Lucene search
+L

70 matches found

CVE
CVE
added 2026/04/16 9:59 p.m.17 views

CVE-2026-40249

CVE-2026-40249 affects free5GC UDR (versions 4.2.1 and earlier). The PUT handler for /nudr-dr/v2/policy-data/subs-to-notify/{subsId} may continue processing after request body read or deserialization errors, invoking the processor with an uninitialized/partially initialized PolicyDataSubscription...

6.9CVSS6AI score0.00321EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2026/04/16 12:0 a.m.13 views

free5GC 安全漏洞

free5GC is an open-source project for the 5th generation 5G mobile core network. Versions of free5GC prior to 4.2.1 contained security vulnerabilities. These vulnerabilities stemmed from the PUT request handler in the UDR service, which failed to properly return values after request parsing or...

6.9CVSS5.9AI score0.00321EPSS
Exploits1References2
Snyk
Snyk
added 2026/04/14 8:0 p.m.5 views

Improper Check for Unusual or Exceptional Conditions

Overview Affected versions of this package are vulnerable to Improper Check for Unusual or Exceptional Conditions in the HandlePolicyDataSubsToNotifySubsIdPut process. An attacker can cause unintended modification of existing Policy Data notification subscriptions by sending malformed, empty, or...

6.9CVSS5.8AI score0.00321EPSS
Exploits1References3
Snyk
Snyk
added 2026/04/14 8:0 p.m.4 views

Improper Check for Unusual or Exceptional Conditions

Overview github.com/free5gc/udr/internal/sbi is a None Affected versions of this package are vulnerable to Improper Check for Unusual or Exceptional Conditions. in the HandlePolicyDataSubsToNotifySubsIdPut process. An attacker can cause unintended modification of existing Policy Data notification...

6.9CVSS5.8AI score0.00321EPSS
Exploits1References3
OSV
OSV
added 2026/04/14 8:0 p.m.7 views

GHSA-GX38-8H33-PMXR free5gc UDR fail-open request handling in PolicyDataSubsToNotifySubsIdPut may allow unintended subscription updates after input errors

Summary A fail-open request handling flaw in the UDR service causes the /nudr-dr/v2/policy-data/subs-to-notify/subsId PUT handler to continue processing requests even after request body retrieval or deserialization errors. This may allow unintended modification of existing Policy Data notificatio...

6.9CVSS6AI score0.00321EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2026/04/14 12:0 a.m.7 views

PT-2026-32976

Name of the Vulnerable Software and Affected Versions free5GC versions 4.2.1 and earlier Description A fail-open request handling flaw exists in the UDR service. The PUT handler for the endpoint '/nudr-dr/v2/policy-data/subs-to-notify/subsId' does not terminate execution after request body...

6.9CVSS6AI score0.00321EPSS
Exploits1References6
Positive Technologies
Positive Technologies
added 2026/04/13 12:0 a.m.6 views

PT-2026-32431

Incorrect Authorization CWE-863 in Kibana can lead to cross-space information disclosure via Privilege Abuse CAPEC-122. A user with Fleet agent management privileges in one Kibana space can retrieve Fleet Server policy details from other spaces through an internal enrollment endpoint. The endpoin...

4.3CVSS5.8AI score0.00175EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/04/06 5:0 p.m.9 views

CVE-2026-5567

A flaw has been found in Tenda M3 1.0.0.10. This vulnerability affects the function setAdvPolicyData of the file /goform/setAdvPolicyData of the component Destination Handler. Executing a manipulation of the argument policyType can lead to buffer overflow. The attack can be executed remotely. The...

9CVSS7.8AI score0.00632EPSS
Exploits1References1
EUVD
EUVD
added 2026/04/05 3:31 p.m.6 views

EUVD-2026-19081

A flaw has been found in Tenda M3 1.0.0.10. This vulnerability affects the function setAdvPolicyData of the file /goform/setAdvPolicyData of the component Destination Handler. Executing a manipulation of the argument policyType can lead to buffer overflow. The attack can be executed remotely. The...

9CVSS7.8AI score0.00632EPSS
Exploits1References6
Cvelist
Cvelist
added 2026/04/05 12:45 p.m.26 views

CVE-2026-5567 Tenda M3 Destination setAdvPolicyData buffer overflow

A flaw has been found in Tenda M3 1.0.0.10. This vulnerability affects the function setAdvPolicyData of the file /goform/setAdvPolicyData of the component Destination Handler. Executing a manipulation of the argument policyType can lead to buffer overflow. The attack can be executed remotely. The...

