Lucene search
+L

5332 matches found

cnnvd
cnnvd
added 2026/05/11 12:0 a.m.10 views

Sonatype Nexus Repository Manager 代码问题漏洞

Sonatype Nexus Repository Manager NXRM is a repository manager developed by Sonatype, Inc., in the United States. It is primarily used for managing, storing, and distributing software. Versions of Sonatype Nexus Repository Manager from 3.0.0 to 3.91.1 contained code vulnerabilities. These...

5.1CVSS5.9AI score0.00257EPSS
Exploits0References2
cnnvd
cnnvd
added 2026/05/11 12:0 a.m.14 views

Sonatype Nexus Repository 跨站脚本漏洞

Sonatype Nexus Repository is a repository manager developed by Sonatype, Inc. in the United States. It is primarily used for managing, storing, and distributing software, etc. Versions of Sonatype Nexus Repository from 3.6.0 to 3.92.0 contained a cross-site scripting vulnerability. This...

5.1CVSS5.8AI score0.00266EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2026/05/11 12:0 a.m.22 views

PT-2026-39723

An authenticated user with upload permission to a hosted repository can store content that causes arbitrary JavaScript to execute in the browser of any user who browses that repository directory via the HTML index page in Sonatype Nexus Repository versions 3.6.0 through versions before 3.92.0. Th...

5.1CVSS6AI score0.00266EPSS
Exploits0References3
githubexploit
githubexploit
added 2026/05/10 9:14 a.m.150 views

pocxgen-agent

PoCXGen Agent An LLM-orchestrated multi-agent pipeline for au...

5.9AI score
Exploits0
susecve
susecve
added 2026/05/09 2:39 a.m.8 views

SUSE CVE-2026-43424

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ftcm: Fix NULL pointer dereferences in nexus handling The tpg-tpgnexus pointer in the USB Target driver is dynamically managed and tied to userspace configuration via ConfigFS. It can be NULL if the USB host sends...

5.8AI score0.00123EPSS
Exploits0References3
vulnersosv
vulnersosv
added 2026/05/08 11:7 p.m.8 views

accessiqlue (=2025.12.21154255), agent-builder (>=0.0.2 <=0.1.7) +344 more potentially affected by CVE-2026-44843 via langchain-core (>=1.0.0a8 <=1.3.2)

langchain-core PYPI version =1.0.0a8, =0.0.2, =0.1.0, =0.1.0, =0.1.0, =0.1.1 - ai-benchmark-analyzer =2025.12.21193050 - ai-claim-essence =2025.12.20202921 - ai-design-insights =2025.12.21145447 - ai-mysql-translator =2025.12.21101721 - ai-reliability-analyzer =2025.12.21171415 - ai-risk-extracto...

8.2CVSS5.7AI score0.00406EPSS
Exploits0
euvd
euvd
added 2026/05/08 3:31 p.m.12 views

EUVD-2026-28730

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ftcm: Fix NULL pointer dereferences in nexus handling The tpg-tpgnexus pointer in the USB Target driver is dynamically managed and tied to userspace configuration via ConfigFS. It can be NULL if the USB host sends...

5.8AI score0.00123EPSS
Exploits0References8
nvd
nvd
added 2026/05/08 3:16 p.m.12 views

CVE-2026-43424

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ftcm: Fix NULL pointer dereferences in nexus handling The tpg-tpgnexus pointer in the USB Target driver is dynamically managed and tied to userspace configuration via ConfigFS. It can be NULL if the USB host sends...

