RHEL 9 : kernel (RHSA-2025:18054)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:18054 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: netsched: hfsc: Fix a potenti...

F5 Networks BIG-IP : BIG-IP Advanced WAF and ASM bd process vulnerability (K000156624)

The version of F5 Networks BIG-IP installed on the remote host is prior to 17.1.3 / 17.5.1. It is, therefore, affected by a vulnerability as referenced in the K000156624 advisory. When a BIG-IP Advanced WAF or ASM security policy is configured with a URL greater than 1024 characters in length for...

F5 Networks BIG-IP : BIG-IP Advanced WAF and ASM and NGINX App Protect DNS lookup vulnerability (K000148512)

The version of F5 Networks BIG-IP installed on the remote host is prior to 17.1.2 / 17.5.0. It is, therefore, affected by a vulnerability as referenced in the K000148512 advisory. When BIG-IP Advanced WAF is configured on a virtual server with Server-Side Request Forgery SSRF protection or when a...

EUVD-2022-55135

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix by adding FPU protection for dcn30internalvalidatebw Why Below general protection fault observed when WebGL Aquarium is run for longer duration. If drm debug logs are enabled and set to 0x1f then the issue is...

EUVD-2025-34394

Improper access control in Software Protection Platform SPP allows an authorized attacker to elevate privileges locally...

CVE-2025-59199

Improper access control in Software Protection Platform SPP allows an authorized attacker to elevate privileges locally...

CVE-2025-59199

Improper access control in Software Protection Platform SPP allows an authorized attacker to elevate privileges locally...

CVE-2025-59199 Software Protection Platform (SPP) Elevation of Privilege Vulnerability

...

CVE-2025-59199

CVE-2025-59199 affects the Software Protection Platform (SPP). It is described as an improper access control vulnerability that allows a locally authenticated attacker to escalate privileges (CVSSv3.1 base score 7.8, HIGH; attack vector: LOCAL; privileges required: LOW; user interaction: NONE). T...

CVE-2025-59199 Software Protection Platform (SPP) Elevation of Privilege Vulnerability

...

CVE-2025-25255

The CVE-2025-25255 entry describes an Improperly Implemented Security Check for Standard vulnerability (CWE-358) in Fortinet FortiOS 7.6.0–7.6.3 and FortiProxy 7.6.0–7.6.3, FortiProxy 7.4.0–7.4.11, FortiProxy 7.2 all versions, and FortiProxy 7.0.1–7.0.22. The issue allows an unauthenticated proxy...

CVE-2025-0033

Improper access control within AMD SEV-SNP could allow an admin privileged attacker to write to the RMP during SNP initialization, potentially resulting in a loss of SEV-SNP guest memory integrity...

CVE-2025-0033

CVE-2025-0033 affects AMD SEV-SNP and describes a race condition in the Reverse Map Table (RMP) initialization that could allow a privileged hypervisor to modify RMP contents, potentially compromising SEV-SNP guest memory integrity. Affected hardware/stack: AMD EPYC processors with SEV-SNP. The r...

Software Protection Platform (SPP) Elevation of Privilege Vulnerability

Improper access control in Software Protection Platform SPP allows an authorized attacker to elevate privileges locally...

CVE-2025-10720

The WP Private Content Plus through 3.6.2 provides a global content protection feature that requires a password. However, the access control check is based only on the presence of an unprotected client-side cookie. As a result, an unauthenticated attacker can completely bypass the password...

Moderate: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

SUSE SLES15 Security Update : kernel (Live Patch 4 for SLE 15 SP6) (SUSE-SU-2025:03566-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:03566-1 advisory. This update for the Linux Kernel 6.4.0-1506002322 fixes several issues. The following security issues were fixed: - CVE-2025-38477: net/sched:...

SUSE SLES15 Security Update : kernel (Live Patch 7 for SLE 15 SP6) (SUSE-SU-2025:03569-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:03569-1 advisory. This update for the Linux Kernel 6.4.0-1506002333 fixes several issues. The following security issues were fixed: - CVE-2025-38477: net/sched:...

SUSE SLES15 Security Update : kernel (Live Patch 39 for SLE 15 SP4) (SUSE-SU-2025:03578-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:03578-1 advisory. This update for the Linux Kernel 5.14.21-15040024161 fixes several issues. The following security issues were fixed: - CVE-2024-53168: sunrpc:...

Fortinet FortiOS和Fortinet FortiProxy 安全特征问题漏洞

Fortinet FortiOS and Fortinet FortiProxy are both products of Fortinet, Inc. Fortinet FortiOS is a dedicated security operating system on the FortiGate network security platform. The system provides users with a variety of security features such as firewall, antivirus, IPSec/SSLVPN, Web content...