Lucene search
+L

581 matches found

BDU FSTEC
BDU FSTEC
added 2025/07/03 12:0 a.m.8 views

The vulnerability of the igb_init_module() function in the drivers/net/ethernet/intel/igb/igb_main.c module of the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the igbinitmodule function in the drivers/net/ethernet/intel/igb/igbmain.c file of the Linux kernel is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow an attacker to cause a system failure...

5.5CVSS7.1AI score0.00231EPSS
Exploits0References16Affected Software4
CNNVD
CNNVD
added 2025/06/24 12:0 a.m.4 views

NeKernel 安全漏洞

NeKernel is a kernel operating system from NeKernel Open Source. A security vulnerability exists in versions prior to NeKernel 0.0.3 that stems from unchecked memory operations, unsafe type conversions, and improper input validation, which could lead to memory corruption, disk image corruption,...

8.8CVSS7.1AI score0.00435EPSS
Exploits0References6
OpenVAS
OpenVAS
added 2025/06/24 12:0 a.m.4 views

Ubuntu: Security Advisory (USN-7587-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.6CVSS6AI score0.00853EPSS
Exploits6References2
Tenable Nessus
Tenable Nessus
added 2025/06/19 12:0 a.m.7 views

Ubuntu 22.04 LTS : MuJS vulnerabilities (USN-7575-1)

The remote Ubuntu 22.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-7575-1 advisory. It was discovered that MuJS did not correctly handle try/finally statements, which could lead to a buffer overflow. An attacker could possibly use this...

9.8CVSS7.2AI score0.01456EPSS
Exploits2References4
CVE
CVE
added 2025/06/18 11:2 a.m.79 views

CVE-2022-50097

CVE-2022-50097 affects the Linux kernel’s video fbdev s3fb driver. The bug arises in s3fb_set_par() where the code computes screen_size from user input and can exceed info->screen_size, leading to a kernel PAGE_FAULT on write (local access) during memset_io. The issue is mitigated by the docum...

7.8CVSS6.4AI score0.00168EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2025/06/18 1:26 a.m.5 views

USN-7575-1 mujs vulnerabilities

It was discovered that MuJS did not correctly handle try/finally statements, which could lead to a buffer overflow. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. CVE-2021-45005 Han Zheng discovered that MuJS did not correctly handle recursion,...

9.8CVSS6.2AI score0.01456EPSS
Exploits2References4
Ubuntu
Ubuntu
added 2025/06/17 2:31 p.m.6 views

USN-7573-1: X.Org X Server vulnerabilities

Nils Emmerich discovered that the X.Org X Server incorrectly handled certain memory operations. An attacker could use these issues to cause the X Server to crash, leading to a denial of service, obtain sensitive information, or possibly execute arbitrary code...

7.8CVSS6.9AI score0.00369EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/06/06 12:0 a.m.7 views

The vulnerability of the `ksmbd_vfs_kern_path_locked()` function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the ksmbdvfskernpathlocked function in the Linux operating system is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS7AI score0.00197EPSS
Exploits0References13Affected Software5
RedhatCVE
RedhatCVE
added 2025/05/22 10:41 p.m.7 views

CVE-2022-28348

Arm Mali GPU Kernel Driver Midgard r4p0 through r31p0, Bifrost r0p0 through r36p0 before r37p0, and Valhall r19p0 through r36p0 before r37p0 allows improper GPU memory operations to reach a use-after-free situation...

10CVSS6.9AI score0.01357EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:24 p.m.6 views

CVE-2021-29511

evm is a pure Rust implementation of Ethereum Virtual Machine. Prior to the patch, when executing specific EVM opcodes related to memory operations that use evmcore::Memory::copylarge, the evm crate can over-allocate memory when it is not needed, making it possible for an attacker to perform...

6.5CVSS6.7AI score0.0128EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:5 p.m.11 views

CVE-2021-1923

Incorrect pointer argument passed to trusted application TA could result in un-intended memory operations in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT...

7.8CVSS7.2AI score0.0015EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:5 p.m.10 views

CVE-2021-1921

Possible memory corruption due to Improper handling of hypervisor unmap operations for concurrent memory operations in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile...

7.8CVSS7.1AI score0.00104EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:13 p.m.8 views

CVE-2020-1918

In-memory file operations ie: using fopen on a data URI did not properly restrict negative seeking, allowing for the reading of memory prior to the in-memory buffer. This issue affects HHVM versions prior to 4.56.3, all versions between 4.57.0 and 4.80.1, all versions between 4.81.0 and 4.93.1, a...

7.5CVSS6.8AI score0.01218EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 10:12 a.m.8 views

CVE-2019-20553

An issue was discovered on Samsung mobile devices with P9.0 SM6150, SM8150, SM8150FUSION, exynos7885, exynos9610, and exynos9820 chipsets software. Arbitrary memory read and write operations can occur in RKP. The Samsung ID is SVE-2019-15143 October 2019...

9.8CVSS7AI score0.00443EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:25 a.m.7 views

CVE-2019-19391

In LuaJIT through 2.0.5, as used in Moonjit before 2.1.2 and other products, debug.getinfo has a type confusion issue that leads to arbitrary memory write or read operations, because certain cases involving valid stack levels and options are mishandled. NOTE: The LuaJIT project owner states that...

9.1CVSS6.9AI score0.0133EPSS
Exploits0References1
OSV
OSV
added 2025/05/20 4:15 p.m.6 views

UBUNTU-CVE-2025-37896

In the Linux kernel, the following vulnerability has been resolved: spi: spi-mem: Add fix to avoid divide error For some SPI flash memory operations, dummy bytes are not mandatory. For example, in Winbond SPINAND flash memory devices, the writecache and updatecache operation variants have zero...

5.5CVSS6.2AI score0.0014EPSS
Exploits0References11
CVE
CVE
added 2025/05/20 3:21 p.m.79 views

CVE-2025-37896

CVE-2025-37896 addresses a divide-by-zero in spi-mem duration calculation (spi_mem_calc_op_duration) when dummy bytes are zero in certain SPI flash operations (e.g., Winbond SPINAND write_cache/update_cache). The fix skips the ncylcles calculation when dummy bytes are zero, preventing the divide ...

5.5CVSS6.4AI score0.0014EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/05/15 12:0 a.m.7 views

The vulnerability of the Kernel Streaming Service Driver for Windows operating systems allows attackers to increase their privileges.

The vulnerability of the Kernel Streaming Service Driver for Windows operating systems is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability can allow an attacker to gain increased privileges...

7.8CVSS8.1AI score0.00587EPSS
Exploits0References3
Ubuntu
Ubuntu
added 2025/04/28 8:27 p.m.17 views

USN-7467-2: libxml2 vulnerabilities

USN-7467-1 fixed several vulnerabilities in libxml2. This update provides the corresponding update for Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. Original advisory details: It was discovered that the libxml2 Python bindings incorrectly handled certain return values. An attacker could possibly use thi...

7.5CVSS6.6AI score0.00559EPSS
Exploits2
Ubuntu
Ubuntu
added 2025/04/28 12:25 p.m.69 views

USN-7467-1: libxml2 vulnerabilities

It was discovered that the libxml2 Python bindings incorrectly handled certain return values. An attacker could possibly use this issue to cause libxml2 to crash, resulting in a denial of service. CVE-2025-32414 It was discovered that libxml2 incorrectly handled certain memory operations. A remot...

7.5CVSS6.6AI score0.00559EPSS
Exploits2
Rows per page
Query Builder