Lucene search
K

773 matches found

CVE
CVE
added 2026/05/08 2:21 p.m.21 views

CVE-2026-43421

The CVE affects the Linux kernel USB gadget for Network Control Model (NCM) where a net_device could outlive its parent gadget during disconnection, causing dangling sysfs links and potential null dereference. The root cause was lifecycle mismanagement of net_device during USB bind/unbind, addres...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References6Affected Software1
RedhatCVE
RedhatCVE
added 2026/05/06 11:40 p.m.8 views

CVE-2026-43260

A flaw was found in the bnxten driver of the Linux kernel. An issue in the RSS Receive Side Scaling context deletion logic can lead to a leak of VNICs Virtual Network Interface Controllers in the firmware. This can cause subsequent attempts to create new VNICs to fail, resulting in the loss of...

7.8CVSS5.8AI score0.00138EPSS
Exploits0References4
CVE
CVE
added 2026/05/06 11:28 a.m.23 views

CVE-2026-43260

The CVE concerns the bnxt_en driver in the Linux kernel. The vulnerability stems from RSS context deletion logic that could leak VNICs in firmware when deleting RSS contexts with the interface down, leading to failures when re-opening and restoring RSS contexts. The fix removes the netif_running(...

7.8CVSS5.8AI score0.00138EPSS
Exploits0References4Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.9 views

PT-2026-37520

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the kaweth set rx mode function, which serves as the ndo set rx mode callback. This function incorrectly calls netif stop queue and netif wake queue, which are TX queu...

7.8CVSS5.5AI score0.00129EPSS
Exploits0
OSV
OSV
added 2026/04/24 3:16 p.m.4 views

DEBIAN-CVE-2026-31644

In the Linux kernel, the following vulnerability has been resolved: net: lan966x: fix use-after-free and leak in lan966xfdmareload When lan966xfdmareload fails to allocate new RX buffers, the restore path restarts DMA using old descriptors whose pages were already freed via lan966xfdmarxfreepages...

7.8CVSS5.4AI score0.00125EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/17 3:31 p.m.9 views

EUVD-2024-55542

Uncontrolled Resource Consumption in Bosch VMS Central Server in Bosch VMS 12.0.1 allows attackers to consume excessive amounts of disk space via network interface...

7.5CVSS5.8AI score0.00455EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/15 9:51 a.m.6 views

CVE-2024-33618

Uncontrolled Resource Consumption in Bosch VMS Central Server in Bosch VMS 12.0.1 allows attackers to consume excessive amounts of disk space via network interface...

7.5CVSS5.8AI score0.00455EPSS
Exploits0References2Affected Software8
Cvelist
Cvelist
added 2026/04/15 9:51 a.m.27 views

CVE-2024-33618

Uncontrolled Resource Consumption in Bosch VMS Central Server in Bosch VMS 12.0.1 allows attackers to consume excessive amounts of disk space via network interface...

7.5CVSS0.00455EPSS
Exploits0References1
CVE
CVE
added 2026/04/15 9:51 a.m.14 views

CVE-2024-33618

CVE-2024-33618 affects Bosch VMS Central Server (Bosch VMS 12.0.1). The issue is uncontrolled resource consumption that can cause excessive disk-space usage over the network interface. The provided documents do not specify the root cause details, vulnerable component version ranges beyond 12.0.1,...

7.5CVSS5.8AI score0.00455EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/15 12:0 a.m.7 views

PT-2026-33033

CVE-2024-33618 Uncontrolled Resource Consumption in Bosch VMS Central Server in Bosch VMS 12.0.1 allows attackers to consume excessive amounts of disk space via network interface. https://t.co/8se9odIyBk...

7.5CVSS5.8AI score0.00455EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/04/15 12:0 a.m.9 views

Bosch VMS Central Server 安全漏洞

Bosch VMS Central Server is a core server component of the video management system developed by the German company Bosch. Version 12.0.1 of Bosch VMS Central Server contains a security vulnerability. This vulnerability stems from uncontrolled consumption of network interface resources, which coul...

