Lucene search
K

12628 matches found

CVE
CVE
added 2025/09/15 2:2 p.m.22 views

CVE-2022-50248

CVE-2022-50248 is a Linux kernel vulnerability affecting the iwlwifi/iwl mvm TX path where a double-free of skb can occur. The issue arises when iwl_mvm_tx_skb_sta returns non-zero and the skb is freed, but a TSO skb buffer may also be freed in an error path; the fix is to return 0 in that error ...

7.8CVSS6AI score0.0015EPSS
Exploits0References6Affected Software1
RedHat Linux
RedHat Linux
added 2025/09/15 10:45 a.m.7 views

kernel: net: usb: smsc75xx: Limit packet length to skb->len

In the Linux kernel, the following vulnerability has been resolved: net: usb: smsc75xx: Limit packet length to skb-len Packet length retrieved from skb data may be larger than the actual socket buffer length up to 9026 bytes. In such case the cloned skb passed up the network stack will leak kerne...

5.5CVSS6.3AI score0.0015EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/09/15 12:0 a.m.2 views

Apple多款产品 安全漏洞

Apple iOS is an operating system developed for mobile devices, Apple tvOS is a smart TV operating system, and Apple watchOS is a smart watch operating system. A security vulnerability exists in several Apple products that stems from a UDP server socket that may be incorrectly bound to all...

9.8CVSS6.1AI score0.00864EPSS
Exploits0References16
CNNVD
CNNVD
added 2025/09/15 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from not properly populating ar references in skbcb, which could lead to null pointer dereferences...

5.5CVSS5.9AI score0.00128EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/09/15 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from the release of cloned SKBs not being handled correctly during the SKB merge process, which could lead to double...

4.7CVSS6.1AI score0.00101EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/09/15 12:0 a.m.4 views

PT-2025-37850

Name of the Vulnerable Software and Affected Versions: macOS Tahoe version 26 macOS Sequoia versions 15.7 macOS Sonoma version 14.8 tvOS version 26 visionOS version 26 watchOS version 26 iOS versions prior to 18.7 iPadOS versions prior to 18.7 Description: A logic issue was addressed with improve...

10CVSS5.7AI score0.00864EPSS
Exploits0References22
CNNVD
CNNVD
added 2025/09/15 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the failure of ath9khifusbrxstream to clean up skbs in skbpool when it fails, which could lead to a memory...

5.5CVSS5.8AI score0.00146EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2025/09/15 12:0 a.m.6 views

PT-2025-37593

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.0.0-syzkaller-12189-g19d17ab7c68b-dirty Description: The Linux kernel contained a data race condition related to kcm-rx psock. Specifically, kcm-rx psock could be read without a lock in the kcm rfree function...

5.9AI score0.00146EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2025/09/15 12:0 a.m.3 views

PT-2025-37502

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a vulnerability in the iwlwifi MVM subsystem that can lead to a double free on the transmit path. This issue can cause kernel crashes, lockups, and KASAN...

6.1AI score0.0015EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/09/15 12:0 a.m.3 views

PT-2025-37513

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A race condition exists in the sock map free function within the kernel's bpf and sockmap implementation. Specifically, sock map free calls release socksk without holding a reference t...

6.2AI score0.00101EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/09/15 12:0 a.m.5 views

PT-2025-37550

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A race condition exists between coalescing and releasing SKBs Socket Buffer in the Linux kernel. A commit intended to fix coalescing for page pool fragment recycling inadvertently...

5.9AI score0.00101EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/09/15 12:0 a.m.2 views

PT-2025-37641

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a memory leak in the ath9k hif usb rx stream function within the ath9k USB Host Interface HIF driver. Syzkaller detected that when processing skbs socket...

6.1AI score0.00146EPSS
Exploits0References9
RedHat Linux
RedHat Linux
added 2025/09/11 7:38 a.m.4 views

kernel: udp: Fix memory accounting leak.

A memory overflow vulnerability exists within the Linux kernel's networking subsystem. Specifically, an application can set the SORCVBUF socket option to its maximum value INTMAX, which triggers an integer overflow within the udprmemrelease function during socket closure. The udpdestructcommon...

5.5CVSS6.9AI score0.00176EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/09/11 6:33 a.m.5 views

kernel: udp: Fix memory accounting leak.

A memory overflow vulnerability exists within the Linux kernel's networking subsystem. Specifically, an application can set the SORCVBUF socket option to its maximum value INTMAX, which triggers an integer overflow within the udprmemrelease function during socket closure. The udpdestructcommon...

5.5CVSS6.9AI score0.00176EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/09/10 8:45 p.m.4 views

kernel: udp: Fix memory accounting leak.

A memory overflow vulnerability exists within the Linux kernel's networking subsystem. Specifically, an application can set the SORCVBUF socket option to its maximum value INTMAX, which triggers an integer overflow within the udprmemrelease function during socket closure. The udpdestructcommon...

5.5CVSS6.9AI score0.00176EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/09/10 6:51 p.m.11 views

kernel: udp: Fix memory accounting leak.

A memory overflow vulnerability exists within the Linux kernel's networking subsystem. Specifically, an application can set the SORCVBUF socket option to its maximum value INTMAX, which triggers an integer overflow within the udprmemrelease function during socket closure. The udpdestructcommon...

5.5CVSS6.9AI score0.00176EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/09/10 6:25 p.m.5 views

kernel: udp: Fix memory accounting leak.

A memory overflow vulnerability exists within the Linux kernel's networking subsystem. Specifically, an application can set the SORCVBUF socket option to its maximum value INTMAX, which triggers an integer overflow within the udprmemrelease function during socket closure. The udpdestructcommon...

5.5CVSS6.9AI score0.00176EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2016-3922

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - libril/RilSapSocket.cpp in Telephony in Android 6.x before 2016-10-01 and 7.0 before 2016-10-01 relies on variable-length arrays, which allows attackers to gain...

7.8CVSS7.5AI score0.00385EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/09/10 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2021-41396

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Live555 through 1.08 does not handle socket connections properly. A huge number of incoming socket connections in a short time invokes the error-handling module...

7.5CVSS7.6AI score0.01174EPSS
Exploits1References2
Kaspersky
Kaspersky
added 2025/09/09 12:0 a.m.5 views

KLA87444 Multiple vulnerabilities in Microsoft Windows

Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to gain privileges, bypass security restrictions, execute arbitrary code, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. An elevation...

9.8CVSS9.3AI score0.18834EPSS
Exploits5References74
Rows per page
Query Builder