Lucene search
K

6095 matches found

Debian CVE
Debian CVE
added 2025/04/08 8:18 a.m.8 views

CVE-2025-22015

In the Linux kernel, the following vulnerability has been resolved: mm/migrate: fix shmem xarray update during migration A shmem folio can be either in page cache or in swap cache, but not at the same time. Namely, once it is in swap cache, folio-mapping should be NULL, and the folio is no longer...

5.5CVSS5.5AI score0.00172EPSS
Exploits0
Debian CVE
Debian CVE
added 2025/04/08 8:18 a.m.11 views

CVE-2025-22010

In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix soft lockup during bt pages loop Driver runs a for-loop when allocating bt pages and mapping them with buffer pages. When a large buffer e.g. MR over 100GB is being allocated, it may require a considerable loop coun...

5.5CVSS5.8AI score0.00141EPSS
Exploits0
Debian
Debian
added 2025/04/04 10:20 p.m.16 views

[SECURITY] [DLA 4114-1] zfs-linux security update

Debian LTS Advisory DLA-4114-1 [email protected] https://www.debian.org/lts/security/ Daniel Leidert April 05, 2025 https://wiki.debian.org/LTS Package : zfs-linux Version : 2.0.3-9+deb11u2 CVE ID : CVE-2013-20001 CVE-2023-49298 Debian Bug : 1056752 1059322 Multiple vulnerabilities were...

7.5CVSS7AI score0.02084EPSS
Exploits2
RedhatCVE
RedhatCVE
added 2025/04/04 5:38 p.m.23 views

CVE-2025-31284

A broken access control vulnerability previously discovered in the Trend Vision One Status component could have allowed an administrator to create users who could then change the role of the account and ultimately escalate privileges. Please note: ths issue has already been addressed on the backe...

7.2CVSS7.4AI score0.00239EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/04 5:38 p.m.18 views

CVE-2025-31282

A broken access control vulnerability previously discovered in the Trend Vision One User Account component could have allowed an administrator to create users who could then change the role of the account and ultimately escalate privileges. Please note: ths issue has already been addressed on the...

7.2CVSS7.4AI score0.00237EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/04 5:37 p.m.17 views

CVE-2025-31283

A broken access control vulnerability previously discovered in the Trend Vision One User Roles component could have allowed an administrator to create users who could then change the role of the account and ultimately escalate privileges. Please note: ths issue has already been addressed on the...

7.2CVSS7.4AI score0.00239EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/04/04 5:37 p.m.17 views

CVE-2025-31285

A broken access control vulnerability previously discovered in the Trend Vision One Role Name component could have allowed an administrator to create users who could then change the role of the account and ultimately escalate privileges. Please note: ths issue has already been addressed on the...

7.2CVSS7.4AI score0.00239EPSS
Exploits0References1
NVD
NVD
added 2025/04/02 5:15 p.m.18 views

CVE-2025-31286

An HTML injection vulnerability previously discovered in Trend Vision One could have allowed a malicious user to execute arbitrary code. Please note: this issue has already been addressed on the backend service and is no longer considered an active vulnerability...

9CVSS0.00384EPSS
Exploits0References1
NVD
NVD
added 2025/04/02 5:15 p.m.15 views

CVE-2025-31284

A broken access control vulnerability previously discovered in the Trend Vision One Status component could have allowed an administrator to create users who could then change the role of the account and ultimately escalate privileges. Please note: ths issue has already been addressed on the backe...

7.2CVSS0.00239EPSS
Exploits0References1
NVD
NVD
added 2025/04/02 5:15 p.m.7 views

CVE-2025-31285

A broken access control vulnerability previously discovered in the Trend Vision One Role Name component could have allowed an administrator to create users who could then change the role of the account and ultimately escalate privileges. Please note: ths issue has already been addressed on the...

7.2CVSS0.00239EPSS
Exploits0References1
CVE
CVE
added 2025/04/02 4:39 p.m.54 views

CVE-2025-31286

CVE-2025-31286 refers to an HTML injection vulnerability in Trend Vision One. A malicious user could have caused arbitrary code execution via the affected HTML injection pathway. The issue has been addressed on the backend service and is no longer considered an active vulnerability; no user actio...

9CVSS7.6AI score0.00384EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/04/02 4:39 p.m.5 views

CVE-2025-31286

An HTML injection vulnerability previously discovered in Trend Vision One could have allowed a malicious user to execute arbitrary code. Please note: this issue has already been addressed on the backend service and is no longer considered an active vulnerability...

4.6CVSS7.6AI score0.00384EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/02 4:39 p.m.19 views

CVE-2025-31286

An HTML injection vulnerability previously discovered in Trend Vision One could have allowed a malicious user to execute arbitrary code. Please note: this issue has already been addressed on the backend service and is no longer considered an active vulnerability...

4.6CVSS0.00384EPSS
Exploits0References1
CVE
CVE
added 2025/04/02 4:39 p.m.54 views

CVE-2025-31285

The CVE refers to a broken access control issue in Trend Vision One’s Role Name component that could enable an administrator to create users who can change account roles, leading to privilege escalation. The root cause is described as improper access control within that component. Multiple source...

7.2CVSS7.3AI score0.00239EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/04/02 4:39 p.m.9 views

CVE-2025-31285

A broken access control vulnerability previously discovered in the Trend Vision One Role Name component could have allowed an administrator to create users who could then change the role of the account and ultimately escalate privileges. Please note: ths issue has already been addressed on the...

4.6CVSS0.00239EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/02 4:39 p.m.6 views

CVE-2025-31285

A broken access control vulnerability previously discovered in the Trend Vision One Role Name component could have allowed an administrator to create users who could then change the role of the account and ultimately escalate privileges. Please note: ths issue has already been addressed on the...

4.6CVSS7.3AI score0.00239EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/02 4:39 p.m.16 views

CVE-2025-31284

A broken access control vulnerability previously discovered in the Trend Vision One Status component could have allowed an administrator to create users who could then change the role of the account and ultimately escalate privileges. Please note: ths issue has already been addressed on the backe...

4.6CVSS0.00239EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/02 4:39 p.m.17 views

CVE-2025-31283

A broken access control vulnerability previously discovered in the Trend Vision One User Roles component could have allowed an administrator to create users who could then change the role of the account and ultimately escalate privileges. Please note: ths issue has already been addressed on the...

4.6CVSS0.00239EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/04/02 4:38 p.m.6 views

CVE-2025-31282

A broken access control vulnerability previously discovered in the Trend Vision One User Account component could have allowed an administrator to create users who could then change the role of the account and ultimately escalate privileges. Please note: ths issue has already been addressed on the...

4.6CVSS4.9AI score0.00237EPSS
Exploits0References1
NVD
NVD
added 2025/04/02 1:15 p.m.18 views

CVE-2025-21990

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: NULL-check BO's backing store when determining GFX12 PTE flags PRT BOs may not have any backing store, so bo-tbo.resource will be NULL. Check for that before dereferencing. cherry picked from commit...

5.5CVSS0.00162EPSS
Exploits0References3
Rows per page
Query Builder