7.5CVSS5.8AI score0.00455EPSS
Exploits0References1
OSV
OSV
added 2026/04/13 3:4 p.m.3 views

SUSE-SU-2026:1298-1 Security update for the Linux Kernel (Live Patch 72 for SUSE Linux Enterprise 12 SP5)

This update for the SUSE Linux Enterprise Kernel 4.12.14-122.272 fixes various security issues The following security issues were fixed: - CVE-2023-53794: cifs: fix session state check in reconnect to avoid use-after-free issue bsc1255235. - CVE-2025-39973: i40e: add validation for ringlen param...

7.8CVSS6.7AI score0.00204EPSS
Exploits0References15
SUSE CVE
SUSE CVE
added 2026/04/06 11:24 p.m.5 views

SUSE CVE-2026-33904

Ella Core is a 5G core designed for private networks. Prior to version 1.7.0, a deadlock in the AMF's SCTP notification handler causes the entire AMF control plane to hang until the process is restarted. An attacker with access to the N2 interface can cause Ella Core to hang, resulting in a denia...

6.5CVSS5.8AI score0.00165EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/04/05 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-31395

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - bnxten: fix OOB access in DBGBUFPRODUCER async event handler The ASYNCEVENTCMPLEVENTIDDBGBUFPRODUCER handler in bnxtasynceventprocess uses a firmware-supplied...

7.1CVSS6.1AI score0.00115EPSS
Exploits0References3
Snyk
Snyk
added 2026/03/27 11:24 p.m.2 views

Deadlock

Overview Affected versions of this package are vulnerable to Deadlock via the SCTP notification handler process. An attacker can cause the control plane to become unresponsive by sending specially crafted SCTP notifications to the N2 interface, resulting in service disruption for all subscribers...

7.1CVSS5.9AI score0.00165EPSS
Exploits0References2
Snyk
Snyk
added 2026/03/27 11:24 p.m.3 views

Deadlock

Overview Affected versions of this package are vulnerable to Deadlock via the SCTP notification handler process. An attacker can cause the control plane to become unresponsive by sending specially crafted SCTP notifications to the N2 interface, resulting in service disruption for all subscribers...

7.1CVSS5.9AI score0.00165EPSS
Exploits0References2
CVE
CVE
added 2026/03/27 8:55 p.m.14 views

CVE-2026-33904

Ella Core is a 5G private-network core. In versions prior to 1.7.0, a deadlock in the AMF SCTP notification handler causes the entire AMF control plane to hang, enabling a denial of service when an attacker with access to the N2 interface sends crafted SCTP notifications. Version 1.7.0 adds defer...

6.5CVSS5.9AI score0.00165EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2026/03/27 3:30 p.m.3 views

EUVD-2025-209098

BS Producten Petcam 33.1.0.0818 is vulnerable to Incorrect Access Control. An unauthenticated attacker in physical proximity can associate with this open network. Once connected, the attacker gains access to the camera's private network interface and can retrieve sensitive information, including...

6.5CVSS5.9AI score0.00171EPSS
Exploits0References2
NVD
NVD
added 2026/03/27 3:16 p.m.3 views

CVE-2025-69988

BS Producten Petcam 33.1.0.0818 is vulnerable to Incorrect Access Control. An unauthenticated attacker in physical proximity can associate with this open network. Once connected, the attacker gains access to the camera's private network interface and can retrieve sensitive information, including...

6.5CVSS0.00171EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/27 12:0 a.m.30 views

CVE-2025-69988

BS Producten Petcam 33.1.0.0818 is vulnerable to Incorrect Access Control. An unauthenticated attacker in physical proximity can associate with this open network. Once connected, the attacker gains access to the camera's private network interface and can retrieve sensitive information, including...

6.5CVSS0.00171EPSS
Exploits0References1
Rows per page
Query Builder