Lucene search
K

12625 matches found

CNNVD
CNNVD
added 2025/09/23 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the xcanwriteframe function continuing to use a freed SKB after calling canputechoskb, which could lead to...

7.8CVSS5.9AI score0.00148EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2025/09/22 11:22 p.m.3 views

SUSE CVE-2025-39852

In the Linux kernel, the following vulnerability has been resolved: net/tcp: Fix socket memory leak in TCP-AO failure handling for IPv6 When tcpaocopyallmatching fails in tcpv6synrecvsock it just exits the function. This ends up causing a memory-leak: unreferenced object 0xffff0000281a8200 size...

5.5CVSS6.5AI score0.00135EPSS
Exploits0References9
Fedora
Fedora
added 2025/09/22 1:16 a.m.9 views

[SECURITY] Fedora 41 Update: podman-tui-1.8.0-1.fc41

podman-tui is a terminal user interface for Podman v4 and v5. podman-tui is using podman.socket service to communicate with podman environm ent and SSH to connect to remote podman machines...

5.3CVSS7AI score0.00385EPSS
Exploits0
Fedora
Fedora
added 2025/09/22 1:8 a.m.8 views

[SECURITY] Fedora 42 Update: podman-tui-1.8.0-1.fc42

podman-tui is a terminal user interface for Podman v4 and v5. podman-tui is using podman.socket service to communicate with podman environm ent and SSH to connect to remote podman machines...

5.3CVSS7AI score0.00385EPSS
Exploits0
Fedora
Fedora
added 2025/09/22 12:17 a.m.8 views

[SECURITY] Fedora 43 Update: podman-tui-1.8.0-1.fc43

podman-tui is a terminal user interface for Podman v4 and v5. podman-tui is using podman.socket service to communicate with podman environm ent and SSH to connect to remote podman machines...

5.3CVSS7AI score0.00385EPSS
Exploits0
CNNVD
CNNVD
added 2025/09/22 12:0 a.m.1 views

lerobot 安全漏洞

lerobot is a robot programming library open-sourced by Hugging Face. A security vulnerability exists in huggingface LeRobot 0.3.3 and earlier versions, which stems from a lack of authentication in the ZeroMQ Socket Handler component and could lead to an attack within the local network...

6.3CVSS6.4AI score0.003EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/09/22 12:0 a.m.1 views

Ubuntu 22.04 LTS / 24.04 LTS : Linux kernel vulnerability (USN-7758-1)

The remote Ubuntu 22.04 LTS / 24.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-7758-1 advisory. It was discovered that the AFUNIX socket garbage collection implementation in Ubuntu Noble's 6.8 kernel did not properly handle out-of-band OOB...

6.1AI score
Exploits0References1
OpenVAS
OpenVAS
added 2025/09/22 12:0 a.m.1 views

Ubuntu: Security Advisory (USN-7758-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8AI score
Exploits0References3
OpenVAS
OpenVAS
added 2025/09/22 12:0 a.m.5 views

Ubuntu: Security Advisory (USN-7758-4)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8AI score
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/09/21 11:32 p.m.3 views

CVE-2025-10772 huggingface LeRobot ZeroMQ Socket lekiwi_remote.py missing authentication

A vulnerability was identified in huggingface LeRobot up to 0.3.3. Affected by this vulnerability is an unknown functionality of the file lerobot/common/robotdevices/robots/lekiwiremote.py of the component ZeroMQ Socket Handler. The manipulation leads to missing authentication. The attack can onl...

6.3CVSS6.2AI score0.003EPSS
Exploits0References3
Gitee
Gitee
added 2025/09/21 11:11 p.m.120 views

sslyze

It is an offensive tool for scanning SSL/TLS configurations. The primary target of this tool is the SSL/TLS configuration of a server, which can be analyzed to ensure it uses strong encryption settings and is not vulnerable to known TLS attacks. The tool can connect to a server to perform the...

7.3AI score
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/21 8:3 a.m.5 views

ax25: properly unshare skbs in ax25_kiss_rcv()

...

5.5CVSS6.8AI score0.00149EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/21 8:2 a.m.9 views

Bluetooth: Fix use-after-free in l2cap_sock_cleanup_listen()

...

7.8CVSS6.9AI score0.00152EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/21 8:2 a.m.2 views

ppp: fix memory leak in pad_compress_skb

...

5.5CVSS6.8AI score0.00149EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2025/09/21 12:18 a.m.3 views

SUSE CVE-2023-53226

In the Linux kernel, the following vulnerability has been resolved: wifi: mwifiex: Fix OOB and integer underflow when rx packets Make sure mwifiexprocessmgmtpacket, mwifiexprocessstarxpacket and mwifiexprocessuaprxpacket, mwifiexuapqueuebridgedpkt and mwifiexprocessrxpacket not out-of-bounds acce...

5.5CVSS6.6AI score0.00149EPSS
Exploits0References22
Positive Technologies
Positive Technologies
added 2025/09/21 12:0 a.m.6 views

PT-2025-38670

Name of the Vulnerable Software and Affected Versions huggingface LeRobot versions up to 0.3.3 Description A vulnerability exists in huggingface LeRobot up to version 0.3.3 related to missing authentication within the ZeroMQ Socket Handler functionality of the file lerobot/common/robot...

6.3CVSS6.2AI score0.003EPSS
Exploits0References6
SUSE CVE
SUSE CVE
added 2025/09/19 11:34 p.m.9 views

SUSE CVE-2023-53394

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: xsk: Fix crash on regular rq reactivation When the regular rq is reactivated after the XSK socket is closed it could be reading stale cqes which eventually corrupts the rq. This leads to no more traffic being received ...

5.5CVSS6.6AI score0.00119EPSS
Exploits0References15
SUSE CVE
SUSE CVE
added 2025/09/19 11:33 p.m.3 views

SUSE CVE-2023-53426

In the Linux kernel, the following vulnerability has been resolved: xsk: Fix xskdiag use-after-free error during socket cleanup Fix a use-after-free error that is possible if the xskdiag interface is used after the socket has been unbound from the device. This can happen either due to the socket...

5.5CVSS6.7AI score0.00141EPSS
Exploits0References15
SUSE CVE
SUSE CVE
added 2025/09/19 11:24 p.m.1 views

SUSE CVE-2025-39839

In the Linux kernel, the following vulnerability has been resolved: batman-adv: fix OOB read/write in network-coding decode batadvncskbdecodepacket trusts codedlen and checks only against skb-len. XOR starts at sizeofstruct batadvunicastpacket, reducing payload headroom, and the source skb length...

5.5CVSS6.5AI score0.00164EPSS
Exploits0References21
SUSE CVE
SUSE CVE
added 2025/09/19 11:23 p.m.2 views

SUSE CVE-2025-39847

In the Linux kernel, the following vulnerability has been resolved: ppp: fix memory leak in padcompressskb If allocskb fails in padcompressskb, it returns NULL without releasing the old skb. The caller does: skb = padcompressskbppp, skb; if !skb goto drop; drop: kfreeskbskb; When padcompressskb...

5.5CVSS6.5AI score0.00149EPSS
Exploits0References22
Rows per page
Query Builder