Lucene search
K

11602 matches found

Nuclei
Nuclei
added 6 hours ago61 views

Powertek Firmware <3.30.30 - Authorization Bypass

Powertek firmware multiple brands before 3.30.30 running Power Distribution Units are vulnerable to authorization bypass in the web interface. To exploit the vulnerability, an attacker must send an HTTP packet to the data retrieval interface /cgi/getparam.cgi with the tmpToken cookie set to an...

9.8CVSS7.1AI score0.13425EPSS
Exploits1References5
Nuclei
Nuclei
added 6 hours ago31 views

Eaton Intelligent Power Manager 1.6 - Directory Traversal

Eaton Intelligent Power Manager v1.6 allows an attacker to include a file via directory traversal, which can lead to sensitive information disclosure, denial of service and code execution. id: CVE-2018-12031 info: name: Eaton Intelligent Power Manager 1.6 - Directory Traversal author: daffainfo...

9.8CVSS7.4AI score0.17313EPSS
Exploits2References5
RedhatCVE
RedhatCVE
added yesterday4 views

CVE-2026-53340

A flaw was found in the Linux kernel's i2c: imx driver. During runtime power management, an inconsistency between the clock and pinctrl states can occur. If the pinctrl state fails to switch to sleep mode after the clock is disabled, the clock remains off. This can lead to a system crash when the...

5.5CVSS5.7AI score
Exploits0References4
Debian CVE
Debian CVE
added yesterday4 views

CVE-2026-53340

In the Linux kernel, the following vulnerability has been resolved: i2c: imx: fix clock and pinctrl state inconsistency in runtime PM In i2cimxruntimesuspend, the clock is disabled before switching the pinctrl state to sleep. If pinctrlpmselectsleepstate fails, the runtime suspend is aborted but...

5.7AI score
Exploits0
Cvelist
Cvelist
added 3 days ago26 views

CVE-2026-10647 Deadlock denial of service in USB CDC-NCM device class on TX enqueue failure

The USB CDC-NCM device class subsys/usb/devicenext/class/usbdcdcncm.c ignores the return value of usbdepenqueue in its ethernet transmit callback cdcncmsend. When the enqueue fails, the function still calls ksemtake&data-syncsem, KFOREVER, blocking on a completion semaphore that is only ever...

5.3CVSS0.00126EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 3 days ago5 views

CVE-2026-53297

A flaw was found in the Linux kernel's mana network driver. This vulnerability occurs when the manaremove function is invoked a second time without proper checks after a power management PM resume failure and subsequent driver unbinding. A local attacker could exploit this double invocation to...

5.5CVSS5.8AI score0.00166EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 4 days ago6 views

SUSE CVE-2026-53297

In the Linux kernel, the following vulnerability has been resolved: net: mana: Guard manaremove against double invocation If PM resume fails e.g., manaattach returns an error, manaprobe calls manaremove, which tears down the device and sets gd-gdmacontext = NULL and gd-driverdata = NULL. However,...

5.8AI score0.00166EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 4 days ago6 views

SUSE CVE-2026-53308

In the Linux kernel, the following vulnerability has been resolved: power: supply: max77705: Free allocated workqueue and fix removal order Use devm interface for allocating workqueue to fix two bugs at the same time: 1. Driver leaks the memory on remove, because the workqueue is not destroyed. 2...

5.8AI score0.00145EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 4 days ago5 views

Linux Distros Unpatched Vulnerability : CVE-2026-53051

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - PCI: tegra194: Fix CBB timeout caused by DBI access before core power-on When PERST is deasserted twice assert - deassert - assert - deassert, a CBB Control...

5.8AI score0.00175EPSS
Exploits0References3
NVD
NVD
added 6 days ago6 views

CVE-2026-53308

In the Linux kernel, the following vulnerability has been resolved: power: supply: max77705: Free allocated workqueue and fix removal order Use devm interface for allocating workqueue to fix two bugs at the same time: 1. Driver leaks the memory on remove, because the workqueue is not destroyed. 2...

