Lucene search
K

8849 matches found

Wiz blog
Wiz blog
added 2025/07/31 12:0 p.m.6 views

The insider’s guide to Black Hat 2025

Cut through 100+ talks to find what matters: AI vulnerabilities, cloud attacks, and where to grab drinks...

7.2AI score
Exploits0
F5 Networks
F5 Networks
added 2025/07/30 10:9 p.m.9 views

K000152831: Oracle Java SE vulnerability CVE-2025-50059

Security Advisory Description Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Networking. Supported versions that are affected are Oracle Java SE: 8u451-perf, 11.0.27, 17.0.15, 21.0.7, 24.0.1; Oracle GraalVM for...

8.6CVSS6.2AI score0.00501EPSS
Exploits0
OSV
OSV
added 2025/07/29 1:40 p.m.4 views

RLSA-2025:3833 Important: gvisor-tap-vsock security update

A replacement for libslirp and VPNKit, written in pure Go. It is based on the network stack of gVisor and is used to provide networking for podman-machine virtual machines. Compared to libslirp, gvisor-tap-vsock brings a configurable DNS server and dynamic port forwarding. Security Fixes:...

7.5CVSS7.5AI score0.00868EPSS
Exploits0References2
OSV
OSV
added 2025/07/28 7:15 p.m.5 views

UBUNTU-CVE-2025-8283

A vulnerability was found in the netavark package, a network stack for containers used with Podman. Due to dns.podman search domain being removed, netavark may return external servers if a valid A/AAAA record is sent as a response. When creating a container with a given name, this name will be us...

3.7CVSS5.8AI score0.0029EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/07/28 11:12 a.m.8 views

CVE-2025-38468 net/sched: Return NULL when htb_lookup_leaf encounters an empty rbtree

In the Linux kernel, the following vulnerability has been resolved: net/sched: Return NULL when htblookupleaf encounters an empty rbtree htblookupleaf has a BUGON that can trigger with the following: tc qdisc del dev lo root tc qdisc add dev lo root handle 1: htb default 1 tc class add dev lo...

0.00162EPSS
Exploits0References8
OSV
OSV
added 2025/07/28 8:19 a.m.3 views

USN-7674-1 openjdk-lts vulnerabilities

It was discovered that the 2D component of OpenJDK 11 did not properly manage memory under certain circumstances. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. CVE-2025-30749, CVE-2025-50106 VMashroor Hasan Bhuiyan discovered that the JSSE...

8.6CVSS6.9AI score0.01058EPSS
Exploits1References6
OSV
OSV
added 2025/07/28 2:14 a.m.4 views

USN-7673-1 openjdk-21-crac vulnerabilities

It was discovered that the 2D component of CRaC JDK 21 did not properly manage memory under certain circumstances. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. CVE-2025-30749, CVE-2025-50106 VMashroor Hasan Bhuiyan discovered that the JSSE...

8.6CVSS6.9AI score0.01058EPSS
Exploits1References5
OSV
OSV
added 2025/07/24 3:49 p.m.10 views

USN-7651-6 linux-raspi vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - PowerPC architecture; - S390 architecture; - Block layer subsystem; - Serial ATA and Parallel ATA drivers; - Driver...

7.8CVSS6.6AI score0.00259EPSS
Exploits0References118
OSV
OSV
added 2025/07/24 12:38 p.m.4 views

USN-7668-1 openjdk-21 vulnerabilities

It was discovered that the 2D component of OpenJDK 21 did not properly manage memory under certain circumstances. An attacker could possibly use this issue to cause a denial of service or execute arbitrary code. CVE-2025-30749, CVE-2025-50106 Mashroor Hasan Bhuiyan discovered that the JSSE...

8.6CVSS6.9AI score0.01058EPSS
Exploits1References5
OSV
OSV
added 2025/07/24 8:1 a.m.10 views

USN-7651-5 linux-raspi-realtime vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - PowerPC architecture; - S390 architecture; - Block layer subsystem; - Serial ATA and Parallel ATA drivers; - Driver...

