Lucene search
+L

26 matches found

vulnrichment
vulnrichment
added 2026/06/30 4:29 p.m.8 views

CVE-2026-10654 RFCOMM session-disconnect race leaks session/L2CAP and denies further RFCOMM service in Zephyr Bluetooth Classic

A race condition in the Zephyr Bluetooth Classic RFCOMM host stack subsys/bluetooth/host/classic/rfcomm.c mishandles a simultaneous bidirectional session disconnect. When the local device has initiated a session teardown state BTRFCOMMSTATEDISCONNECTING, DISC sent, RTX timer armed and the connect...

3.1CVSS5.8AI score0.00128EPSS
Exploits1References2
cve
cve
added 2026/06/30 4:29 p.m.27 views

CVE-2026-10654

The CVE-2026-10654 issue is a race in Zephyr’s Bluetooth Classic RFCOMM host stack (subsys/bluetooth/host/classic/rfcomm.c): when one side initiates a session teardown and the peer simultaneously sends a DISC for DLCI 0, rfcomm_handle_disc() forces the session to DISCONNECTED without calling bt_l...

3.1CVSS5.8AI score0.00128EPSS
Exploits1References2Affected Software1
susecve
susecve
added 2026/05/02 1:25 a.m.12 views

SUSE CVE-2026-31718

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in ksmbdclosefd via durable scavenger When a durable file handle survives session disconnect TCP close without SMB2LOGOFF, sessionfdcheck sets fp-conn = NULL to preserve the handle for later reconnection...

7.5CVSS5.7AI score0.00356EPSS
Exploits0References3
nessus
nessus
added 2026/05/02 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-31718

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in ksmbdclosefd via durable scavenger When a durable file handle...

9.8CVSS6.6AI score0.00356EPSS
Exploits0References2
redhatcve
redhatcve
added 2026/05/01 8:39 p.m.5 views

CVE-2026-31718

A flaw was found in ksmbd, the in-kernel SMB3 server for Linux. This vulnerability arises from an asymmetric cleanup process when a durable file handle survives a session disconnect. Specifically, byte-range locks are not properly cleared, leading to a 'use-after-free' error when the durable...

9.8CVSS6AI score0.00356EPSS
Exploits0References4
nvd
nvd
added 2026/05/01 2:16 p.m.11 views

CVE-2026-31718

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in ksmbdclosefd via durable scavenger When a durable file handle survives session disconnect TCP close without SMB2LOGOFF, sessionfdcheck sets fp-conn = NULL to preserve the handle for later reconnection...

9.8CVSS0.00356EPSS
Exploits0References5
ptsecurity
ptsecurity
added 2026/05/01 12:0 a.m.12 views

PT-2026-36348

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue exists in the ksmbd module of the Linux kernel. When a durable file handle persists after a session disconnect TCP close without SMB2 LOGOFF, the session fd check...

9.8CVSS5.8AI score0.00563EPSS
Exploits1References379
citrix
citrix
added 2024/07/14 12:0 a.m.13 views

Citrix Virtual Apps and Desktop - VDA Session Issues

Introduction This article is a summary of top support articles associated with VDA Sessions Disconnects, Registration, Stuck Session as well as Hangs/Crash that occur in the VDA. For Launch issues please see our dedicated Launch issue article Citrix Virtual Apps and Desktops: Session Launch Issue...

7.2AI score
Exploits0
citrix
citrix
added 2023/11/28 12:0 a.m.7 views

iOS Receiver disconnects from session after one minute of activity

Citrix users using Receiver for iOS are disconnected from their Citrix session after working on the session by typing or clicking for around20-30 seconds. The users get the following error: "Cannot Connect. Check your network connection and try again. OK." If the users are not working on the...

6.8AI score
Exploits0
citrix
citrix
added 2023/08/04 12:0 a.m.10 views

Machines are powered off even the power management is set to the preset 'always on'

Power management of the DaaS for Azure machine catalog is set to "always on", But after disconnecting the session, the machine may be shut down...

