Lucene search
+L

2436 matches found

Cvelist
Cvelist
added 5 days ago28 views

CVE-2026-58319 Apache Doris: Improper Authentication in Frontend HTTP API

Certain Apache Doris FE HTTP REST administrative APIs were accessible without proper authentication. An unauthenticated attacker with network access to the FE HTTP service could perform unauthorized administrative operations, potentially affecting cluster integrity and availability and leading to...

0.00614EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 5 days ago7 views

CVE-2026-13699

In Eclipse KUKSA Databroker version 0.6.1, the kuksa.val.v2.VAL/PublishValue gRPC handler fails to validate the existence of the optional datapoint field in PublishValueRequest. When a request contains a valid signalid but omits datapoint, the server directly calls unwrap on request.datapoint,...

4.3CVSS6.1AI score0.00237EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/07/09 10:56 a.m.1 views

OPENSUSE-SU-2026:21279-1 Security update for chromium

This update for chromium fixes the following issues: Changes in chromium: - Chromium 150.0.7871.100: stability improvements, no further information available - promote Chromium 150 150.0.7871.46 to stable boo1270051 CVE-2026-13774: Use after free in Extensions CVE-2026-13775: Use after free in GP...

10CVSS6.3AI score0.00479EPSS
Exploits1References438
Tenable Nessus
Tenable Nessus
added 2026/07/03 12:0 a.m.10 views

openSUSE 16 Security Update : dhcpcd (openSUSE-SU-2026:21220-1)

The remote openSUSE 16 host has a package installed that is affected by a vulnerability as referenced in the openSUSE- SU-2026:21220-1 advisory. This update for dhcpcd fixes the following issue Update to 10.3.2: - CVE-2025-70102: NULL pointer dereference in parseoption when processing a specially...

6.3CVSS6.2AI score0.00169EPSS
Exploits0References3
Virtuozzo
Virtuozzo
added 2026/07/02 12:0 a.m.11 views

Virtuozzo Infrastructure 7.2 Hotfix 3 (7.2.0-263)

This update delivers important security and stability fixes. Vulnerability id: VSTOR-123887 Stale S3 lifecycle timestamps could cause objects to expire at incorrect times. Vulnerability id: VSTOR-126525, VSTOR-131507 Extended usage reporting could omit CPU, RAM, storage tier, VPN, floating IP, an...

8.8CVSS7AI score0.96267EPSS
Exploits281
RedhatCVE
RedhatCVE
added 2026/06/29 9:58 a.m.7 views

CVE-2026-53288

A flaw was found in the Linux kernel, affecting systems running on the arm64 architecture. This vulnerability occurs during the early kernel mapping process, where an insufficient number of pages are reserved for kernel segments. This can lead to an overflow of data into adjacent memory pages,...

5.5CVSS5.9AI score0.00122EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/26 9:4 p.m.12 views

CVE-2026-47205

A flaw was found in Envoy's extauthz HTTP filter. A use-after-free vulnerability exists when processing per-route authorization overrides concurrently with rapid downstream client disconnects. This can lead to a segmentation fault and denial of service. Mitigation Mitigation for this issue is...

5.9CVSS5.6AI score0.00387EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2026/06/26 5:44 p.m.12 views

CVE-2026-53053

A flaw was found in the Linux kernel's IOMMU Input/Output Memory Management Unit AMD driver. The clonealias function incorrectly uses the device ID devid when handling alias devices. This can lead to the propagation of wrong or stale Device Table Entry DTE entries to alias devices, potentially...

8.8CVSS5.8AI score0.00128EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/25 6:2 p.m.10 views

CVE-2026-53065

A flaw was found in the Linux kernel, specifically within the ASoC STI driver. This vulnerability occurs because regmapfield objects, allocated during player initialization, are not properly freed when the driver is removed. This oversight can lead to a resource leak, potentially impacting system...

5.8AI score0.00172EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/24 6:32 p.m.8 views

EUVD-2026-38901

In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Take state lock for afunix iter When a BPF iterator program updates a sockmap, there is a race condition in unixstreambpfupdateproto where the peer pointer can become stale1 during a state transition TCPESTABLISHED ...

