Lucene search
K

63148 matches found

ATTACKERKB
ATTACKERKB
added 2026/02/11 12:15 p.m.6 views

CVE-2025-66274

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the...

5.1CVSS5.6AI score0.0037EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/02/11 12:15 p.m.4 views

CVE-2025-66274 QTS, QuTS hero

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the...

5.1CVSS5.5AI score0.0037EPSS
Exploits0References1
CVE
CVE
added 2026/02/11 12:15 p.m.12 views

CVE-2025-66274

CVE-2025-66274 affects QNAP QTS and QuTS hero; a NULL pointer dereference allows a remote attacker with administrator privileges to trigger a DoS. Remediation: upgrade to QuTS hero h5.3.2.3354 build 20251225 or later (and affected QTS versions). Exploitation details are described as remote with a...

5.1CVSS5.4AI score0.0037EPSS
Exploits0References1Affected Software1
RedHat Linux
RedHat Linux
added 2026/02/11 11:58 a.m.10 views

kernel: drm/i915: Fix NULL ptr deref by checking new_crtc_state

A NULL pointer dereference vulnerability was found in the Intel i915 graphics driver in the Linux kernel. The intelatomicgetnewcrtcstate function can return NULL if the CRTC state was not previously obtained via intelatomicgetcrtcstate, but the return value was not checked before use. This leads ...

5.7AI score0.00203EPSS
Exploits0References5
OSV
OSV
added 2026/02/11 10:12 a.m.6 views

CLSA-2026-1770804736 Fix CVE(s): CVE-2025-69421

SECURITY UPDATE: A NULL pointer dereference can trigger a crash which leads to Denial of Service for an application processing PKCS12 files - debian/patches/CVE-2025-69421.patch: fix NULL pointer dereference in PKCS12itemdecryptd2i by adding NULL check for oct parameter - CVE-2025-69421...

7.5CVSS7.1AI score0.00844EPSS
Exploits1References1
OSV
OSV
added 2026/02/11 10:7 a.m.5 views

CLSA-2026-1770804474 Fix CVE(s): CVE-2025-69418, CVE-2025-69421, CVE-2026-22796

SECURITY UPDATE: The trailing 1-15 bytes of a message may be exposed incleartext on encryption and are not covered by the authentication tag,allowing an attacker to read or tamper with those bytes without detection - debian/patches/CVE-2025-69418.patch: fix OCB AES-NI/HW stream path...

7.5CVSS6.6AI score0.00844EPSS
Exploits1References1
SUSE Linux
SUSE Linux
added 2026/02/11 9:28 a.m.3 views

Security update for ImageMagick

This update for ImageMagick fixes the following issues: CVE-2026-22770: improper pointer initialization can cause denial of service bsc1256969. CVE-2026-23874: manipulation of digital images can lead to stack overflow bsc1256976. CVE-2026-23876: maliciously crafted image can lead to heap buffer...

9.2CVSS5.8AI score0.00609EPSS
Exploits3References16
OSV
OSV
added 2026/02/11 9:28 a.m.2 views

SUSE-SU-2026:0437-1 Security update for ImageMagick

This update for ImageMagick fixes the following issues: - CVE-2026-22770: improper pointer initialization can cause denial of service bsc1256969. - CVE-2026-23874: manipulation of digital images can lead to stack overflow bsc1256976. - CVE-2026-23876: maliciously crafted image can lead to heap...

9.8CVSS6AI score0.00609EPSS
Exploits3References9
OSV
OSV
added 2026/02/11 9:10 a.m.6 views

RLSA-2026:2470 Moderate: php:7.4 security update

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Security Fixes: php: Leak partial content of the heap through heap buffer over-read in mysqlnd CVE-2024-8929 php: Single byte overread with convert.quoted-printable-decode filter CVE-2024-11233 php: Configuring ...

6.5CVSS6.1AI score0.02286EPSS
Exploits10References14
RedHat Linux
RedHat Linux
added 2026/02/11 12:25 a.m.2 views

kernel: NFSv4/pNFS: Clear NFS_INO_LAYOUTCOMMIT in pnfs_mark_layout_stateid_invalid

A flaw null pointer dereference in the Linux kernel NFS functionality was found in the way client does some specific action for existing NFS connection. A client user could use this flaw to crash the server system...