0.00145EPSS
Exploits0References2
OSV
OSV
added 6 days ago3 views

UBUNTU-CVE-2026-53308

In the Linux kernel, the following vulnerability has been resolved: power: supply: max77705: Free allocated workqueue and fix removal order Use devm interface for allocating workqueue to fix two bugs at the same time: 1. Driver leaks the memory on remove, because the workqueue is not destroyed. 2...

5.8AI score0.00145EPSS
Exploits0References5
CVE
CVE
added 6 days ago9 views

CVE-2026-53308

CVE-2026-53308 concerns a Linux kernel issue in the max77705 power supply driver. The patch changes workqueue handling by using the devm interface for allocating the workqueue to fix two bugs: (1) memory leaks on remove() because the workqueue wasn’t destroyed, and (2) incorrect destroy/free orde...

5.8AI score0.00145EPSS
Exploits0References2
EUVD
EUVD
added 6 days ago6 views

EUVD-2026-39843

In the Linux kernel, the following vulnerability has been resolved: power: supply: max77705: Free allocated workqueue and fix removal order Use devm interface for allocating workqueue to fix two bugs at the same time: 1. Driver leaks the memory on remove, because the workqueue is not destroyed. 2...

5.8AI score0.00145EPSS
Exploits0References2
Nuclei
Nuclei
added 6 days ago56 views

Altenergy Power Control Software C1.2.5 - Remote Command Injection

Altenergy Power Control Software C1.2.5 is susceptible to remote command injection via shell metacharacters in the index.php/management/settimezone parameter, because of settimezone in models/managementmodel.php. An attacker can potentially obtain sensitive information, modify data, and/or execut...

9.8CVSS7.4AI score0.85332EPSS
Exploits5References5
RedhatCVE
RedhatCVE
added 6 days ago7 views

CVE-2026-53056

A flaw was found in the Linux kernel's Display Processing Unit DPU driver. During DPU runtime suspend, a mismatch can occur between the power rail voltage and the core clock frequency. This happens when the power management attempts to drop the voltage while the clock remains at its highest rate...

5.8AI score0.0018EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 6 days ago9 views

PT-2026-52947

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak and a use-after-free issue exist in the max77705 power supply driver. The driver fails to destroy the allocated workqueue during the remove process, leading to memory...

5.8AI score0.00145EPSS
Exploits0References6
NVD
NVD
added last week10 views

CVE-2026-4930

SYMCRYPTO is the SiXG301's host side hardware engine accessed by PSA crypto library that accelerates symmetric cryptographic operations AES encryption/decryption and hashing. DPA Countermeasures on SYMCRYPTO can be weakened reduced entropy by forcing certain seed values if an attacker gains code...

7.1CVSS0.00101EPSS
Exploits0References1
EUVD
EUVD
added last week5 views

EUVD-2026-39534

SYMCRYPTO is the SiXG301's host side hardware engine accessed by PSA crypto library that accelerates symmetric cryptographic operations AES encryption/decryption and hashing. DPA Countermeasures on SYMCRYPTO can be weakened reduced entropy by forcing certain seed values if an attacker gains code...

7.1CVSS6.3AI score0.00101EPSS
Exploits0References1
Cvelist
Cvelist
added last week33 views

CVE-2026-4930 DPA Countermeasures weakening on Series 3 devices

SYMCRYPTO is the SiXG301's host side hardware engine accessed by PSA crypto library that accelerates symmetric cryptographic operations AES encryption/decryption and hashing. DPA Countermeasures on SYMCRYPTO can be weakened reduced entropy by forcing certain seed values if an attacker gains code...

7.1CVSS0.00101EPSS
Exploits0References1
CVE
CVE
added last week12 views

CVE-2026-4930

CVE-2026-4930 concerns SIxG301’s SYMCRYPTO, a host-side hardware engine exposed to the PSA Crypto library to accelerate symmetric operations (AES and hashing). The reported issue is that DPA countermeasures on SYMCRYPTO can be weakened by forcing certain seed values if an attacker achieves code e...

7.1CVSS6.3AI score0.00101EPSS
Exploits0References1
Rows per page
Query Builder