5.7AI score0.00135EPSS
Exploits0References7
NVD
NVD
added 2026/06/24 5:17 p.m.9 views

CVE-2026-53033

In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Take state lock for afunix iter When a BPF iterator program updates a sockmap, there is a race condition in unixstreambpfupdateproto where the peer pointer can become stale1 during a state transition TCPESTABLISHED ...

7.8CVSS0.00135EPSS
Exploits0References9
EUVD
EUVD
added 2026/06/24 4:30 p.m.13 views

EUVD-2026-38924

In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: fix mismatch between power and frequency During DPU runtime suspend, calling devpmoppsetratedev, 0 drops the MMCX rail to MINSVS while the core clock frequency remains at its original highest rate. When runtime resum...

5.7AI score0.0018EPSS
Exploits0References6
CVE
CVE
added 2026/06/24 4:29 p.m.17 views

CVE-2026-53033

CVE-2026-53033 affects the Linux kernel’s BPF sockmap path, causing a race in unix_stream_bpf_update_proto() that can yield a Use-After-Free when a BPF iterator updates a sockmap during a TCP state transition. The issue is resolved by taking the state lock for AF_UNIX iterations to keep the unix ...

7.8CVSS5.7AI score0.00135EPSS
Exploits0References9Affected Software1
Cvelist
Cvelist
added 2026/06/24 4:29 p.m.35 views

CVE-2026-53033 bpf, sockmap: Take state lock for af_unix iter

In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Take state lock for afunix iter When a BPF iterator program updates a sockmap, there is a race condition in unixstreambpfupdateproto where the peer pointer can become stale1 during a state transition TCPESTABLISHED ...

7.8CVSS0.00135EPSS
Exploits0References6
OSV
OSV
added 2026/06/24 4:29 p.m.4 views

CVE-2026-53033 bpf, sockmap: Take state lock for af_unix iter

In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Take state lock for afunix iter When a BPF iterator program updates a sockmap, there is a race condition in unixstreambpfupdateproto where the peer pointer can become stale1 during a state transition TCPESTABLISHED ...

7.8CVSS5.8AI score0.00135EPSS
Exploits0References12
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.10 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Flush dev-IOTLB only when the PCIe device is accessible in scalable mode. The commit 4fc82cd907ac “iommu/vt-d: Do not issue ATS invalidation requests when the device is disconnected” relies on pcidevisdisconnected to...

5.5CVSS6AI score0.00123EPSS
Exploits0References2
Packet Storm News
Packet Storm News
added 2026/06/10 12:0 a.m.10 views

ACPM Concurrent Transfer Stress Tester for Channel Synchronization Validation

This C program is a multi-threaded concurrency reproducer intended to stress-test concurrent invocations of acpmdoxfer against the same ACPM channel in order to observe synchronization behavior, race conditions, error handling, and driver stability under contention...

5.5AI score
Exploits0
OSV
OSV
added 2026/06/09 5:29 a.m.12 views

MGASA-2026-0181 Updated suricata packages fix security vulnerabilities

Various security, performance, accuracy, and stability issues have been fixed, plus we have moved to a supported version...

7.5CVSS5.5AI score0.01001EPSS
Exploits1References8
Mageia
Mageia
added 2026/06/09 5:29 a.m.20 views

Updated suricata packages fix security vulnerabilities

Various security, performance, accuracy, and stability issues have been fixed, plus we have moved to a supported version...

7.5CVSS6.5AI score0.01001EPSS
Exploits1References7
Packet Storm News
Packet Storm News
added 2026/06/09 12:0 a.m.8 views

When Discovery Outpaces Remediation: Modeling AI-Accelerated Vulnerability Discovery in Interconnected Systems

Advanced AI systems for code analysis, binary analysis, fuzzing orchestration, and penetration-test planningmay significantly increase the rate at which latent vulnerabilities are discovered. While improved discovery can benefit defenders, it can also overload remediation pipelines and accelerate...

5.6AI score
Exploits0
Rows per page
Query Builder