5.8AI score0.00177EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/11 12:25 a.m.7 views

kernel: drm/i915: Fix NULL ptr deref by checking new_crtc_state

A NULL pointer dereference vulnerability was found in the Intel i915 graphics driver in the Linux kernel. The intelatomicgetnewcrtcstate function can return NULL if the CRTC state was not previously obtained via intelatomicgetcrtcstate, but the return value was not checked before use. This leads ...

5.7AI score0.00203EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/02/11 12:0 a.m.7 views

QNAP Systems File Station 5 代码问题漏洞

QNAP Systems File Station 5 is a file management system developed by QNAP Systems, a company based in Taiwan, China. Versions of QNAP Systems File Station 5 prior to 5.5.6.5166 contained a code-related vulnerability caused by a null pointer dereferencing, which could lead to a denial-of-service...

5.1CVSS5.8AI score0.00503EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/11 12:0 a.m.9 views

QNAP Qsync Central 代码问题漏洞

QNAP Qsync Central is a cloud-based file synchronization service for NAS devices provided by QNAP Technology Co., Ltd. Versions of QNAP Qsync Central prior to 5.0.0.4 contained a code vulnerability caused by a null pointer dereferencing, which could lead to a denial-of-service attack...

6.5CVSS5.9AI score0.00391EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/11 12:0 a.m.6 views

QNAP Qsync Central 代码问题漏洞

QNAP Qsync Central is a cloud-based file synchronization service for NAS devices provided by QNAP Technology Co., Ltd. Versions of QNAP Qsync Central prior to 5.0.0.4 contained a code vulnerability caused by a null pointer dereferencing, which could allow remote attackers to launch a...

6.5CVSS5.9AI score0.00467EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/11 12:0 a.m.5 views

PT-2026-7544

Name of the Vulnerable Software and Affected Versions Qsync Central versions prior to 5.0.0.4 Description A flaw exists in Qsync Central that, if exploited by a remote attacker with a user account, could lead to a denial-of-service DoS attack. The issue is due to a NULL pointer dereference...

6.5CVSS5.5AI score0.00467EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/02/11 12:0 a.m.7 views

QNAP Qsync Central 代码问题漏洞

QNAP Qsync Central is a cloud-based file synchronization service for NAS devices provided by QNAP Technology Co., Ltd. Versions of QNAP Qsync Central prior to 5.0.0.4 contained a code vulnerability caused by a null pointer dereferencing, which could allow remote attackers to launch a...

6.5CVSS5.9AI score0.00391EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/11 12:0 a.m.6 views

QNAP Qsync Central 代码问题漏洞

QNAP Qsync Central is a cloud-based file synchronization service for NAS devices provided by QNAP Technology Co., Ltd. Versions of QNAP Qsync Central prior to 5.0.0.4 contained a code vulnerability caused by a null pointer dereferencing, which could allow remote attackers to launch a...

6.5CVSS5.9AI score0.00467EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/02/11 12:0 a.m.5 views

QNAP Systems QuTS hero 代码问题漏洞

QNAP Systems QuTS hero is a software with data storage and management capabilities developed by QNAP Systems, a company based in Taiwan, China. Versions of QNAP Systems QuTS hero prior to h5.3.2.3354 contained a code vulnerability caused by a null pointer dereferencing, which could lead to a...

5.1CVSS5.9AI score0.0037EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/11 12:0 a.m.5 views

PT-2026-7567

Name of the Vulnerable Software and Affected Versions Qsync Central versions prior to 5.0.0.4 Description A flaw exists in Qsync Central that could allow a remote attacker to cause a denial-of-service DoS condition. Successful exploitation requires the attacker to obtain administrator account...

5.1CVSS5.5AI score0.00559EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/02/11 12:0 a.m.8 views

RHEL 9 : kernel-rt (RHSA-2026:2577)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:2577 advisory. The kernel-rt packages provide the Real Time Linux Kernel, which enables fine-tuning for systems with extremely high determinism requirement...

7.8CVSS5.8AI score0.0026EPSS
Exploits0References25
Rows per page
Query Builder