Lucene search
K

8849 matches found

OSV
OSV
added 2025/07/18 9:32 a.m.8 views

USN-7654-2 linux-intel-iot-realtime, linux-realtime vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - PA-RISC architecture; - PowerPC architecture; - x86 architecture; - Block layer subsystem; - Cryptographic API; -...

9.8CVSS6.5AI score0.01483EPSS
Exploits0References140
OSV
OSV
added 2025/07/17 4:2 p.m.9 views

USN-7651-1 linux, linux-aws, linux-oem-6.8 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - PowerPC architecture; - S390 architecture; - Block layer subsystem; - Serial ATA and Parallel ATA drivers; - Driver...

7.8CVSS6.6AI score0.00259EPSS
Exploits0References118
OSV
OSV
added 2025/07/17 3:44 p.m.7 views

USN-7650-1 linux-oem-6.14 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PA-RISC architecture; - PowerPC architecture; - S390 architecture; - x86 architecture; -...

9.8CVSS6.6AI score0.09796EPSS
Exploits3References46
OSV
OSV
added 2025/07/17 3:24 p.m.8 views

USN-7649-1 linux, linux-gcp, linux-raspi, linux-realtime vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - PA-RISC architecture; - PowerPC architecture; - S390 architecture; - x86 architecture; -...

9.8CVSS5.9AI score0.09796EPSS
Exploits3References47
OSV
OSV
added 2025/07/17 1:45 p.m.6 views

USN-7591-6 linux-raspi vulnerabilities

Michael Randrianantenaina discovered that the Bluetooth driver in the Linux Kernel contained an improper access control vulnerability. A nearby attacker could use this to connect a rougue device and possibly execute arbitrary code. CVE-2024-8805 It was discovered that the CIFS network file system...

8.8CVSS6.8AI score0.02033EPSS
Exploits0References68
RedHat Linux
RedHat Linux
added 2025/07/17 12:20 a.m.4 views

kernel: net: atm: fix use after free in lec_send()

In the Linux kernel, the following vulnerability has been resolved: net: atm: fix use after free in lecsend The -send operation frees skb so save the length before calling -send to avoid a use after free...

7.8CVSS6.8AI score0.00181EPSS
Exploits0References5
Packet Storm News
Packet Storm News
added 2025/07/17 12:0 a.m.3 views

How to Mitigate and Defend against DDoS Attacks in IoT Devices

Distributed Denial of Service DDoS attacks have become increasingly prevalent and dangerous in the context of Internet of Things IoT networks, primarily due to the low-security configurations of many connected devices. This paper analyzes the nature and impact of DDoS attacks such as those launch...

6.9AI score
Exploits0
OSV
OSV
added 2025/07/16 5:23 p.m.7 views

USN-7585-7 linux-raspi, linux-raspi-5.4 vulnerabilities

It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. CVE-2025-2312 Several security issues were discovered in the Linux kernel. An...

7.8CVSS6.8AI score0.00246EPSS
Exploits0References33
NVD
NVD
added 2025/07/15 8:15 p.m.6 views

CVE-2025-50059

Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Networking. Supported versions that are affected are Oracle Java SE: 8u451-perf, 11.0.27, 17.0.15, 21.0.7, 24.0.1; Oracle GraalVM for JDK: 17.0.15, 21.0.7 and 24.0.1...

8.6CVSS0.00501EPSS
Exploits0References3
SUSE Linux
SUSE Linux
added 2025/07/15 2:31 p.m.3 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2021-47557: net/sched: schets: do not peek at classes beyond 'nbands' bsc1207361 bsc1225468. CVE-2021-47595: net/sched: schets: do not remove idle classes from...

8.7CVSS8AI score0.12746EPSS
Exploits16References1122
OSV
OSV
added 2025/07/15 2:31 p.m.9 views

SUSE-SU-2025:02321-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 RT kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2021-47557: net/sched: schets: do not peek at classes beyond 'nbands' bsc1207361 bsc1225468. - CVE-2021-47595: net/sched: schets: do not remove idle classes...

7.8CVSS6.8AI score0.12746EPSS
Exploits16References560
RedHat Linux
RedHat Linux
added 2025/07/14 12:20 a.m.7 views

kernel: net: atm: fix use after free in lec_send()

In the Linux kernel, the following vulnerability has been resolved: net: atm: fix use after free in lecsend The -send operation frees skb so save the length before calling -send to avoid a use after free...

7.8CVSS6.8AI score0.00181EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/07/13 3:20 p.m.10 views

CVE-2025-52949

An Improper Handling of Length Parameter Inconsistency vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows a logically adjacent BGP peer sending a specifically malformed BGP packet to cause rpd to crash and restart, resulting in a Denial of...

7.1CVSS7.1AI score0.00258EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/07/12 10:14 p.m.8 views

CVE-2025-53637

Meshtastic is an open source mesh networking solution. The mainmatrix.yml GitHub Action is triggered by the pullrequesttarget event, which has extensive permissions, and can be initiated by an attacker who forked the repository and created a pull request. In the shell code execution part,...

8CVSS6.8AI score0.00328EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/11 2:40 p.m.9 views

CVE-2025-52949 Junos OS and Junos OS Evolved: In an EVPN environment, receipt of specifically malformed BGP update causes RPD crash

An Improper Handling of Length Parameter Inconsistency vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows a logically adjacent BGP peer sending a specifically malformed BGP packet to cause rpd to crash and restart, resulting in a Denial of...

7.1CVSS0.00258EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/11 2:40 p.m.6 views

CVE-2025-52949 Junos OS and Junos OS Evolved: In an EVPN environment, receipt of specifically malformed BGP update causes RPD crash

An Improper Handling of Length Parameter Inconsistency vulnerability in the routing protocol daemon rpd of Juniper Networks Junos OS and Junos OS Evolved allows a logically adjacent BGP peer sending a specifically malformed BGP packet to cause rpd to crash and restart, resulting in a Denial of...

7.1CVSS7AI score0.00258EPSS
Exploits0References1
SUSE Linux
SUSE Linux
added 2025/07/11 1:53 p.m.5 views

Security update for the Linux Kernel

The SUSE Linux Enterprise Micro 6.0 and 6.1 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-57982: xfrm: state: fix out-of-bounds read during lookup bsc1237913. CVE-2024-58053: rxrpc: Fix handling of received connection abort bsc1238982...

8.5CVSS7.8AI score0.00369EPSS
Exploits3References336
NVD
NVD
added 2025/07/10 10:15 p.m.4 views

CVE-2025-24798

Meshtastic is an open source mesh networking solution. From 1.2.1 until 2.6.2, a packet sent to the routing module that contains wantresponse==true causes a crash. This can lead to a degradation of service for nodes within range of a malicious sender, or via MQTT if downlink is enabled. This...

6.5CVSS0.00375EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/07/10 9:31 p.m.8 views

CVE-2025-53637 Meshtastic allows Command Injection in GitHub Action

Meshtastic is an open source mesh networking solution. The mainmatrix.yml GitHub Action is triggered by the pullrequesttarget event, which has extensive permissions, and can be initiated by an attacker who forked the repository and created a pull request. In the shell code execution part,...

4.1CVSS0.00328EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/07/10 7:20 p.m.5 views

CVE-2025-37103

Hard-coded login credentials were found in HPE Networking Instant On Access Points, allowing anyone with knowledge of it to bypass normal device authentication. Successful exploitation could allow a remote attacker to gain administrative access to the system...

9.8CVSS7.6AI score0.01003EPSS
Exploits0References1
Rows per page
Query Builder