7072 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-53015
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - erofs: unify lcn as u64 for 32-bit platforms As sashiko reported 1, lcn was typed as unsigned long or unsigned int sometimes, which is only 32 bits wide on 32-b...
EUVD-2026-38883
In the Linux kernel, the following vulnerability has been resolved: erofs: unify lcn as u64 for 32-bit platforms As sashiko reported 1, lcn was typed as unsigned long or unsigned int sometimes, which is only 32 bits wide on 32-bit platforms, which causes lcn lclusterbits to be truncated at 4 GiB...
CVE-2026-53015
In the Linux kernel, the following vulnerability has been resolved: erofs: unify lcn as u64 for 32-bit platforms As sashiko reported 1, lcn was typed as unsigned long or unsigned int sometimes, which is only 32 bits wide on 32-bit platforms, which causes lcn lclusterbits to be truncated at 4 GiB...
Astra Linux – Vulnerability found in Linux 6.12, Linux 6.1
In the Linux kernel, the following vulnerabilities have been resolved: drm/amdgpu: Fixed NULL pointer dereferencing in the VRAM logic for APU devices Previously, APU platforms and other scenarios with uninitialized VRAM managers caused NULL pointer dereferencing in ttmresourcemanagerusage. The ro...
Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12
In the Linux kernel, the following vulnerabilities have been resolved: KVM: Do not corrupt the irqfd routing entry when deassigning an irqfd When deassigning a KVMIRQFD, do not corrupt the irqfd’s copy of the IRQ routing entry. Doing so will break the kvmarchirqbypassdelproducer function on x86 a...
CVE-2026-12537 Unauthenticated Remote Code Execution in Gemini CLI CI/CD Workflows
Improper Neutralization used in an OS Command in the container launcher in Google Gemini CLI versions prior to 0.39.1 and run-gemini-cli GitHub Action versions prior to 0.1.22 on headless CI platforms allows an unprivileged attacker to achieve pre-sandbox host-level code execution a maliciously...
CVE-2026-52937
creationtimestamp| type| source ---|---|--- 2026-06-24 08:25:16+00:00| seen| https://infosec.exchange/users/vuldb/statuses/116804125485299247 2026-06-24 10:27:08+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mozpcolbgn2y 2026-06-24 11:29:12+00:00| seen|...
CVE-2026-44727
creationtimestamp| type| source ---|---|--- 2026-06-23 00:00:41+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mow3tlg6pj2y 2026-06-23 00:00:43+00:00| seen| https://infosec.exchange/users/offseq/statuses/116796479180840470 2026-06-27 19:37:06+00:00| seen|...
EUVD-2026-37129
NVIDIA NeMo Framework for all platforms contains a code injection vulnerability. A successful exploit of this vulnerability might lead to code execution, escalation of privileges, information disclosure, and data tampering...
Microsoft Security Advisory CVE-2026-45491 – .NET Tampering Vulnerability
Executive Summary Microsoft is releasing this security advisory to provide information about a vulnerability in System.Formats.Tar. This advisory also provides guidance on what developers can do to update their applications to remove this vulnerability. A tampering vulnerability exists in the...
CVE-2026-3276 vulnerabilities
Vulnerabilities for packages: python...
AMD RAID Driver Security Update
AMD has informed HP of a potential security vulnerability in the AMD RAID Driver, which might allow escalation of privilege and arbitrary code execution. AMD is releasing driver updates to mitigate the potential vulnerability. AMD has released updates to mitigate the potential vulnerability. HP h...
CVE-2026-12192
creationtimestamp| type| source ---|---|--- 2026-06-15 01:00:19+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3moc3gsau3s22 2026-06-15 01:18:18+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3moc4gzc3iz2b 2026-06-15 03:00:28+00:00| seen|...
AES-OCB IV Ignored on EVP_Cipher() Path
...
Linux Distros Unpatched Vulnerability : CVE-2026-1836
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The system stores the username and password from the login form after submitting the request. This could allow an attacker with access to the platform to return...
CVE-2026-48043
Netty is a network application framework for development of protocol servers and clients. In netty-codec-http2 prior to versions 4.1.135.Final and 4.2.15.Final, the DelegatingDecompressorFrameListener class orchestrates HTTP/2 decompression by embedding a per-stream EmbeddedChannel that runs the...
CVE-2026-12060
CVE-2026-12060 concerns Heptabase (Hepta Platforms) with an Exposed Dangerous Method or Function vulnerability. The description indicates unauthenticated remote attackers can leverage social engineering to persuade a victim to open or load a malicious webpage inside the Heptabase application, res...
CVE-2026-12060 Hepta Platforms|Heptabase - Exposed Dangerous
Heptabase developed by Hepta Platforms has a Exposed Dangerous Method or Function vulnerability, allowing unauthenticated remote attackers to leverage social engineering techniques to trick a victim into opening or loading a malicious webpage within the Heptabase application, thereby gaining...
CVE-2026-11699 vulnerabilities
Vulnerabilities for packages: chromium...
CVE-2026-11694 vulnerabilities
Vulnerabilities for packages: chromium...