1832 matches found
CVE-2026-0438
A System Management Mode SMM handler could perform a callout to code located in non-SMM/untrusted memory. A highly privileged attacker could, with active user interaction and under high complexity and present preconditions, trigger execution of attacker-controlled code in SMM, potentially...
AMD Ryzen和AMD Athlon 安全漏洞
AMD Ryzen and AMD Athlon are both products of American semiconductor company AMD. AMD Ryzen is a type of Central Processing Unit CPU. AMD Athlon is a series of microprocessors. Both AMD Ryzen and AMD Athlon have security vulnerabilities. These vulnerabilities stem from improper protection of...
PT-2026-41244
An unchecked return value within the AMD Platform Management Framework PMF could allow an attacker to read or modify an arbitrary address potentially resulting in loss of confidentiality, integrity, or availability...
CVE-2026-0502
Due to insufficient CSRF protection in SAP BusinessObjects Business Intelligence Platform ,an authenticated user could be tricked by an attacker to send unintended requests to the web server. This has low impact on integrity and availability of the application. There is no impact on confidentiali...
SUSE CVE-2025-3770
EDK2 contains a vulnerability in BIOS where an attacker may cause “Protection Mechanism Failure” by local access. Successful exploitation of this vulnerability will lead to arbitrary code execution and impact Confidentiality, Integrity, and Availability...
PT-2026-39922
Name of the Vulnerable Software and Affected Versions SAP Commerce cloud affected versions not specified Description Improper Spring Security configuration allows an unauthenticated user to perform malicious configuration upload and code injection. This can result in arbitrary server-side code...
CVE-2026-6994
A flaw was found in Envoy. A remote attacker could exploit a weakness in the Query Parameter Handler component, specifically within the params.add function. This vulnerability allows for injection, which may lead to limited impacts on the confidentiality, integrity, and availability of the affect...
PT-2026-34329
Name of the Vulnerable Software and Affected Versions camel-infinispan affected versions not specified Description Unsafe deserialization exists in the ProtoStream remote aggregation repository. A remote attacker with low privileges can send specially crafted data to achieve arbitrary code...
EUVD-2023-44280
In products of the MSE6 product-family by Festo a remote authenticated, low privileged attacker could use functions of undocumented test mode which could lead to a complete loss of confidentiality, integrity and availability...
CVE-2023-3634
In products of the MSE6 product-family by Festo a remote authenticated, low privileged attacker could use functions of undocumented test mode which could lead to a complete loss of confidentiality, integrity and availability...
CVE-2023-3634 Festo: MSE6-C2M/D2M/E2M Incomplete User Documentation of Remote Accessible Functions
In products of the MSE6 product-family by Festo a remote authenticated, low privileged attacker could use functions of undocumented test mode which could lead to a complete loss of confidentiality, integrity and availability...
ROS-20260414-73-0058
A vulnerability in the ieee80211rxhaction function in the net/mac80211/rx.c module of the mac80211 stack implementation of the Linux operating system kernel is related to memory reads outside of the allocated buffer. Exploitation of the vulnerability may allow an intruder to affect confidentialit...
ROS-20260414-73-0033
A vulnerability in the loadbalance function in the kernel/sched/fair.c module of the Linux kernel resource accounting system is associated with state management errors. Exploitation of the vulnerability may allow an intruder to affect confidentiality, integrity and availability of protected...
ROS-20260403-73-0026
A vulnerability in the fbdev component of the Linux operating system kernel is related to writing outside of buffer boundaries. Exploitation of the vulnerability allows an attacker to affect confidentiality, integrity and availability of protected information...
ROS-20260403-73-0010
A vulnerability in the proc component of the Linux operating system kernel is related to the use of memory after it has been freed. Exploitation of the vulnerability allows an intruder to affect confidentiality, integrity and availability of protected information...
ROS-20260403-73-0037
A vulnerability in the doregisterframebuffer function of the fbdev/core/fbmem.c component of the Linux kernel is related to writing outside the buffer boundaries. Exploitation of the vulnerability allows an attacker to violate the integrity and availability of protected information...
ROS-20260403-73-0033
A vulnerability in the jfs/file.c component of the Linux operating system kernel is related to insufficient input data validation. Exploitation of the vulnerability allows an intruder to affect confidentiality, integrity and availability of protected information...
CVE-2026-2273
CWE-94: Improper Control of Generation of Code 'Code Injection' vulnerability exist that could cause execution of untrusted commands on the engineering workstation which could result in a limited compromise of the workstation and a potential loss of Confidentiality, Integrity and Availability of...
ROS-20260324-73-0010
A vulnerability in the f2fs component of the Linux operating system kernel is related to the use of memory after it has been freed. Exploitation of the vulnerability allows an attacker to affect confidentiality, integrity and availability of protected information...
ROS-20260324-73-0015
A vulnerability in the ipv6 component of the Linux operating system kernel is associated with the execution of a loop with an inaccessible exit condition. Exploitation of the vulnerability allows an attacker to affect confidentiality, integrity and availability of protected information...