Lucene search
K

412 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/25 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2018-12467

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Authorized users of the openbuildservice before 2.9.4 could delete packages by using a malicious request against projects having the OBS:InitializeDevelPackage...

6.5CVSS6.6AI score0.00645EPSS
Exploits0References2
OSV
OSV
added 2025/08/22 4:15 p.m.1 views

DEBIAN-CVE-2025-38675

In the Linux kernel, the following vulnerability has been resolved: xfrm: state: initialize stateptrs earlier in xfrmstatefind In case of preemption, xfrmstatelookat will find a different pcpuid and look up states for that other CPU. If we matched a state for CPU2 in the statecache while the look...

4.7CVSS4.8AI score0.00101EPSS
Exploits0References1
CVE
CVE
added 2025/08/22 4:4 p.m.29 views

CVE-2025-38675

CVE-2025-38675 affects the Linux kernel xfrm subsystem. The issue arises when preemption causes xfrm_state_look_at to search on a different pcpu (CPU2 vs CPU1); if a state for CPU2 is found in the state_cache during the lookup, the code may enter the acquire block with state_ptrs not initialized....

4.7CVSS6.4AI score0.00101EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2025/08/22 4:4 p.m.6 views

CVE-2025-38675

In the Linux kernel, the following vulnerability has been resolved: xfrm: state: initialize stateptrs earlier in xfrmstatefind In case of preemption, xfrmstatelookat will find a different pcpuid and look up states for that other CPU. If we matched a state for CPU2 in the statecache while the look...

4.7CVSS4.8AI score0.00101EPSS
Exploits0
OSV
OSV
added 2025/08/19 5:15 p.m.5 views

UBUNTU-CVE-2025-38613

In the Linux kernel, the following vulnerability has been resolved: staging: gpib: fix unset padding field copy back to userspace The introduction of a padding field in the gpibboardinfoioctl is showing up as initialized data on the stack frame being copyied back to userspace in function...

5.5CVSS5.7AI score0.00128EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2025/08/19 5:3 p.m.5 views

CVE-2025-38579

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix KMSAN uninit-value in extentinfo usage KMSAN reported a use of uninitialized value in isextentmergeable and isbackmergeable via the read extent tree path. The root cause is that getreadextentinfo only initializes three...

7.8CVSS6.1AI score0.00153EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/15 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2024-26791

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - btrfs: dev-replace: properly validate device names There's a syzbot report that device name buffers passed to device replace are not properly checked for string...

7.1CVSS6.8AI score0.00247EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/08 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-22110

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: netfilter: nfnetlinkqueue: Initialize ctx to avoid memory allocation error It is possible th...

5.5CVSS5.9AI score0.0014EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2025/08/07 7:0 a.m.4 views

nfsd: Initialize ssc before laundromat_work to prevent NULL dereference

...

5.5CVSS7AI score0.0015EPSS
Exploits0
OSV
OSV
added 2025/07/25 1:15 p.m.5 views

DEBIAN-CVE-2025-38387

In the Linux kernel, the following vulnerability has been resolved: RDMA/mlx5: Initialize objevent-objsublist before xainsert The objevent may be loaded immediately after inserted, then if the listhead is not initialized then we may get a poisonous pointer. This fixes the crash below: mlx5core...

5.5CVSS5.4AI score0.0017EPSS
Exploits0References1
OSV
OSV
added 2025/07/17 8:15 p.m.4 views

AZL-65648 CVE-2025-23266 affecting package nvidia-container-toolkit for versions less than 1.17.8-1

NVIDIA Container Toolkit for all platforms contains a vulnerability in some hooks used to initialize the container, where an attacker could execute arbitrary code with elevated permissions. A successful exploit of this vulnerability might lead to escalation of privileges, data tampering,...

