Lucene search
K

854 matches found

Tenable Nessus
Tenable Nessus
added 2026/04/17 12:0 a.m.5 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-007360)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-007360 advisory. In the Linux kernel, the following vulnerability has been resolved: serial: pch: Fix PCI device refcount leak in pchrequestdma As comment of pcigetslot says, it...

5.9AI score0.00227EPSS
Exploits0References4
Redos
Redos
added 2026/04/08 12:0 a.m.5 views

ROS-20260408-73-0025

A vulnerability in the pciepfremovecfs function of the drivers/pci/endpoint/pci-epf-core.c component of the Linux kernel is related to memory utilization after it has been freed. Exploitation of the vulnerability allows an attacker to cause a denial of service...

7.8CVSS6.9AI score0.00152EPSS
Exploits0
EUVD
EUVD
added 2026/04/07 9:32 p.m.6 views

EUVD-2025-209282

An improper access control vulnerability exists in Semtech LoRa LR11xxx transceivers running early versions of firmware where the memory write command accessible via the physical SPI interface fails to enforce write protection on the program call stack. An attacker with physical access to the SPI...

5.4CVSS6.2AI score0.00243EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/04/07 7:56 p.m.19 views

CVE-2025-14857 Semtech LR11xx Memory Write Access Control Bypass

An improper access control vulnerability exists in Semtech LoRa LR11xxx transceivers running early versions of firmware where the memory write command accessible via the physical SPI interface fails to enforce write protection on the program call stack. An attacker with physical access to the SPI...

5.4CVSS0.00243EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2026/04/07 12:0 a.m.5 views

PT-2026-30994

An improper access control vulnerability exists in Semtech LoRa LR11xxx transceivers running early versions of firmware where the memory write command accessible via the physical SPI interface fails to enforce write protection on the program call stack. An attacker with physical access to the SPI...

5.4CVSS6.2AI score0.00243EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2026/04/03 11:26 p.m.6 views

SUSE CVE-2026-23475

In the Linux kernel, the following vulnerability has been resolved: spi: fix statistics allocation The controller per-cpu statistics is not allocated until after the controller has been registered with driver core, which leaves a window where accessing the sysfs attributes can trigger a...

4.7CVSS5.7AI score0.00123EPSS
Exploits0References16
SUSE CVE
SUSE CVE
added 2026/04/03 11:26 p.m.4 views

SUSE CVE-2026-31389

In the Linux kernel, the following vulnerability has been resolved: spi: fix use-after-free on controller registration failure Make sure to deregister from driver core also in the unlikely event that per-cpu statistics allocation fails during controller registration to avoid use-after-free of...

4.1CVSS5.7AI score0.00117EPSS
Exploits0References16
OSV
OSV
added 2026/04/03 4:16 p.m.8 views

UBUNTU-CVE-2026-31389

In the Linux kernel, the following vulnerability has been resolved: spi: fix use-after-free on controller registration failure Make sure to deregister from driver core also in the unlikely event that per-cpu statistics allocation fails during controller registration to avoid use-after-free of...

7.8CVSS5.7AI score0.00117EPSS
Exploits0References9
SUSE CVE
SUSE CVE
added 2026/03/25 4:55 p.m.5 views

SUSE CVE-2026-23361

In the Linux kernel, the following vulnerability has been resolved: PCI: dwc: ep: Flush MSI-X write before unmapping its ATU entry Endpoint drivers use dwpcieepraisemsixirq to raise an MSI-X interrupt to the host using a writel, which generates a PCI posted write transaction. There's no completio...

4.1CVSS5.7AI score0.00129EPSS
Exploits0References15
Debian CVE
Debian CVE
added 2026/03/25 10:27 a.m.3 views

CVE-2026-23361

In the Linux kernel, the following vulnerability has been resolved: PCI: dwc: ep: Flush MSI-X write before unmapping its ATU entry Endpoint drivers use dwpcieepraisemsixirq to raise an MSI-X interrupt to the host using a writel, which generates a PCI posted write transaction. There's no completio...

