Lucene search
K

8849 matches found

OSV
OSV
added 2025/07/03 9:15 a.m.1 views

DEBIAN-CVE-2025-38115

In the Linux kernel, the following vulnerability has been resolved: netsched: schsfq: fix a potential crash on gsoskb handling SFQ has an assumption of always being able to queue at least one packet. However, after the blamed commit, sch-q.len can be inflated by packets in sch-gsoskb, and an...

5.5CVSS5.5AI score0.00172EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/07/03 12:0 a.m.5 views

PT-2025-30866

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A null pointer dereference issue was identified and resolved in the rtsn probe function within the networking subsystem of the Linux kernel. The fix involves adding a check for the retur...

9.1CVSS7.4AI score0.07142EPSS
Exploits3References554
Microsoft KB
Microsoft KB
added 2025/07/01 12:0 a.m.7 views

July 1, 2025—KB5063774 (OS Build 25398.1668) Out-of-band

July 1, 2025—KB5063774 OS Build 25398.1668 Out-of-band To learn about Windows update terminology, see the pages on types of Windows updates and monthly quality update types. For an overview, see the update history page for Windows Server, version 23H2. Improvements This out-of-band update include...

5.5AI score
Exploits0
Ubuntu
Ubuntu
added 2025/06/30 6:22 p.m.6 views

USN-7585-5: Linux kernel (HWE) vulnerabilities

It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. CVE-2025-2312 Several security issues were discovered in the Linux kernel. An...

7.8CVSS7.1AI score0.00246EPSS
Exploits0
OSV
OSV
added 2025/06/30 6:22 p.m.7 views

USN-7585-5 linux-hwe-5.4 vulnerabilities

It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. CVE-2025-2312 Several security issues were discovered in the Linux kernel. An...

7.8CVSS6.8AI score0.00246EPSS
Exploits0References33
OSV
OSV
added 2025/06/30 5:40 p.m.15 views

USN-7595-5 linux-gcp, linux-gcp-6.8 vulnerabilities

It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. CVE-2025-2312 Several security issues were discovered in the Linux kernel. An...

7.8CVSS6.6AI score0.00571EPSS
Exploits1References34
OSV
OSV
added 2025/06/30 8:4 a.m.5 views

SUSE-SU-2025:02171-1 Security update for the Linux Kernel (Live Patch 19 for SLE 15 SP5)

This update for the Linux Kernel 5.14.21-1505005580 fixes several issues. The following security issues were fixed: - CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inetcreate bsc1235231. - CVE-2024-50279: dm cache: fix out-of-bounds access to the dirty bitset when resizing...

7.8CVSS6.7AI score0.00272EPSS
Exploits0References17
Positive Technologies
Positive Technologies
added 2025/06/30 12:0 a.m.16 views

PT-2025-30120

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw in the networking scheduler where certain classful qdiscs may unexpectedly empty a child qdisc, leading to a use-after-free condition. This can occur whe...

7.8CVSS6.9AI score0.0018EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/06/29 12:0 a.m.5 views

PT-2025-39425

Name of the Vulnerable Software and Affected Versions glib-networking affected versions not specified Description The OpenSSL backend in glib-networking does not correctly validate the return value from the BIO write function call, which can lead to an out-of-bounds read. Recommendations At the...

4.8CVSS5.8AI score0.00288EPSS
Exploits0References20
NVD
NVD
added 2025/06/28 4:15 p.m.7 views

CVE-2023-28906

A command injection in the networking service of the MIB3 infotainment allows an attacker already presenting in the system to escalate privileges and obtain administrative access to the system. The vulnerability was originally discovered in Skoda Superb III car with MIB3 infotainment unit OEM par...

7.8CVSS0.00659EPSS
Exploits0References3
CVE
CVE
added 2025/06/28 3:36 p.m.17 views

CVE-2023-28906

CVE-2023-28906 covers a command-injection flaw in the networking service of Volkswagen MIB3 infotainment (notably the Skoda Superb III with OEM part 3V0035820). The root cause is a vulnerable networking component that allows an attacker already on the system to escalate privileges to administrati...