9CVSS7.7AI score0.02541EPSS
Exploits4References1
Microsoft CVE
Microsoft CVE
added 2025/07/11 7:0 a.m.3 views

usb: gadget: aspeed: Add NULL pointer check in ast_vhub_init_dev()

...

5.5CVSS7.2AI score0.00244EPSS
Exploits0
OSV
OSV
added 2025/07/10 8:15 a.m.1 views

DEBIAN-CVE-2025-38319

In the Linux kernel, the following vulnerability has been resolved: drm/amd/pp: Fix potential NULL pointer dereference in atomctrlinitializemcregtable The function atomctrlinitializemcregtable and atomctrlinitializemcregtablev22 does not check the return value of smuatomgetdatatable. If...

5.5CVSS5.5AI score0.00145EPSS
Exploits0References1
CVE
CVE
added 2025/07/10 7:42 a.m.77 views

CVE-2025-38319

CVE-2025-38319 affects the Linux kernel’s DRM/AMD/PP path. The vulnerability arises because atomctrl_initialize_mc_reg_table() and atomctrl_initialize_mc_reg_table_v2_2() do not validate the return value of smu_atom_get_data_table(); if that call fails to obtain vram_info and returns NULL, a NULL...

5.5CVSS6.5AI score0.00145EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2025/07/04 2:15 p.m.3 views

UBUNTU-CVE-2025-38205

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid divide by zero by initializing dummy pitch to 1 Why If the dummy values in populatedummydmlsurfacecfg aren't updated then they can lead to a divide by zero in downstream callers like CalculateVMAndRowBytes...

5.5CVSS5.7AI score0.00129EPSS
Exploits0References11
Vulnrichment
Vulnrichment
added 2025/06/16 6:0 a.m.4 views

CVE-2025-6109 javahongxi whatsmars InitializrController.java initialize path traversal

A vulnerability was found in javahongxi whatsmars 2021.4.0. It has been rated as problematic. Affected by this issue is the function initialize of the file /whatsmars-archetypes/whatsmars-initializr/src/main/java/org/hongxi/whatsmars/initializr/controller/InitializrController.java. The manipulati...

5.3CVSS4.5AI score0.00443EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/23 3:17 a.m.6 views

CVE-2023-23298

The Toybox.Graphics.BufferedBitmap.initialize API method in CIQ API version 2.3.0 through 4.1.7 does not validate its parameters, which can result in integer overflows when allocating the underlying bitmap buffer. A malicious application could call the API method with specially crafted parameters...

9.8CVSS7AI score0.01456EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:42 a.m.4 views

CVE-2023-23300

The Toybox.Cryptography.Cipher.initialize API method in CIQ API version 3.0.0 through 4.1.7 does not validate its parameters, which can result in buffer overflows when copying data. A malicious application could call the API method with specially crafted parameters and hijack the execution of the...

9.8CVSS7.2AI score0.01274EPSS
Exploits2References1
OSV
OSV
added 2025/05/09 6:45 a.m.13 views

CVE-2025-37887 pds_core: handle unsupported PDS_CORE_CMD_FW_CONTROL result

In the Linux kernel, the following vulnerability has been resolved: pdscore: handle unsupported PDSCORECMDFWCONTROL result If the FW doesn't support the PDSCORECMDFWCONTROL command the driver might at the least print garbage and at the worst crash when the user runs the "devlink dev info" devlink...

5.5CVSS6.1AI score0.0022EPSS
Exploits0References7
OSV
OSV
added 2025/05/08 7:15 a.m.2 views

DEBIAN-CVE-2025-37805

In the Linux kernel, the following vulnerability has been resolved: sound/virtio: Fix cancelsync warnings on uninitialized workstructs Betty reported hitting the following warning: 8.709131 T221 WARNING: CPU: 2 PID: 221 at kernel/workqueue.c:4182 ... 8.713282 T221 Call trace: 8.713365 T221...

5.5CVSS5.8AI score0.00161EPSS
Exploits0References1
Rows per page
Query Builder