CVE-2026-46248

CVE-2026-46248 affects the Linux kernel driver stack for wifi/ath12k. The root cause occurs when an arvif is initialized in non-AP STA mode but MLO preparation fails before arvif->is_created becomes true. The error path deletes links only if arvif->is_created is true, leaving a stale ahvif-...

CVE-2026-23246

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: bounds-check linkid in ieee80211mlreconfiguration linkid is taken from the ML Reconfiguration element control & 0x000f, so it can be 0..15. linkremovaltimeout has IEEE80211MLDMAXNUMLINKS 15 elements, so index 15 i...

CVE-2023-40674

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Lasso Simple URLs – Link Cloaking, Product Displays, and Affiliate Link Management allows Stored XSS.This issue affects Simple URLs – Link Cloaking, Product Displays, and Affiliate Link Management:...

Exploit for CVE-2025-63895

JXLInfotainment-CVE-2025-63895 CVE-2025-63896 Attack...

Exploit for CVE-2025-63895

JXLInfotainmentCVE-2025-63895 CVE-2025-63895 Attack N...

CVE-2022-50533 wifi: mac80211: mlme: fix null-ptr deref on failed assoc

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: mlme: fix null-ptr deref on failed assoc If association to an AP without a link 0 fails, then we crash in tracing because it assumes that either apmldaddr or link 0 BSS is valid, since we clear sdata-vif.validlink...

EUVD-2020-27780

Malware in sbrugna...

EUVD-2025-22434

Malicious code in bioql PyPI...

EUVD-2023-45230

Malicious code in bioql PyPI...

EUVD-2025-19794

Malicious code in bioql PyPI...

EUVD-2025-4831

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2021-34145

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Bluetooth Classic implementation in the Cypress WICED BT stack through 2.9.0 for CYW20735B1 devices does not properly handle the reception of LMPmaxslot wit...

CVE-2025-41687

An unauthenticated remote attacker may use a stack based buffer overflow in the u-link Management API to gain full access on the affected devices...

CVE-2025-41687

An unauthenticated remote attacker may use a stack based buffer overflow in the u-link Management API to gain full access on the affected devices...

CVE-2025-41687 Weidmueller: Unauthenticated Stack-Based Buffer Overflow in u-link Management API

An unauthenticated remote attacker may use a stack based buffer overflow in the u-link Management API to gain full access on the affected devices...

Weidmueller多款产品 安全漏洞

The Weidmueller IE-SR-2TX-WL, among others, is an industrial-grade security router from Weidmueller, Germany. A security vulnerability exists in several Weidmueller products that originates from a stack buffer overflow in the u-link management API, which could result in full access privileges. Th...

CVE-2025-38149

In the Linux kernel, the following vulnerability has been resolved: net: phy: clear phydev-devlink when the link is deleted There is a potential crash issue when disabling and re-enabling the network port. When disabling the network port, phydetach calls devicelinkdel to remove the device link, b...

CVE-2025-45475

maccms10 v2025.1000.4047 is vulnerable to Server-Side request forgery SSRF in Friend Link Management...

CVE-2025-45475

maccms10 v2025.1000.4047 is vulnerable to Server-Side request forgery SSRF in Friend Link Management...

CVE-2025-45475

maccms10 v2025.1000.4047 is vulnerable to Server-Side request forgery SSRF in Friend Link Management...