7.8CVSS6.6AI score0.00259EPSS
Exploits0References118
OSV
OSV
added 2025/07/23 7:27 p.m.6 views

CLSA-2025-1753298759 kernel: Fix of 18 CVEs

udf: Fix a slab-out-of-bounds write bug in udffindentry CVE-2022-49846 - Bluetooth: hcisync: Fix queuing commands when HCIUNREGISTER is set CVE-2022-49136 - Bluetooth: Fix use after free in hcisendacl CVE-2022-49111 - NFSv4/pnfs: Fix a use-after-free bug in open CVE-2022-50072 - NFSv4: Don't hold...

7.8CVSS7.4AI score0.00824EPSS
Exploits3References1
BDU FSTEC
BDU FSTEC
added 2025/07/23 12:0 a.m.6 views

The vulnerability of the Networking component of the Oracle Java SE software platform and the Oracle GraalVM virtual machine allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Networking component of the Oracle Java SE software platform and the Oracle GraalVM Enterprise Edition virtual machine is related to access control deficiencies. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protecte...

8.6CVSS7.2AI score0.00501EPSS
Exploits0References6Affected Software6
OSV
OSV
added 2025/07/22 1:27 p.m.9 views

USN-7651-4 linux-gcp, linux-gcp-6.8 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - PowerPC architecture; - S390 architecture; - Block layer subsystem; - Serial ATA and Parallel ATA drivers; - Driver...

7.8CVSS6.6AI score0.00259EPSS
Exploits0References118
OSV
OSV
added 2025/07/22 1:19 p.m.8 views

USN-7665-1 linux-oracle vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PA-RISC architecture; - PowerPC architecture; - S390 architecture; - x86 architecture; -...

9.8CVSS6.6AI score0.09796EPSS
Exploits3References47
OSV
OSV
added 2025/07/22 7:44 a.m.12 views

USN-7654-4 linux-kvm vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - PA-RISC architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; - Cryptographic API; -...

9.8CVSS6.4AI score0.01483EPSS
Exploits0References140
OSV
OSV
added 2025/07/22 7:22 a.m.7 views

USN-7649-2 linux-aws vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PA-RISC architecture; - PowerPC architecture; - S390 architecture; - x86 architecture; -...

9.8CVSS6.6AI score0.09796EPSS
Exploits3References47
OSV
OSV
added 2025/07/21 7:15 p.m.4 views

CVE-2025-36106

IBM Cognos Analytics Mobile iOS 1.1.0 through 1.1.22 could allow malicious actors to view and modify information coming to and from the application which could then be used to access confidential information on the device or network by using a the deprecated or misconfigured AFNetworking library ...

8.2CVSS5.8AI score0.00191EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/07/21 12:0 a.m.6 views

The vulnerability of the HPE Networking Instant On configuration and access point management tool lies in its use of strictly encrypted credentials. This allows attackers to circumvent security restrictions and gain increased privileges.

The vulnerability of the HPE Networking Instant On configuration and access point management tool is related to the use of strictly encrypted credentials. Exploiting this vulnerability allows a malicious actor to bypass security restrictions and gain increased privileges...

10CVSS7.5AI score0.01003EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2025/07/18 10:6 a.m.10 views

USN-7651-2 linux-ibm, linux-ibm-6.8, linux-lowlatency, linux-lowlatency-hwe-6.8 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - PowerPC architecture; - S390 architecture; - Block layer subsystem; - Serial ATA and Parallel ATA drivers; - Driver...

7.8CVSS6.7AI score0.00259EPSS
Exploits0References118
OSV
OSV
added 2025/07/18 9:43 a.m.14 views

USN-7654-3 linux-aws-fips, linux-fips, linux-gcp-fips vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - PA-RISC architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; - Cryptographic API; -...

9.8CVSS6.4AI score0.01483EPSS
Exploits0References140
Rows per page
Query Builder