Nginx 0.7.22 - 1.29.0 Information Disclosure Vulnerability

Nginx is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:nginx:nginx";...

Linux Distros Unpatched Vulnerability : CVE-2017-16137

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The debug module is vulnerable to regular expression denial of service when untrusted user input is passed into the o formatter. It takes around 50k characters ...

PT-2025-33798 · Mt76 +1 · Mt76 +1

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The mt7925 mcu hw scan function in the mt76 module contains an off-by-one error. This occurs because the comparison operator used to check array bounds is incorrect, potentially leadin...

CVE-2025-8941

A flaw was found in linux-pam. The pamnamespace module may improperly handle user-controlled paths, allowing local users to exploit symlink attacks and race conditions to elevate their privileges to root. This CVE provides a "complete" fix for CVE-2025-6020...

Linux Distros Unpatched Vulnerability : CVE-2020-1934

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Apache HTTP Server 2.4.0 to 2.4.41, modproxyftp may use uninitialized memory when proxying to a malicious FTP server. CVE-2020-1934 Note that Nessus relies o...

Linux Distros Unpatched Vulnerability : CVE-2025-37995

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - module: ensure that kobjectput is safe for module type kobjects In 'lookuporcreatemodulekobject', an internal kobject is created using 'modulektype'. So call to...

Linux Distros Unpatched Vulnerability : CVE-2022-50138

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - RDMA/qedr: Fix potential memory leak in qedrallocmr qedrallocmr allocates a memory chunk for mr-info.pbltable with initmrinfo. When rdmaalloctid and...

Linux Distros Unpatched Vulnerability : CVE-2021-3679

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A lack of CPU resource in the Linux kernel tracing module functionality in versions prior to 5.14-rc3 was found in the way user uses trace ring buffer in a...

Linux Distros Unpatched Vulnerability : CVE-2014-9016

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The password hashing API in Drupal 7.x before 7.34 and the Secure Password Hashes aka phpass module 6.x-2.x before 6.x-2.1 for Drupal allows remote attackers to...

Linux Distros Unpatched Vulnerability : CVE-2017-6266

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NVIDIA GPU Display Driver contains a vulnerability in the kernel mode layer handler where improper access controls could allow unprivileged users to cause a...

CVE-2025-54646

Vulnerability of inadequate packet length check in the BLE module. Impact: Successful exploitation of this vulnerability may affect performance...

CVE-2025-54646

Vulnerability of inadequate packet length check in the BLE module. Impact: Successful exploitation of this vulnerability may affect performance...

CVE-2025-54646

The CVE-2025-54646 entry concerns Huawei HarmonyOS/EMUI with an inadequate packet length check in the BLE module. The root cause is a faulty packet length validation in the BLE component, leading to potential performance impact when exploited. Public data provides two CVSS vectors: NVD’s CVSSv3.1...

CVE-2025-54633

Out-of-bounds read vulnerability in the register configuration of the DMA module. Impact: Successful exploitation of this vulnerability may affect service confidentiality...

CVE-2025-54632

Vulnerability of insufficient data length verification in the HVB module. Impact: Successful exploitation of this vulnerability may affect service integrity...

CVE-2025-54610

Out-of-bounds access vulnerability in the audio codec module. Impact: Successful exploitation of this vulnerability may affect availability...

CVE-2025-54627

Out-of-bounds write vulnerability in the skia module. Impact: Successful exploitation of this vulnerability may affect service confidentiality...

PT-2025-32074 · Unknown · Hvb Module

Name of the Vulnerable Software and Affected Versions: HVB module affected versions not specified Description: The vulnerability is due to insufficient data length verification in the HVB module. Successful exploitation of this issue may affect service integrity. Recommendations: At the moment,...

CVE-2025-4426 SetupAutomationSmm : SMRAM memory contents leak / information disclosure vulnerability in SMM module

The vulnerability was identified in the code developed specifically for Lenovo. Please visit "Lenovo Product Security Advisories and Announcements" webpage for more information about the vulnerability. https://support.lenovo.com/us/en/productsecurity/home...

CVE-2025-4423 SetupAutomationSmm:Vulnerability in the SMM module allow attacker to write arbitrary code and lead to memory corruption

The vulnerability was identified in the code developed specifically for Lenovo. Please visit "Lenovo Product Security Advisories and Announcements" webpage for more information about the vulnerability. https://support.lenovo.com/us/en/productsecurity/home...