1832 matches found
PT-2026-7286
Name of the Vulnerable Software and Affected Versions IntelR OptaneTM PMem management software versions CR MGMT 01.00.00.3584, CR MGMT 02.00.00.4052, CR MGMT 03.00.00.0538 Description The software has default permissions that may allow a privilege escalation. An unprivileged software adversary wi...
Robust Vision Systems for Connected and Autonomous Vehicles: Security Challenges and Attack Vectors
This article investigates the robustness of vision systems in Connected and Autonomous Vehicles CAVs, which is critical for developing Level-5 autonomous driving capabilities. Safe and reliable CAV navigation undeniably depends on robust vision systems that enable accurate detection of objects,...
CVE-2025-15545
The backup restore function does not properly validate unexpected or unrecognized tags within the backup file. When such a crafted file is restored, the injected tag is interpreted by a shell, allowing execution of arbitrary commands with root privileges. Successful exploitation allows the attack...
CVE-2025-14988 Incorrect Permission Assignment for Critical Resource vulnerability in iba Systems ibaPDA
A security issue has been identified in ibaPDA that could allow unauthorized actions on the file system under certain conditions. This may impact the confidentiality, integrity, or availability of the system...
CVE-2025-14988 Incorrect Permission Assignment for Critical Resource vulnerability in iba Systems ibaPDA
A security issue has been identified in ibaPDA that could allow unauthorized actions on the file system under certain conditions. This may impact the confidentiality, integrity, or availability of the system...
CVE-2026-21955
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromis...
ROS-20260121-73-0042
A vulnerability in the nfttunnel component of the Linux operating system kernel is related to an operation exceeding buffer boundaries in memory. Exploitation of the vulnerability may allow an intruder to affect confidentiality, integrity and availability of protected information...
CVE-2026-21955
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromis...
CVE-2026-21957
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization component: Core. Supported versions that are affected are 7.1.14 and 7.2.4. Difficult to exploit vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to...
ROS-20260119-7304
A vulnerability in the ppsgpioprobe function of the drivers/pps/clients/pps-gpio.c module of the Linux kernel PPS client support driver is related to the reuse of previously freed memory. Exploitation of the vulnerability may allow an attacker to affect confidentiality, integrity and availability...
ROS-20260119-7366
A vulnerability in the l3mdevl3out function of the include/net/l3mdev.h module of the Linux kernel is related to the reuse of previously freed memory. Exploitation of the vulnerability may allow an intruder to affect confidentiality, integrity and availability of protected information...
ROS-20260119-7328
A vulnerability in the nbddisconnectandput function of the drivers/block/nbd.c module of the Linux kernel block device support driver is related to the reuse of previously freed memory. Exploitation of the vulnerability may allow an intruder to affect confidentiality, integrity and availability o...
ROS-20260119-7356
A vulnerability in the arpxmitfinish function of the net/ipv4/arp.c module of the Linux kernel IPv4 protocol implementation is related to the reuse of previously freed memory. Exploitation of the vulnerability may allow an intruder to affect confidentiality, integrity and availability of protecte...
ROS-20260119-7357
A vulnerability in the neighnotify function of the net/core/neighbour.c module of the Linux kernel's network functions support is related to the reuse of previously freed memory. Exploitation of the vulnerability may allow an intruder to affect confidentiality, integrity and availability of...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004311)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004311 advisory. A flaw was found in the Linux kernels futex implementation. This flaw allows a local attacker to corrupt system memory or escalate their privileges when creating a...
CVE-2026-0492
SAP HANA database is vulnerable to privilege escalation allowing an attacker with valid credentials of any user to switch to another user potentially gaining administrative access. This exploit could result in a total compromise of the system�s confidentiality, integrity, and availability...
CVE-2026-0492
SAP HANA database is vulnerable to privilege escalation allowing an attacker with valid credentials of any user to switch to another user potentially gaining administrative access. This exploit could result in a total compromise of the system�s confidentiality, integrity, and availability...
CVE-2026-0501 SQL Injection Vulnerability in SAP S/4HANA Private Cloud and On-Premise (Financials � General Ledger)
Due to insufficient input validation in SAP S/4HANA Private Cloud and On-Premise Financials General Ledger, an authenticated user could execute crafted SQL queries to read, modify, and delete backend database data. This leads to a high impact on the confidentiality, integrity, and availability of...
ROS-20260113-7357
A vulnerability in the prepareuprobebuffer function of the kernel/trace/traceuprobe.c module of the Linux kernel is related to the reuse of previously freed memory. Exploitation of the vulnerability may allow an intruder to affect confidentiality, integrity and availability of protected informati...
ROS-20260113-7316
Vulnerability of astudcgetstatus function in drivers/usb/gadget/udc/aspeedudc.c module of usb gadget driver of Linux kernel is related to incorrect index calculation. Exploitation of the vulnerability may allow an intruder to affect confidentiality, integrity and availability of protected...