Lucene search
K

40449 matches found

OSV
OSV
added 2025/06/08 11:15 a.m.1 views

UBUNTU-CVE-2025-38004

In the Linux kernel, the following vulnerability has been resolved: can: bcm: add locking for bcmop runtime updates The CAN broadcast manager CAN BCM can send a sequence of CAN frames via hrtimer. The content and also the length of the sequence can be changed resp reduced at runtime where the...

7.1CVSS6.3AI score0.00204EPSS
Exploits0References42
OSV
OSV
added 2025/06/08 11:15 a.m.2 views

UBUNTU-CVE-2025-38003

In the Linux kernel, the following vulnerability has been resolved: can: bcm: add missing rcu read protection for procfs content When the procfs content is generated for a bcmop which is in the process to be removed the procfs output might show unreliable data UAF. As the removal of bcmop's is...

5.5CVSS6.2AI score0.002EPSS
Exploits0References42
Cvelist
Cvelist
added 2025/06/08 10:34 a.m.17 views

CVE-2025-38003 can: bcm: add missing rcu read protection for procfs content

In the Linux kernel, the following vulnerability has been resolved: can: bcm: add missing rcu read protection for procfs content When the procfs content is generated for a bcmop which is in the process to be removed the procfs output might show unreliable data UAF. As the removal of bcmop's is...

0.002EPSS
Exploits0References8
CVE
CVE
added 2025/06/08 10:34 a.m.120 views

CVE-2025-38003

CVE-2025-38003 affects the Linux kernel: the bcm subsystem generates procfs content for bcm_op objects, and removal without proper rcu protection could expose use-after-free data. The patch adds missing rcu_read_lock() and ensures list entries are removed under RCU, addressing UAF in procfs outpu...

5.5CVSS6.5AI score0.002EPSS
Exploits0References10Affected Software1
OSV
OSV
added 2025/06/08 10:34 a.m.3 views

CVE-2025-38003 can: bcm: add missing rcu read protection for procfs content

In the Linux kernel, the following vulnerability has been resolved: can: bcm: add missing rcu read protection for procfs content When the procfs content is generated for a bcmop which is in the process to be removed the procfs output might show unreliable data UAF. As the removal of bcmop's is...

5.5CVSS6.4AI score0.002EPSS
Exploits0References13
Debian CVE
Debian CVE
added 2025/06/08 10:34 a.m.6 views

CVE-2025-38003

In the Linux kernel, the following vulnerability has been resolved: can: bcm: add missing rcu read protection for procfs content When the procfs content is generated for a bcmop which is in the process to be removed the procfs output might show unreliable data UAF. As the removal of bcmop's is...

5.5CVSS5.6AI score0.002EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/06/08 4:0 a.m.16 views

CVE-2024-46941

SystemUI has an incorrect component protection setting, which allows access to specific information...

4.8CVSS6.5AI score0.00142EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2025/06/08 12:0 a.m.6 views

NanoZone: Scalable, Efficient, and Secure Memory Protection for Arm CCA

Arm Confidential Computing Architecture CCA currently isolates at the granularity of an entire Confidential Virtual Machine CVM, leaving intra-VM bugs such as Heartbleed unmitigated. The state-of-the-art narrows this to the process level, yet still cannot stop attacks that pivot within the same...

6.9AI score
Exploits0
CNNVD
CNNVD
added 2025/06/08 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a lack of rcu read protection, which could lead to unreliable data output...

5.5CVSS6.8AI score0.002EPSS
Exploits0References8
Fedora
Fedora
added 2025/06/07 6:47 a.m.7 views

[SECURITY] Fedora 42 Update: mod_security-2.9.9-1.fc42

ModSecurity is an open source intrusion detection and prevention engine for web applications. It operates embedded into the web server, acting as a powerful umbrella - shielding web applications from attacks...

7.5CVSS7.3AI score0.00559EPSS
Exploits1
The Hacker News
The Hacker News
added 2025/06/06 1:41 p.m.15 views

Empower Users and Protect Against GenAI Data Loss

When generative AI tools became widely available in late 2022, it wasn't just technologists who paid attention. Employees across all industries immediately recognized the potential of generative AI to boost productivity, streamline communication and accelerate work. Like so many waves of...

6.8AI score
Exploits0
NVD
NVD
added 2025/06/06 1:15 p.m.5 views

CVE-2025-49283

Cross-Site Request Forgery CSRF vulnerability in Matthias Nordwig Anti-spam, Spam protection, ReCaptcha for all forms and GDPR-compliant gdpr-compliant-recaptcha-for-all-forms allows Cross Site Request Forgery.This issue affects Anti-spam, Spam protection, ReCaptcha for all forms and...

4.3CVSS0.0014EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/06 12:53 p.m.13 views

CVE-2025-49283 WordPress Anti-spam, Spam protection, ReCaptcha for all forms and GDPR-compliant plugin <= 4.1.1 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in Matthias Nordwig Anti-spam, Spam protection, ReCaptcha for all forms and GDPR-compliant gdpr-compliant-recaptcha-for-all-forms allows Cross Site Request Forgery.This issue affects Anti-spam, Spam protection, ReCaptcha for all forms and...

4.3CVSS0.0014EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/06 6:42 a.m.16 views

CVE-2025-2935 Anti-Spam: Spam Protection | Block Spam Users, Comments, Forms <= 2024.7 - Cross-Site Request Forgery to Multiple Administrative Actions

The Anti-Spam: Spam Protection | Block Spam Users, Comments, Forms plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2024.7. This is due to missing or incorrect nonce validation in the 'ssoptionmaint.php' and 'ssuserfilterlist' files. This make...

5.4CVSS6.6AI score0.00166EPSS
Exploits0References5
NVD
NVD
added 2025/06/06 4:15 a.m.8 views

CVE-2024-46941

SystemUI has an incorrect component protection setting, which allows access to specific information...

4.8CVSS0.00142EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/06 3:24 a.m.12 views

CVE-2024-46941 SystemUI component protection settings vulnerability

SystemUI has an incorrect component protection setting, which allows access to specific information...

4.8CVSS6.8AI score0.00142EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/06 3:24 a.m.17 views

CVE-2024-46941 SystemUI component protection settings vulnerability

SystemUI has an incorrect component protection setting, which allows access to specific information...

4.8CVSS0.00142EPSS
Exploits0References1
Packet Storm News
Packet Storm News
added 2025/06/06 12:0 a.m.2 views

Cyber Security of Sensor Systems for State Sequence Estimation: an AI Approach

Sensor systems are extremely popular today and vulnerable to sensor data attacks. Due to possible devastating consequences, counteracting sensor data attacks is an extremely important topic, which has not seen sufficient study. This paper develops the first methods that accurately...

6.6AI score
Exploits0
CNNVD
CNNVD
added 2025/06/06 12:0 a.m.3 views

Vivo System UI 安全漏洞

Vivo System UI is a cell phone system from the Chinese company Vivo. A security vulnerability exists in Vivo System UI, which stems from improperly set component protection settings that could lead to information disclosure...

4.8CVSS6.3AI score0.00142EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/06/06 12:0 a.m.2 views

WordPress plugin Anti-Spam: Spam Protection | Block Spam Users, Comments, Forms 跨站请求伪造漏洞

WordPress and the WordPress plugin are products of the WordPress Foundation, a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. WordPress plugin Anti-Spam: Spam Protection | Block Spam Users,...

5.4CVSS5.3AI score0.00166EPSS
Exploits0References4
Rows per page
Query Builder