7.8CVSS7.4AI score0.00659EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/06/28 3:36 p.m.5 views

CVE-2023-28906 Command injection in networking service

A command injection in the networking service of the MIB3 infotainment allows an attacker already presenting in the system to escalate privileges and obtain administrative access to the system. The vulnerability was originally discovered in Skoda Superb III car with MIB3 infotainment unit OEM par...

7.8CVSS7.2AI score0.00659EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/06/28 3:36 p.m.11 views

CVE-2023-28906 Command injection in networking service

A command injection in the networking service of the MIB3 infotainment allows an attacker already presenting in the system to escalate privileges and obtain administrative access to the system. The vulnerability was originally discovered in Skoda Superb III car with MIB3 infotainment unit OEM par...

7.8CVSS0.00659EPSS
Exploits0References3
OSV
OSV
added 2025/06/27 3:31 p.m.6 views

GHSA-277F-37GW-9GMQ raspap-webgui has a Directory Traversal vulnerability

RaspAP raspap-webgui 3.3.1 is vulnerable to Directory Traversal in ajax/networking/getwgkey.php. An authenticated attacker can send a crafted POST request with a path traversal payload in the entity parameter to overwrite arbitrary files writable by the web server via abuse of the tee command use...

8.7CVSS7.2AI score0.00598EPSS
Exploits1References5
SUSE Linux
SUSE Linux
added 2025/06/26 9:7 p.m.1 views

Security update for the Linux Kernel (Live Patch 27 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-15040024122 fixes several issues. The following security issues were fixed: CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inetcreate bsc1235231. CVE-2024-50127: net: sched: fix use-after-free in tapriochange bsc1232908. CVE-2024-50279: d...

8.5CVSS8AI score0.00272EPSS
Exploits0References28
SUSE Linux
SUSE Linux
added 2025/06/26 6:33 p.m.1 views

Security update for the Linux Kernel (Live Patch 26 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-15040024119 fixes several issues. The following security issues were fixed: CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inetcreate bsc1235231. CVE-2024-50127: net: sched: fix use-after-free in tapriochange bsc1232908. CVE-2024-50279: d...

8.5CVSS8AI score0.00272EPSS
Exploits0References28
SUSE Linux
SUSE Linux
added 2025/06/26 12:33 p.m.2 views

Security update for the Linux Kernel (Live Patch 31 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-15040024133 fixes several issues. The following security issues were fixed: CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inetcreate bsc1235231. CVE-2024-50279: dm cache: fix out-of-bounds access to the dirty bitset when resizing...

8.5CVSS8AI score0.00272EPSS
Exploits0References24
OSV
OSV
added 2025/06/26 12:19 p.m.14 views

USN-7595-4 linux-oracle, linux-oracle-6.8, linux-raspi vulnerabilities

It was discovered that the CIFS network file system implementation in the Linux kernel did not properly verify the target namespace when handling upcalls. An attacker could use this to expose sensitive information. CVE-2025-2312 Several security issues were discovered in the Linux kernel. An...

7.8CVSS6.6AI score0.00571EPSS
Exploits1References34
SUSE Linux
SUSE Linux
added 2025/06/26 10:3 a.m.4 views

Security update for the Linux Kernel (Live Patch 46 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-15030059167 fixes several issues. The following security issues were fixed: CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inetcreate bsc1235231. CVE-2024-50127: net: sched: fix use-after-free in tapriochange bsc1232908. CVE-2024-50279: dm...

8.5CVSS8AI score0.00272EPSS
Exploits0References32
OSV
OSV
added 2025/06/26 9:3 a.m.1 views

SUSE-SU-2025:02125-1 Security update for the Linux Kernel (Live Patch 28 for SLE 15 SP4)

This update for the Linux Kernel 5.14.21-15040024125 fixes several issues. The following security issues were fixed: - CVE-2024-56601: net: inet: do not leave a dangling sk pointer in inetcreate bsc1235231. - CVE-2024-50127: net: sched: fix use-after-free in tapriochange bsc1232908. -...

7.8CVSS6.7AI score0.00272EPSS
Exploits0References15
Rows per page
Query Builder