Lucene search
K

6095 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/05/31 2:6 p.m.28 views

Security Bulletin: There are multiple vulnerabilities that can affect IBM Fusion

Summary Multiple vulnerabilities affecting IBM Fusion could have resulted in reduced security. These issues have since been resolved. CVE-2024-6783, CVE-2024-9880, CVE-2024-51744, CVE-2024-47764, CVE-2024-9506, CVE-2024-45338, CVE-2025-25193, CVE-2024-21538, CVE-2025-27152, CVE-2024-47535,...

9.8CVSS8.5AI score0.66594EPSS
Exploits8Affected Software1
Debian CVE
Debian CVE
added 2025/05/29 1:15 p.m.5 views

CVE-2025-37999

In the Linux kernel, the following vulnerability has been resolved: fs/erofs/fileio: call erofsonlinefoliosplit after bioaddfolio If bioaddfolio fails because it is full, erofsfileioscanfolio needs to submit the I/O request via erofsfileiorqsubmit and allocate a new I/O request with an empty stru...

5.5CVSS5.6AI score0.00146EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/05/29 1:15 p.m.5 views

CVE-2025-37993

In the Linux kernel, the following vulnerability has been resolved: can: mcan: mcanclassallocatedev: initialize spin lock on device probe The spin lock txhandlingspinlock in struct mcanclassdev is not being initialized. This leads the following spinlock bad magic complaint from the kernel, eg. wh...

5.5CVSS5.6AI score0.00146EPSS
Exploits0
Rosalinux
Rosalinux
added 2025/05/26 6:35 a.m.12 views

Advisory ROSA-SA-2025-2874

Software: java-1.8.0-openjdk 1.8.0.442.b06 OS: rosa-server79 packageevrstring: java-1.8.0-openjdk-1.8.0.442.b06-1.0.3.res7 CVE-ID: CVE-2025-21587 BDU-ID: 2025-05070 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the JSSE component of the Oracle Java SE software platform, Oracle GraalVM for JDK and...

7.4CVSS5.5AI score0.00688EPSS
Exploits0
Rosalinux
Rosalinux
added 2025/05/26 6:35 a.m.9 views

Advisory ROSA-SA-2025-2871

Software: tigervnc 1.8.0 OS: rosa-server79 packageevrstring: tigervnc-1.8.0.0-33.0.5.res7 CVE-ID: CVE-2024-9632 BDU-ID: 2024-09084 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the XkbSetCompatMap function of the X Window System X.Org Server implementation is related to a buffer overflow in...

7.8CVSS8.6AI score0.00894EPSS
Exploits0
Rosalinux
Rosalinux
added 2025/05/26 6:35 a.m.11 views

Advisory ROSA-SA-2025-2870

Software: xorg-x11-server 1.20.4 OS: rosa-server79 packageevrstring: xorg-x11-server-1.20.4-29.0.1.res7 CVE-ID: CVE-2025-26594 BDU-ID: 2025-04129 CVE-Crit: MEDIUM. CVE-DESC.: A vulnerability in the Wayland protocol implementation for X.Org XWayland, an implementation of the X Window System X.Org...

7.8CVSS8.4AI score0.00474EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 1:14 a.m.5 views

CVE-2022-41874

Tauri is a framework for building binaries for all major desktop platforms. In versions prior to 1.0.7 and 1.1.2, Tauri is vulnerable to an Incorrectly-Resolved Name. Due to incorrect escaping of special characters in paths selected via the file dialog and drag and drop functionality, it is...

4.7CVSS6.8AI score0.00421EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 1:8 a.m.9 views

CVE-2022-24714

Icinga Web 2 is an open source monitoring web interface, framework and command-line interface. Installations of Icinga 2 with the IDO writer enabled are affected. If you use service custom variables in role restrictions, and you regularly decommission service objects, users with said roles may...

5.3CVSS6.3AI score0.01179EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:17 p.m.8 views

CVE-2021-32644

Ampache is an open source web based audio/video streaming application and file manager. Due to a lack of input filtering versions 4.x.y are vulnerable to code injection in random.php. The attack requires user authentication to access the random.php page unless the site is running in demo mode. Th...

