Lucene search
K

1784 matches found

Microsoft CVE
Microsoft CVE
added 2026/01/13 4:0 p.m.2 views

Windows SMB Server Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows SMB Server allows an authorized attacker to elevate privileges over a network...

7.5CVSS7AI score0.00731EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/01/13 4:0 p.m.6 views

Windows SMB Server Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows SMB Server allows an authorized attacker to elevate privileges over a network...

7.5CVSS7AI score0.00784EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/01/13 4:0 p.m.6 views

Windows SMB Server Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows SMB Server allows an authorized attacker to elevate privileges over a network...

7.5CVSS7AI score0.00784EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/01/13 4:0 p.m.14 views

Windows SMB Server Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows SMB Server allows an authorized attacker to elevate privileges over a network...

7.5CVSS7AI score0.01154EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/01/13 4:0 p.m.4 views

Windows SMB Server Elevation of Privilege Vulnerability

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows SMB Server allows an authorized attacker to elevate privileges over a network...

7.5CVSS7AI score0.00784EPSS
Exploits0
CVE
CVE
added 2026/01/13 3:29 p.m.19 views

CVE-2025-68806

CVE-2025-68806 affects the Linux kernel ksmbd’s handling of Extended Attributes (EA). The root cause is a buffer validation flaw in smb2_set_ea where the null terminator’s size (+1) was not included in EaNameLength, leading to incorrect buffer size checks. The patch fixes validation by adding +1 ...

6.2AI score0.00168EPSS
Exploits0References5
Redos
Redos
added 2026/01/13 12:0 a.m.2 views

ROS-20260113-7306

A vulnerability in the createleasebuf function of the SMB subsystem of the Linux kernel is related to pointer dereferencing. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS6.5AI score0.00238EPSS
Exploits0
Redos
Redos
added 2026/01/13 12:0 a.m.5 views

ROS-20260113-7352

A vulnerability in the decryptrawdata function in the fs/smb/client/smb2ops.c module of the SMB subsystem of the Linux kernel is related to the reuse of previously freed memory. Exploitation of the vulnerability may allow an intruder to affect confidentiality, integrity and availability of...

7.8CVSS6.5AI score0.00231EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/01/13 12:0 a.m.4 views

PT-2026-2538

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The smb2 set ea function, responsible for handling Extended Attributes EA, had incorrect buffer validation checks. These checks did not account for the size of the null terminator requir...

5.6AI score0.00168EPSS
Exploits0
CNNVD
CNNVD
added 2026/01/13 12:0 a.m.5 views

Microsoft Windows SMB Server 竞争条件问题漏洞

Microsoft Windows SMB Server is a network file-sharing protocol from Microsoft. It allows applications on a computer to read and write files and request services from server programs on a computer network. An elevation of privilege vulnerability exists in Microsoft Windows SMB Server due to...

7.5CVSS5.9AI score0.00784EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/01/13 12:0 a.m.4 views

Microsoft Windows SMB Server 竞争条件问题漏洞

Microsoft Windows SMB Server is a network file-sharing protocol from Microsoft. It allows applications on a computer to read and write files and request services from server programs on a computer network. An elevation of privilege vulnerability exists in Microsoft Windows SMB Server due to...

7.5CVSS5.9AI score0.01154EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/01/13 12:0 a.m.5 views

Microsoft Windows SMB Server 竞争条件问题漏洞

Microsoft Windows SMB Server is a network file-sharing protocol from Microsoft. It allows applications on a computer to read and write files and request services from server programs on a computer network. An elevation of privilege vulnerability exists in Microsoft Windows SMB Server, which can b...

7.5CVSS5.8AI score0.00731EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.6 views

MiracleLinux 9 : kernel-5.14.0-570.58.1.el9_6 (AXSA:2025-11021:85)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-11021:85 advisory. kernel: vsock/virtio: Validate length in packet header before skbput CVE-2025-39718 kernel: NFS: Fix filehandle bounds checking in nfsfhtodentry...

7.8CVSS7.7AI score0.00181EPSS
Exploits0References5
Packet Storm News
Packet Storm News
added 2026/01/09 12:0 a.m.13 views

Multi-Regional Cloud Honeypot Dataset (MURHCAD)

This data article introduces a comprehensive, high-resolution honeynet dataset designed to support standalone analyses of global cyberattack behaviors. Collected over a continuous 72-hour window June 9 to 11, 2025 on Microsoft Azure, the dataset comprises 132,425 individual attack events captured...

6.9AI score
Exploits0
OSV
OSV
added 2026/01/08 10:22 a.m.6 views

CLSA-2026-1767867718 kernel: Fix of 16 CVEs

crypto: lzo - Fix compression buffer overrun CVE-2025-38068 - wifi: brcmfmac: fix use-after-free when rescheduling brcmfbtcoexinfo work CVE-2025-39863 - NFSD: Protect against send buffer overflow in NFSv2 READ CVE-2022-43945 - tcp: Clear tcpsksk-fastopenrsk in tcpdisconnect. CVE-2025-40186 - can:...

7.8CVSS7.1AI score0.21314EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2026/01/08 9:1 a.m.6 views

smb: client: fix use-after-free in crypt_message when using async crypto

...

7.8CVSS5.4AI score0.00278EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2026/01/07 1:7 a.m.3 views

Moderate: Red Hat Security Advisory: kernel security update

An update for kernel is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.8CVSS6.6AI score0.00238EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/01/07 12:0 a.m.3 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000296)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000296 advisory. An issue was discovered in the Linux kernel before 5.0.10. SMB2read in fs/cifs/smb2pdu.c has a use-after- free. NOTE: this was not fixed correctly in 5.0.10; see the...

4.3CVSS6.5AI score0.01767EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2026/01/07 12:0 a.m.5 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000189)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000189 advisory. An issue was discovered in the Linux kernel before 5.0.10. SMB2negotiate in fs/cifs/smb2pdu.c has an out- of-bounds read because data structures are incompletely...

7.8CVSS6.5AI score0.00602EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.3 views

PT-2026-27647

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the SMB2 implementation of the Linux kernel where uninitialized variables within the smb2 unlink function can lead to system crashes oops. Specifically, if SMB2 open ini...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References15
Rows per page
Query Builder