5.5CVSS0.00123EPSS
Exploits0References7
ubuntucve
ubuntucve
added 2026/05/08 3:16 p.m.9 views

CVE-2026-43424

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ftcm: Fix NULL pointer dereferences in nexus handling The tpg-tpgnexus pointer in the USB Target driver is dynamically managed and tied to userspace configuration via ConfigFS. It can be NULL if the USB host sends...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References9
osv
osv
added 2026/05/08 3:16 p.m.8 views

UBUNTU-CVE-2026-43424

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ftcm: Fix NULL pointer dereferences in nexus handling The tpg-tpgnexus pointer in the USB Target driver is dynamically managed and tied to userspace configuration via ConfigFS. It can be NULL if the USB host sends...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References10
attackerkb
attackerkb
added 2026/05/08 2:21 p.m.11 views

CVE-2026-43424

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ftcm: Fix NULL pointer dereferences in nexus handling The tpg-tpgnexus pointer in the USB Target driver is dynamically managed and tied to userspace configuration via ConfigFS. It can be NULL if the USB host sends...

5.7AI score0.00123EPSS
Exploits0References8Affected Software1
cve
cve
added 2026/05/08 2:21 p.m.20 views

CVE-2026-43424

The CVE concerns the Linux kernel USB gadget f_tcm nexus handling. The tpg-&gt;tpg_nexus pointer used by the BOT command/data paths can be NULL during race windows (before nexus is established or after it’s dropped). Dereferencing tv_nexus-&gt;tvn_se_sess without a NULL check leads to a kernel pa...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References7Affected Software1
debiancve
debiancve
added 2026/05/08 2:21 p.m.9 views

CVE-2026-43424

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ftcm: Fix NULL pointer dereferences in nexus handling The tpg-tpgnexus pointer in the USB Target driver is dynamically managed and tied to userspace configuration via ConfigFS. It can be NULL if the USB host sends...

5.5CVSS5.7AI score0.00123EPSS
Exploits0
cvelist
cvelist
added 2026/05/08 2:21 p.m.32 views

CVE-2026-43424 usb: gadget: f_tcm: Fix NULL pointer dereferences in nexus handling

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ftcm: Fix NULL pointer dereferences in nexus handling The tpg-tpgnexus pointer in the USB Target driver is dynamically managed and tied to userspace configuration via ConfigFS. It can be NULL if the USB host sends...

0.00123EPSS
Exploits0References7
osv
osv
added 2026/05/08 2:21 p.m.1 views

CVE-2026-43424 usb: gadget: f_tcm: Fix NULL pointer dereferences in nexus handling

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: ftcm: Fix NULL pointer dereferences in nexus handling The tpg-tpgnexus pointer in the USB Target driver is dynamically managed and tied to userspace configuration via ConfigFS. It can be NULL if the USB host sends...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References10
veracode
veracode
added 2026/05/08 6:18 a.m.15 views

Remote Code Execution

Sonatype Nexus Repository is vulnerable to Remote Code Execution. The vulnerability is due to a flaw in the task management component, where an authenticated attacker with task creation permissions can bypass the nexus.scripts.allowCreation security control and execute arbitrary code...

9.4CVSS6.1AI score0.00359EPSS
Exploits0References2Affected Software1
cnnvd
cnnvd
added 2026/05/08 12:0 a.m.9 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the ftcm driver for USB devices not verifying the tpg-tpgnexus pointer during NEXUS processing. This...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/05/08 12:0 a.m.14 views

PT-2026-39085

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A NULL pointer dereference exists in the USB Target driver's nexus handling. The tpg-tpg nexus pointer is dynamically managed via ConfigFS and can be NULL if a USB host sends requests...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References20
nessus
nessus
added 2026/05/08 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-43424

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - usb: gadget: ftcm: Fix NULL pointer dereferences in nexus handling The tpg-tpgnexus pointer in the USB Target driver is dynamically managed and tied to userspac...

5.5CVSS6AI score0.00123EPSS
Exploits0References2
thn
thn
added 2026/05/05 2:19 p.m.11 views

China-Linked UAT-8302 Targets Governments Using Shared APT Malware Across Regions

A sophisticated China-nexus advanced persistent threat APT group has been attributed to attacks targeting government entities in South America since at least late 2024 and government agencies in southeastern Europe in 2025. The activity is being tracked by Cisco Talos under the moniker UAT-8302 ,...

6AI score
Exploits0
Rows per page
Query Builder