Lucene search
K

12632 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/31 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2025-38571

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix client side handling of tls alerts A security exploit was discovered in NFS over...

5.5CVSS6.2AI score0.00146EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/08/30 6:21 p.m.4 views

CVE-2025-9474

A vulnerability was detected in Mihomo Party up to 1.8.1 on macOS. Affected is the function enableSysProxy of the file src/main/sys/sysproxy.ts of the component Socket Handler. The manipulation results in creation of temporary file with insecure permissions. The attack requires a local approach...

4.5CVSS4.6AI score0.00124EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2023-47641

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. Affected versions of aiohttp have a security vulnerability regarding the...

6.5CVSS5.8AI score0.00827EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2022-25643

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - seatd-launch in seatd 0.6.x before 0.6.4 allows removing files with escalated privileges when installed setuid root. The attack vector is a user-supplied socket...

9.8CVSS7.9AI score0.02076EPSS
Exploits0References2
NVD
NVD
added 2025/08/28 10:15 a.m.3 views

CVE-2024-58240

In the Linux kernel, the following vulnerability has been resolved: tls: separate no-async decryption request handling from async If we're not doing async, the handling is much simpler. There's no reference counting, we just need to wait for the completion to wake us up and return its result. We...

7.8CVSS0.00144EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/08/28 5:16 a.m.12 views

kernel: tls: always refresh the queue when reading sock

In the Linux kernel, the following vulnerability has been resolved: tls: always refresh the queue when reading sock After recent changes in net-next TCP compacts skbs much more aggressively. This unearthed a bug in TLS where we may try to operate on an old skb when checking if all skbs in the que...

7.8CVSS6.8AI score0.00152EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-47792

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Nextcloud Desktop is the desktop sync client for Nextcloud. In versions of Nextcloud Desktop prior to 3.15, 3rdparty applications already installed on a user...

6.1CVSS5.4AI score0.00152EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2019-13611

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in python-engineio through 3.8.2. There is a Cross-Site WebSocket Hijacking CSWSH vulnerability that allows attackers to make WebSocket...

8.8CVSS6.9AI score0.00828EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2020-25652

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the spice-vdagentd daemon, where it did not properly handle client connections that can be established via the UNIX domain socket in...

5.5CVSS5.4AI score0.00431EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2025/08/26 10:28 a.m.4 views

kernel: tls: always refresh the queue when reading sock

In the Linux kernel, the following vulnerability has been resolved: tls: always refresh the queue when reading sock After recent changes in net-next TCP compacts skbs much more aggressively. This unearthed a bug in TLS where we may try to operate on an old skb when checking if all skbs in the que...

7.8CVSS6.8AI score0.00152EPSS
Exploits0References5
NVD
NVD
added 2025/08/26 5:15 a.m.4 views

CVE-2025-9474

A vulnerability was detected in Mihomo Party up to 1.8.1 on macOS. Affected is the function enableSysProxy of the file src/main/sys/sysproxy.ts of the component Socket Handler. The manipulation results in creation of temporary file with insecure permissions. The attack requires a local approach...

4.5CVSS0.00124EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/08/26 5:2 a.m.12 views

CVE-2025-9474 Mihomo Party Socket sysproxy.ts enableSysProxy temp file

A vulnerability was detected in Mihomo Party up to 1.8.1 on macOS. Affected is the function enableSysProxy of the file src/main/sys/sysproxy.ts of the component Socket Handler. The manipulation results in creation of temporary file with insecure permissions. The attack requires a local approach...

4.5CVSS0.00124EPSS
Exploits0References5
CVE
CVE
added 2025/08/26 5:2 a.m.11 views

CVE-2025-9474

CVE-2025-9474 affects Mihomo Party up to version 1.8.1 on macOS. The vulnerability is in the enableSysProxy function of src/main/sys/sysproxy.ts within the Socket Handler component and results in creation of a temporary file with insecure permissions. The attack is local in scope and described as...

4.5CVSS4.6AI score0.00124EPSS
Exploits0References5
OSV
OSV
added 2025/08/25 12:45 p.m.7 views

SUSE-SU-2025:20620-1 Security update for kernel-livepatch-MICRO-6-0-RT_Update_4

This update for kernel-livepatch-MICRO-6-0-RTUpdate4 fixes the following issues: - CVE-2024-56664: bpf, sockmap: fix race between element replace and close bsc1235250 - CVE-2025-37752: netsched: schsfq: move the limit validation bsc1245776 - CVE-2025-37797: netsched: hfsc: Fix a UAF vulnerability...

7.8CVSS6.8AI score0.00256EPSS
Exploits0References11
RedHat Linux
RedHat Linux
added 2025/08/25 12:18 p.m.7 views

kernel: tls: always refresh the queue when reading sock

In the Linux kernel, the following vulnerability has been resolved: tls: always refresh the queue when reading sock After recent changes in net-next TCP compacts skbs much more aggressively. This unearthed a bug in TLS where we may try to operate on an old skb when checking if all skbs in the que...

7.8CVSS6.8AI score0.00152EPSS
Exploits0References5
OSV
OSV
added 2025/08/25 12:16 p.m.8 views

SUSE-SU-2025:20610-1 Security update for kernel-livepatch-MICRO-6-0_Update_2

This update for kernel-livepatch-MICRO-6-0Update2 fixes the following issues: - CVE-2024-56664: bpf, sockmap: fix race between element replace and close bsc1235250 - CVE-2025-37752: netsched: schsfq: move the limit validation bsc1245776 - CVE-2025-37797: netsched: hfsc: Fix a UAF vulnerability in...

7.8CVSS6.7AI score0.00256EPSS
Exploits0References11
RedHat Linux
RedHat Linux
added 2025/08/25 8:6 a.m.2 views

kernel: udp: Fix memory accounting leak.

A memory overflow vulnerability exists within the Linux kernel's networking subsystem. Specifically, an application can set the SORCVBUF socket option to its maximum value INTMAX, which triggers an integer overflow within the udprmemrelease function during socket closure. The udpdestructcommon...

5.5CVSS6.9AI score0.00176EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/08/25 7:56 a.m.6 views

kernel: udp: Fix memory accounting leak.

A memory overflow vulnerability exists within the Linux kernel's networking subsystem. Specifically, an application can set the SORCVBUF socket option to its maximum value INTMAX, which triggers an integer overflow within the udprmemrelease function during socket closure. The udpdestructcommon...

5.5CVSS6.9AI score0.00176EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/08/25 3:44 a.m.5 views

kernel: udp: Fix memory accounting leak.

A memory overflow vulnerability exists within the Linux kernel's networking subsystem. Specifically, an application can set the SORCVBUF socket option to its maximum value INTMAX, which triggers an integer overflow within the udprmemrelease function during socket closure. The udpdestructcommon...

5.5CVSS6.9AI score0.00176EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/08/25 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2017-18265

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Prosody before 0.10.0 allows remote attackers to cause a denial of service application crash, related to an incompatibility with certain versions of the LuaSock...

7.5CVSS7.2AI score0.01725EPSS
Exploits0References2
Rows per page
Query Builder