9CVSS0.00632EPSS
Exploits1References5
OSV
OSV
added 2026/02/23 9:18 p.m.7 views

CVE-2025-69208 free5GC UDR's NEF incorrectly returns 500 for missing PFD data (UDR 404) in Nnef_PfdManagement GET request

free5GC UDR is the user data repository UDR for free5GC, an an open-source project for 5th generation 5G mobile core networks. Versions prior to 1.4.1 contain an Improper Error Handling vulnerability with Information Exposure. All deployments of free5GC using the NnefPfdManagement service may be...

6.9CVSS5.6AI score0.00269EPSS
Exploits1References6
The Hacker News
The Hacker News
added 2026/02/03 11:0 a.m.21 views

When Cloud Outages Ripple Across the Internet

Recent major cloud service outages have been hard to miss. High-profile incidents affecting providers such as AWS, Azure, and Cloudflare have disrupted large parts of the internet, taking down websites and services that many other systems depend on. The resulting ripple effects have halted...

5.8AI score
Exploits0
EUVD
EUVD
added 2025/12/30 3:30 p.m.7 views

EUVD-2023-60370

In the Linux kernel, the following vulnerability has been resolved: blk-cgroup: Fix NULL deref caused by blkgpolicydata being installed before init blk-iocost sometimes causes the following crash: BUG: kernel NULL pointer dereference, address: 00000000000000e0 ... RIP: 0010:rawspinlock+0x17/0x30...

5.8AI score0.00168EPSS
Exploits0References4
NVD
NVD
added 2025/12/30 1:16 p.m.10 views

CVE-2023-54271

In the Linux kernel, the following vulnerability has been resolved: blk-cgroup: Fix NULL deref caused by blkgpolicydata being installed before init blk-iocost sometimes causes the following crash: BUG: kernel NULL pointer dereference, address: 00000000000000e0 ... RIP: 0010:rawspinlock+0x17/0x30...

0.00168EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2025/12/30 12:16 p.m.7 views

CVE-2023-54271

In the Linux kernel, the following vulnerability has been resolved: blk-cgroup: Fix NULL deref caused by blkgpolicydata being installed before init blk-iocost sometimes causes the following crash: BUG: kernel NULL pointer dereference, address: 00000000000000e0 ... RIP: 0010:rawspinlock+0x17/0x30...

5.1AI score0.00168EPSS
Exploits0
CVE
CVE
added 2025/12/30 12:16 p.m.21 views

CVE-2023-54271

CVE-2023-54271 concerns a NULL pointer dereference in the Linux kernel related to block cgroup handling. The issue arises when blkcg_activate_policy installs blkg_policy_data before ioc_weight policy data is fully initialized, causing a race with ioc_weight_write() that can encounter an uninitial...

5.9AI score0.00168EPSS
Exploits0References5
OSV
OSV
added 2025/12/30 12:16 p.m.4 views

CVE-2023-54271 blk-cgroup: Fix NULL deref caused by blkg_policy_data being installed before init

In the Linux kernel, the following vulnerability has been resolved: blk-cgroup: Fix NULL deref caused by blkgpolicydata being installed before init blk-iocost sometimes causes the following crash: BUG: kernel NULL pointer dereference, address: 00000000000000e0 ... RIP: 0010:rawspinlock+0x17/0x30...

6.2AI score0.00168EPSS
Exploits0References8
Cvelist
Cvelist
added 2025/12/30 12:16 p.m.27 views

CVE-2023-54271 blk-cgroup: Fix NULL deref caused by blkg_policy_data being installed before init

In the Linux kernel, the following vulnerability has been resolved: blk-cgroup: Fix NULL deref caused by blkgpolicydata being installed before init blk-iocost sometimes causes the following crash: BUG: kernel NULL pointer dereference, address: 00000000000000e0 ... RIP: 0010:rawspinlock+0x17/0x30...

0.00168EPSS
Exploits0References5
NVD
NVD
added 2025/12/30 7:15 a.m.6 views

CVE-2025-15230

A vulnerability was found in Tenda M3 1.0.0.134903. Affected by this issue is the function formSetVlanPolicy of the file /goform/setVlanPolicyData. Performing a manipulation of the argument qvlantruckport results in heap-based buffer overflow. Remote exploitation of the attack is possible. The...

9CVSS0.00619EPSS
Exploits1References5
EUVD
EUVD
added 2025/12/30 6:32 a.m.7 views

EUVD-2025-205692

A vulnerability was found in Tenda M3 1.0.0.134903. Affected by this issue is the function formSetVlanPolicy of the file /goform/setVlanPolicyData. Performing manipulation of the argument qvlantruckport results in heap-based buffer overflow. Remote exploitation of the attack is possible. The...

9CVSS8.7AI score0.00619EPSS
Exploits1References6
Rows per page
Query Builder