6.4CVSS7.3AI score0.00843EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:12 p.m.7 views

CVE-2020-13153

app/View/Events/resolvedattributes.ctp in MISP before 2.4.126 has XSS in the resolved attributes view...

6.1CVSS6AI score0.00835EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/05/20 4:47 p.m.5 views

CVE-2025-37966

In the Linux kernel, the following vulnerability has been resolved: riscv: Fix kernel crash due to PRSETTAGGEDADDRCTRL When userspace does PRSETTAGGEDADDRCTRL, but Supm extension is not available, the kernel crashes: Oops - illegal instruction 1 snip epc : settaggedaddrctrl+0x112/0x15a ra :...

5.5CVSS5.5AI score0.0013EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/05/20 4:1 p.m.9 views

CVE-2025-37964

In the Linux kernel, the following vulnerability has been resolved: x86/mm: Eliminate window where TLB flushes may be inadvertently skipped tl;dr: There is a window in the mm switching code where the new CR3 is set and the CPU should be getting TLB flushes for the new mm. But shouldflushtlb has a...

5.5CVSS5.8AI score0.00149EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/05/20 3:58 p.m.5 views

CVE-2025-37944

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Fix invalid entry fetch in ath12kdpmonsrngprocess Currently, ath12kdpmonsrngprocess uses ath12khalsrngsrcgetnextentry to fetch the next entry from the destination ring. This is incorrect because...

7.8CVSS6AI score0.00168EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/05/20 3:21 p.m.7 views

CVE-2025-37927

In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Fix potential buffer overflow in parseivrsacpihid There is a string parsing logic error which can lead to an overflow of hid or uid buffers. Comparing ACPIIDLEN against a total string length doesn't take into account t...

7.8CVSS6.2AI score0.00202EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/05/20 3:21 p.m.14 views

CVE-2025-37921

In the Linux kernel, the following vulnerability has been resolved: vxlan: vnifilter: Fix unlocked deletion of default FDB entry When a VNI is deleted from a VXLAN device in 'vnifilter' mode, the FDB entry associated with the default remote assuming one was configured is deleted without holding t...

7.8CVSS5.9AI score0.00168EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/05/20 3:21 p.m.6 views

CVE-2025-37906

In the Linux kernel, the following vulnerability has been resolved: ublk: fix race between iouringcmdcompleteintask and ublkcancelcmd ublkcancelcmd calls iouringcmddone to complete uringcmd, but we may have scheduled task work via iouringcmdcompleteintask for dispatching request, then kernel cras...

4.7CVSS5.5AI score0.00106EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/05/20 3:21 p.m.11 views

CVE-2025-37903

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix slab-use-after-free in hdcp The HDCP code in amdgpudmhdcp.c copies pointers to amdgpudmconnector objects without incrementing the kref reference counts. When using a USB-C dock, and the dock is unplugged, the...

7.8CVSS6AI score0.00165EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/05/20 3:21 p.m.11 views

CVE-2025-37896

In the Linux kernel, the following vulnerability has been resolved: spi: spi-mem: Add fix to avoid divide error For some SPI flash memory operations, dummy bytes are not mandatory. For example, in Winbond SPINAND flash memory devices, the writecache and updatecache operation variants have zero...

5.5CVSS5.7AI score0.0014EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2025/05/13 8:28 a.m.4 views

kernel: Bluetooth: MGMT: Fix slab-use-after-free Read in set_powered_sync

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Fix slab-use-after-free Read in setpoweredsync This fixes the following crash: ================================================================== BUG: KASAN: slab-use-after-free in setpoweredsync+0x3a/0xc0...

7.8CVSS6.8AI score0.00222EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/05/13 12:0 a.m.14 views

Amazon Linux AMI : kernel (ALAS-2025-1977)

The version of kernel installed on the remote host is prior to 4.14.355-196.643. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS-2025-1977 advisory. In the Linux kernel, the following vulnerability has been resolved: btrfs: do not clean up repair bio if submit fai...

7.8CVSS6.5AI score0.00274EPSS
Exploits0References10
Rows per page
Query Builder