7.1AI score
Exploits0
citrix
citrix
added 2023/07/14 12:0 a.m.9 views

Citrix session disconnects unexpectedly which appears to be a CWA Crash

The users ICA session simply drops after a few seconds of turning grey. The cause seems to be a Workspace App crash, a dump file is created of the wfice32 process and the application crash is logged in event viewer. Error event: Faulting application name: WFICA32.EXE, version: 22.10.0.15, time...

7AI score
Exploits0
citrix
citrix
added 2022/02/11 12:0 a.m.12 views

Session getting lost after few minutes if Citrix Workspace App for iOS is not running in the foreground

When launching a VDI session from an iOS device, if Citrix Workspace App for iOS CWA is not always on the front, then the session will be disconnected and lost after 5 minutes. End users would have to download a new ICA file again...

6.7AI score
Exploits0
cnnvd
cnnvd
added 2021/07/15 12:0 a.m.5 views

IDrive 安全漏洞

Idrive IDrive is a suite of cloud backup and cloud storage service solutions from IDrive USA. A security vulnerability exists in iDrive RemotePC versions prior to 4.0.1, which can be exploited by an unauthenticated attacker to disconnect a valid user session by connecting to a temporary port...

7.5CVSS7.3AI score0.01034EPSS
Exploits0References3
citrix
citrix
added 2021/06/25 12:0 a.m.10 views

Connection Interrupted, issue reported with different version of Citrix Virtual Apps and Desktops

You may see user sessions are getting disconnected at launch, incomplete ghost session with name "-" is seen on the VDA and Connection Interrupted error for user. if vda have Microsoft defender Anti virus...

7.2AI score
Exploits0
osv
osv
added 2021/01/20 8:15 p.m.6 views

CVE-2021-1257

A vulnerability in the web-based management interface of Cisco DNA Center Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery CSRF attack to manipulate an authenticated user into executing malicious actions without their awareness or consent. The...

8.8CVSS7.1AI score0.00836EPSS
Exploits0References2
redhatcve
redhatcve
added 2020/06/17 2:56 p.m.27 views

CVE-2020-11041

In FreeRDP less than or equal to 2.0.0, an outside controlled array index is used unchecked for data used as configuration for sound backend alsa, oss, pulse, .... The most likely outcome is a crash of the client instance followed by no or distorted sound or a session disconnect. If a user cannot...

4CVSS1.9AI score0.01538EPSS
Exploits0References3
osv
osv
added 2020/05/29 7:15 p.m.24 views

CVE-2020-11041

In FreeRDP less than or equal to 2.0.0, an outside controlled array index is used unchecked for data used as configuration for sound backend alsa, oss, pulse, .... The most likely outcome is a crash of the client instance followed by no or distorted sound or a session disconnect. If a user cannot...

2.7CVSS6.6AI score
Exploits0References3
osv
osv
added 2020/05/29 7:15 p.m.3 views

DEBIAN-CVE-2020-11041

In FreeRDP less than or equal to 2.0.0, an outside controlled array index is used unchecked for data used as configuration for sound backend alsa, oss, pulse, .... The most likely outcome is a crash of the client instance followed by no or distorted sound or a session disconnect. If a user cannot...

2.7CVSS6.7AI score0.01538EPSS
Exploits0References1
prion
prion
added 2020/05/29 7:15 p.m.21 views

Design/Logic Flaw

In FreeRDP less than or equal to 2.0.0, an outside controlled array index is used unchecked for data used as configuration for sound backend alsa, oss, pulse, .... The most likely outcome is a crash of the client instance followed by no or distorted sound or a session disconnect. If a user cannot...

4CVSS5AI score0.01538EPSS
Exploits0References3Affected Software3
cvelist
cvelist
added 2020/05/29 12:0 a.m.30 views

CVE-2020-11041 Improper Validation of Array Index in FreeRDP

In FreeRDP less than or equal to 2.0.0, an outside controlled array index is used unchecked for data used as configuration for sound backend alsa, oss, pulse, .... The most likely outcome is a crash of the client instance followed by no or distorted sound or a session disconnect. If a user cannot...

2.2CVSS5.5AI score0.01538EPSS
Exploits0References3
Rows per page
Query Builder