Lucene search
+L

226 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.2 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: nvme-core: fixed a memory leak in dhchapsecretstore Free the dhchapsecret from dhchapsecretstore before returning. Fixed the following kmemleak: Unreferenced object 0xffff8886376ea800 size 64: Command “check”, PID 22048,...

5.9AI score0.00199EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerability in edk2

The BootPerformanceTable pointer is retrieved from an NVRAM variable within PEI. It is recommended that the PcdFirmwarePerformanceDataTableS3Support be set to FALSE...

7.8CVSS6.4AI score0.00423EPSS
Exploits1References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.2 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: cxl/pmem: Fixed leaks in cxlpmemregion and cxlmemdev. When a cxlnvdimm object undergoes an -remove operation where the device is physically removed, nvdimmbridge is disabled, or the nvdimm device is disabled, any associated...

5.5CVSS5.5AI score0.0014EPSS
Exploits0References2
GithubExploit
GithubExploit
added 2026/05/15 4:0 p.m.153 views

hdd-toolkit

HDD Firmware Toolkit A comprehensive Python toolkit for dumpi...

8.8CVSS5.9AI score0.09141EPSS
Exploits2
CNNVD
CNNVD
added 2026/05/08 12:0 a.m.11 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from a race condition in the nvmepollirqdisable function within nvme-pci. This vulnerability may lead ...

4.7CVSS5.8AI score0.00089EPSS
Exploits0References1
OSV
OSV
added 2026/05/07 9:18 a.m.13 views

USN-8244-1 linux, linux-aws, linux-aws-6.17, linux-gcp, linux-gcp-6.17, linux-hwe-6.17, linux-oracle, linux-realtime, linux-realtime-6.17 vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Network drivers; - NVME drivers; - Netfilter; CVE-2026-23112, CVE-2026-23231, CVE-2026-23273...

9.8CVSS5.9AI score0.00788EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2026/05/06 8:21 p.m.11 views

CVE-2026-41926

WDR201A WiFi Extender HW V2.1, FW LFMZX28040922V1.02 contains an OS command injection vulnerability in the firewall.cgi binary across five request handlers that apply insufficient input validation. Attackers can inject arbitrary shell commands through vulnerable parameters like websURLFilter,...

9.3CVSS5.9AI score0.01235EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.10 views

PT-2026-37458

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A NULL pointer dereference occurs in the Linux kernel within the amdgpu ras sysfs badpages read function. This issue arises in rare cases where the EEPROM contains only invalid address...

5.5CVSS5.8AI score0.00126EPSS
Exploits0References12
AlmaLinux
AlmaLinux
added 2026/05/05 12:0 a.m.36 views

Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: nvme: avoid double free special payload CVE-2024-41073 kernel: net: qlogic/qede: fix potential out-of-bounds read in qedetpacont and qedetpaend CVE-2025-40252 kernel: crypto: asymmetricke...

9.8CVSS6.1AI score0.96267EPSS
Exploits230References13
OSV
OSV
added 2026/05/05 12:0 a.m.20 views

ALSA-2026:13577 Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: nvme: avoid double free special payload CVE-2024-41073 kernel: net: qlogic/qede: fix potential out-of-bounds read in qedetpacont and qedetpaend CVE-2025-40252 kernel: crypto: asymmetricke...

9.8CVSS6.9AI score0.96267EPSS
Exploits230References13
Cvelist
Cvelist
added 2026/05/04 7:17 p.m.51 views

CVE-2026-41926 WDR201A WiFi Extender OS Command Injection via firewall.cgi

WDR201A WiFi Extender HW V2.1, FW LFMZX28040922V1.02 contains an OS command injection vulnerability in the firewall.cgi binary across five request handlers that apply insufficient input validation. Attackers can inject arbitrary shell commands through vulnerable parameters like websURLFilter,...

9.3CVSS0.01235EPSS
Exploits0References3
CVE
CVE
added 2026/05/04 7:17 p.m.24 views

CVE-2026-41926

CVE-2026-41926 affects the WDR201A WiFi Extender (HW V2.1, FW LFMZX28040922V1.02). The firewall.cgi binary exposes an OS command injection across five request handlers due to insufficient input validation. Attacks can inject arbitrary shell commands through parameters including websURLFilter, web...

9.3CVSS5.9AI score0.01235EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2026/04/26 8:5 a.m.8 views

nvme: fix admin queue leak on controller reset

...

5.5CVSS5.2AI score0.00123EPSS
Exploits0
CNNVD
CNNVD
added 2026/04/22 12:0 a.m.9 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the fact that nvme-pci does not ensure that the polling queue is indeed a polling queue. This cou...

4.7CVSS5.8AI score0.00089EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/04/22 12:0 a.m.56 views

PT-2026-34428

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition exists in the nvme-pci component. When a user changes the polled queue count at run time, a brief window during a reset may allow a hipri task to poll a queue before the...

8.8CVSS5.8AI score0.00282EPSS
Exploits0References52
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.5 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-011263)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011263 advisory. In the Linux kernel, the following vulnerability has been resolved: nvme-pci: fix mempool alloc size Convert the max size to bytes to match the units of the divisor...

5.7AI score0.00206EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/08 12:0 a.m.4 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-006815)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-006815 advisory. In the Linux kernel, the following vulnerability has been resolved: eeprom: at24: fix memory corruption race condition If the eeprom is not accessible, an nvmem devi...

4.7CVSS6.6AI score0.00187EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/07 12:0 a.m.23 views

Amazon Linux 2023 : bpftool6.12, kernel6.12, kernel6.12-devel (ALAS2023-2026-1543)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1543 advisory. In the Linux kernel, the following vulnerability has been resolved: fs/xattr: missing fdput in fremovexattr error path CVE-2024-14027 In the Linux kernel, the following vulnerability has been...

9.8CVSS6.3AI score0.00788EPSS
Exploits2References318
Cvelist
Cvelist
added 2026/04/03 3:16 p.m.20 views

CVE-2026-31399 nvdimm/bus: Fix potential use after free in asynchronous initialization

In the Linux kernel, the following vulnerability has been resolved: nvdimm/bus: Fix potential use after free in asynchronous initialization Dingisoul with KASAN reports a use after free if deviceadd fails in ndasyncdeviceregister. Commit b6eae0f61db2 "libnvdimm: Hold reference on parent while...

0.00119EPSS
Exploits0References8
Zero Day Initiative
Zero Day Initiative
added 2026/03/30 12:0 a.m.6 views

Apple macOS Exposure of Sensitive Information to Unauthorized Sphere Information Disclosure Vulnerability

This vulnerability allows local attackers to disclose sensitive information on affected installations of Apple macOS. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within NVRAM variabl...

3.8CVSS5.3AI score0.0032EPSS
Exploits0References1
Rows per page
Query Builder