7.8CVSS5.3AI score0.00129EPSS
Exploits0
CNNVD
CNNVD
added 2026/03/12 12:0 a.m.5 views

ASUS ROG peripheral driver 安全漏洞

The ASUS ROG peripheral driver is a driver for peripheral devices developed by ASUS, a Taiwanese company. The ASUS ROG peripheral driver contains a security vulnerability, which stems from improper access control in the installation directory. This vulnerability may allow for the execution of...

5.4CVSS6.2AI score0.0013EPSS
Exploits0References1
OSV
OSV
added 2026/03/10 6:34 p.m.2 views

SUSE-SU-2026:20716-1 Security update for qemu

This update for qemu fixes the following issues: - CVE-2025-14876: Fixed unbounded allocation in virtio-crypto. bsc1255400 - CVE-2026-0665: Fixed PIRQ bounds check in xenphysdevmappirq. bsc1256484...

6.5CVSS5.8AI score0.00143EPSS
Exploits0References5
Ubuntu
Ubuntu
added 2026/02/19 10:10 a.m.11 views

USN-8033-7: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Nios II architecture; - Sun Sparc architecture; - User-Mode Linux UML; - x86 architecture; - Block layer subsystem;...

7.8CVSS8.2AI score0.00248EPSS
Exploits4
SUSE CVE
SUSE CVE
added 2026/02/19 12:28 a.m.4 views

SUSE CVE-2025-71233

In the Linux kernel, the following vulnerability has been resolved: PCI: endpoint: Avoid creating sub-groups asynchronously The asynchronous creation of sub-groups by a delayed work could lead to a NULL pointer dereference when the driver directory is removed before the work completes. The crash...

4.4CVSS5.6AI score0.00118EPSS
Exploits0References7
Packet Storm News
Packet Storm News
added 2026/02/17 12:0 a.m.2 views

DARTH-PUM: A Hybrid Processing-Using-Memory Architecture

Analog processing-using-memory PUM; a.k.a. in-memory computing makes use of electrical interactions inside memory arrays to perform bulk matrix-vector multiplication MVM operations. However, many popular matrix-based kernels need to execute non-MVM operations, which analog PUM cannot directly...

5.8AI score
Exploits0
UbuntuCve
UbuntuCve
added 2026/02/14 5:15 p.m.4 views

CVE-2026-23207

In the Linux kernel, the following vulnerability has been resolved: spi: tegra210-quad: Protect currxfer check in IRQ handler Now that all other accesses to currxfer are done under the lock, protect the currxfer NULL check in tegraqspiisrthread with the spinlock. Without this protection, the...

4.7CVSS5.7AI score0.00088EPSS
Exploits0References7
EUVD
EUVD
added 2026/02/14 4:27 p.m.5 views

EUVD-2026-5838

In the Linux kernel, the following vulnerability has been resolved: spi: tegra210-quad: Protect currxfer check in IRQ handler Now that all other accesses to currxfer are done under the lock, protect the currxfer NULL check in tegraqspiisrthread with the spinlock. Without this protection, the...

5.3AI score0.00088EPSS
Exploits0References2
OSV
OSV
added 2026/02/14 4:27 p.m.3 views

CVE-2026-23190 ASoC: amd: fix memory leak in acp3x pdm dma ops

In the Linux kernel, the following vulnerability has been resolved: ASoC: amd: fix memory leak in acp3x pdm dma ops...

5.5CVSS5.7AI score0.00114EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2026/02/14 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2026-23202

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - spi: tegra210-quad: Protect currxfer in tegraqspicombinedseqxfer The currxfer field is read by the IRQ handler without holding the lock to check if a transfer i...

5.5CVSS6.1AI score0.00111EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/02/12 11:45 p.m.28 views

CVE-2024-21961

Improper restriction of operations within the bounds of a memory buffer in PCIe® Link could allow an attacker with access to a guest virtual machine to potentially perform a denial of service attack against the host resulting in loss of availability...

6CVSS0.00307EPSS
Exploits0References2
Rows per page
Query Builder