Lucene search
+L

3200 matches found

CVE
CVE
added 2026/06/08 4:17 p.m.34 views

CVE-2026-11611

CVE-2026-11611 concerns the Content Synchronization persistent search plugin in 389 Directory Server. The flaw enables denial of service via unbounded memory growth when an authenticated client stops reading sync responses, and there are additional race conditions in the plugin thread lifecycle t...

6.5CVSS5.4AI score0.00244EPSS
Exploits0References2Affected Software3
CNNVD
CNNVD
added 2026/06/08 12:0 a.m.12 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from reuse and race conditions in the path of Bluetooth hciuart’s shutdown and initialization processe...

7.8CVSS5.3AI score0.00185EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2026/06/05 7:34 p.m.14 views

CVE-2026-49325

Improper handling of physical conditions in the bike-shutdown control of the Indian Motorcycle Scout Bobber + Tech 2025 model year allows a physical attacker with access to the Wireless Control Module WCM wiring harness to bypass the anti-theft shutdown. The WCM signals shutdown to a peer ECU via...

4.6CVSS5.5AI score0.0016EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/05 5:49 p.m.11 views

EUVD-2025-210079

NetMan 204 fails to enforce authentication on its administrative pages and command endpoints. A remote, unauthenticated attacker can directly request administrative pages such as administration.html, administration-commands.html, and configuration.html to disclose sensitive information including...

9.8CVSS5.5AI score0.00533EPSS
Exploits0References3
Fedora
Fedora
added 2026/06/05 4:27 a.m.16 views

[SECURITY] Fedora 44 Update: python-starlette-0.52.1-2.fc44

Starlette is a lightweight ASGI framework/toolkit, which is ideal for building async web services in Python. It is production-ready, and gives you the following: =E2=80=A2 A lightweight, low-complexity HTTP web framework. =E2=80=A2 WebSocket support. =E2=80=A2 In-process background tasks. =E2=80=...

6.5CVSS5.8AI score0.01438EPSS
Exploits2
SUSE CVE
SUSE CVE
added 2026/06/04 2:21 a.m.9 views

SUSE CVE-2026-46249

In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: Fix PF driver crash with kexec kernel booting During a kexec reboot the hardware is not power-cycled, so AF state from the old kernel can persist into the new kernel. When AF and PF drivers are built as modules, the...

5.5CVSS5.8AI score0.00115EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2026/06/04 2:21 a.m.10 views

SUSE CVE-2026-46267

In the Linux kernel, the following vulnerability has been resolved: nfc: hci: shdlc: Stop timers and work before freeing context llcshdlcdeinit purges SHDLC skb queues and frees the llcshdlc structure while its timers and state machine work may still be active. Timer callbacks can schedule smwork...

5.7AI score0.00121EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/06/03 7:48 p.m.9 views

CVE-2026-46270

A flaw was found in the Linux kernel's power supply driver, specifically in the rt9455 component. This vulnerability, a use-after-free, occurs due to a race condition during the system's shutdown process where an interrupt can access memory that has already been released. This can lead to system...

8.4CVSS5.8AI score0.00129EPSS
Exploits0References4
NVD
NVD
added 2026/06/03 6:16 p.m.15 views

CVE-2026-46249

In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: Fix PF driver crash with kexec kernel booting During a kexec reboot the hardware is not power-cycled, so AF state from the old kernel can persist into the new kernel. When AF and PF drivers are built as modules, the...

5.5CVSS0.00115EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/06/03 3:50 p.m.8 views

CVE-2026-46267

In the Linux kernel, the following vulnerability has been resolved: nfc: hci: shdlc: Stop timers and work before freeing context llcshdlcdeinit purges SHDLC skb queues and frees the llcshdlc structure while its timers and state machine work may still be active. Timer callbacks can schedule smwork...

5.7AI score0.00121EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2026/06/03 3:49 p.m.45 views

CVE-2026-46249 octeontx2-af: Fix PF driver crash with kexec kernel booting

In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: Fix PF driver crash with kexec kernel booting During a kexec reboot the hardware is not power-cycled, so AF state from the old kernel can persist into the new kernel. When AF and PF drivers are built as modules, the...

0.00115EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2026/06/03 3:49 p.m.6 views

CVE-2026-46249

In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: Fix PF driver crash with kexec kernel booting During a kexec reboot the hardware is not power-cycled, so AF state from the old kernel can persist into the new kernel. When AF and PF drivers are built as modules, the...

5.8AI score0.00115EPSS
Exploits0References9Affected Software1
OSV
OSV
added 2026/06/03 3:49 p.m.5 views

CVE-2026-46249 octeontx2-af: Fix PF driver crash with kexec kernel booting

In the Linux kernel, the following vulnerability has been resolved: octeontx2-af: Fix PF driver crash with kexec kernel booting During a kexec reboot the hardware is not power-cycled, so AF state from the old kernel can persist into the new kernel. When AF and PF drivers are built as modules, the...

5.5CVSS5.9AI score0.00115EPSS
Exploits0References11
CVE
CVE
added 2026/06/03 3:49 p.m.28 views

CVE-2026-46249

The CVE-2026-46249 issue affects the Linux kernel octeontx2-af PF driver. During a kexec reboot, the old AF state may persist if the PF driver probes before AF reinitializes, and if the RVUM block revision is not cleared on shutdown, PF can mis-detect AF readiness and access stale hardware, leadi...

5.5CVSS5.8AI score0.00115EPSS
Exploits0References8Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/03 12:0 a.m.22 views

PT-2026-46012

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A crash occurs in the PF driver during a kexec reboot because the hardware is not power-cycled, allowing the AF state from the previous kernel to persist. When AF and PF drivers are buil...

5.5CVSS5.2AI score0.00115EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/06/03 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-46249

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - octeontx2-af: Fix PF driver crash with kexec kernel booting During a kexec reboot the hardware is not power-cycled, so AF state from the old kernel can persist...

5.5CVSS6.2AI score0.00115EPSS
Exploits0References3
NVD
NVD
added 2026/06/02 5:16 p.m.16 views

CVE-2026-42073

OpenClaude is an open-source coding-agent command line interface for cloud and local model providers. Prior to version 0.5.1, the OpenClaude MCP authentication flow starts a temporary local HTTP server to handle OAuth callbacks. To prevent CSRF attacks, the server validates a state parameter...

6.5CVSS0.00219EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/06/02 3:38 p.m.8 views

CVE-2026-42073

OpenClaude is an open-source coding-agent command line interface for cloud and local model providers. Prior to version 0.5.1, the OpenClaude MCP authentication flow starts a temporary local HTTP server to handle OAuth callbacks. To prevent CSRF attacks, the server validates a state parameter...

6.5CVSS5.8AI score0.00219EPSS
Exploits1References4Affected Software1
CNNVD
CNNVD
added 2026/06/02 12:0 a.m.10 views

OpenClaude 安全漏洞

OpenClaude is an open-source coding assistant CLI developed by Gitlawb. Versions of OpenClaude prior to 0.5.1 contained security vulnerabilities. These vulnerabilities were due to logical flaws in the conditional order logic within the MCP authentication process, allowing attackers to completely...

6.5CVSS5.4AI score0.00219EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2026/06/01 12:0 a.m.14 views

CVE-2026-37223

FlexRIC v2.0.0 contains a reachable assertion in the iApp message dispatcher. The dispatcher validates incoming E2AP messages against a 9-entry whitelist using assert. A remote unauthenticated attacker can send any decodable E2AP PDU with a message type not in the whitelist to crash the iApp...

5.8AI score0.00437EPSS
Exploits0References2
Rows per page
Query Builder