct device's name with devsetname is happening within pmgenpdinit. If it remains NULL, things can blow up later, such as when crafting the devfs...

5.5CVSS5.7AI score0.00164EPSS
Exploits0References19
NVD
NVD
added 2025/03/06 4:15 p.m.8 views

CVE-2024-58075

In the Linux kernel, the following vulnerability has been resolved: crypto: tegra - do not transfer req when tegra init fails The tegracmacinit or tegrashainit function may return an error when memory is exhausted. It should not transfer the request when they return an error...

5.5CVSS0.00165EPSS
Exploits0References3
OSV
OSV
added 2025/03/06 4:15 p.m.1 views

DEBIAN-CVE-2024-58075

In the Linux kernel, the following vulnerability has been resolved: crypto: tegra - do not transfer req when tegra init fails The tegracmacinit or tegrashainit function may return an error when memory is exhausted. It should not transfer the request when they return an error...

5.5CVSS5.6AI score0.00165EPSS
Exploits0References1
OSV
OSV
added 2025/03/06 4:15 p.m.1 views

UBUNTU-CVE-2024-58075

In the Linux kernel, the following vulnerability has been resolved: crypto: tegra - do not transfer req when tegra init fails The tegracmacinit or tegrashainit function may return an error when memory is exhausted. It should not transfer the request when they return an error...

5.5CVSS6.5AI score0.00165EPSS
Exploits0References9
OSV
OSV
added 2025/03/06 4:13 p.m.6 views

CVE-2024-58081 clk: mmp2: call pm_genpd_init() only after genpd.name is set

In the Linux kernel, the following vulnerability has been resolved: clk: mmp2: call pmgenpdinit only after genpd.name is set Setting the genpd's struct device's name with devsetname is happening within pmgenpdinit. If it remains NULL, things can blow up later, such as when crafting the devfs...

5.5CVSS6AI score0.00164EPSS
Exploits0References6
CVE
CVE
added 2025/03/06 4:13 p.m.94 views

CVE-2024-58081

CVE-2024-58081 : In the Linux kernel, a race/ordering flaw in the power-domain (GENPD) debug path can dereference NULL if the genpd struct device name isn’t set before pm_genpd_init() runs. The issue arises when dev_set_name() for the GENPD device occurs inside pm_genpd_init(), and a NULL genpd n...

5.5CVSS7AI score0.00164EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2025/03/06 4:13 p.m.10 views

CVE-2024-58081 clk: mmp2: call pm_genpd_init() only after genpd.name is set

In the Linux kernel, the following vulnerability has been resolved: clk: mmp2: call pmgenpdinit only after genpd.name is set Setting the genpd's struct device's name with devsetname is happening within pmgenpdinit. If it remains NULL, things can blow up later, such as when crafting the devfs...

0.00164EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2025/03/06 4:13 p.m.8 views

CVE-2024-58081

In the Linux kernel, the following vulnerability has been resolved: clk: mmp2: call pmgenpdinit only after genpd.name is set Setting the genpd's struct device's name with devsetname is happening within pmgenpdinit. If it remains NULL, things can blow up later, such as when crafting the devfs...

5.5CVSS5.6AI score0.00164EPSS
Exploits0
CVE
CVE
added 2025/03/06 4:4 p.m.61 views

CVE-2024-58075

CVE-2024-58075: In the Linux kernel, crypto: tegra may transfer a request even when tegra_cmac_init/tegra_sha_init returns an error (e.g., memory exhaustion). A patch in kernel code fixes that the request must not be transferred on init failure. Affected: Linux kernel crypto/tegra components; imp...

5.5CVSS7.2AI score0.00165EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2025/03/06 4:4 p.m.9 views

CVE-2024-58075 crypto: tegra - do not transfer req when tegra init fails

In the Linux kernel, the following vulnerability has been resolved: crypto: tegra - do not transfer req when tegra init fails The tegracmacinit or tegrashainit function may return an error when memory is exhausted. It should not transfer the request when they return an error...

0.00165EPSS
Exploits0References3
OSV
OSV
added 2025/03/06 4:4 p.m.4 views

CVE-2024-58075 crypto: tegra - do not transfer req when tegra init fails

In the Linux kernel, the following vulnerability has been resolved: crypto: tegra - do not transfer req when tegra init fails The tegracmacinit or tegrashainit function may return an error when memory is exhausted. It should not transfer the request when they return an error...

5.5CVSS6.2AI score0.00165EPSS
Exploits0References6
Rows per page
Query Builder