Lucene search
K

809 matches found

Debian CVE
Debian CVE
added 2026/05/08 2:21 p.m.10 views

CVE-2026-43387

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: properly validate the data in rtwgetieex Just like in commit 154828bf9559 "staging: rtl8723bs: fix out-of-bounds read in rtwgetie parser", we don't trust the data in the frame so we should check the length...

5.5CVSS5.7AI score0.00123EPSS
Exploits0
Cvelist
Cvelist
added 2026/05/08 2:21 p.m.34 views

CVE-2026-43386 staging: rtl8723bs: fix potential out-of-bounds read in rtw_restruct_wmm_ie

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: fix potential out-of-bounds read in rtwrestructwmmie The current code checks 'i + 5 inlen' at the end of the if statement. However, it accesses 'iniei + 5' before that check, which can lead to an out-of-bounds...

0.00126EPSS
Exploits0References8
CVE
CVE
added 2026/05/08 2:21 p.m.20 views

CVE-2026-43386

The CVE-2026-43386 issue affects the Linux kernel rtl8723bs component, specifically in the rtw_restruct_wmm_ie path, where an insufficiently guarded access can cause an out-of-bounds read. The root cause is that the code accesses in_ie[i + 5] before ensuring i + 5 is within in_len, potentially le...

7.1CVSS5.8AI score0.00126EPSS
Exploits0References8Affected Software1
Debian CVE
Debian CVE
added 2026/05/08 2:21 p.m.11 views

CVE-2026-43386

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: fix potential out-of-bounds read in rtwrestructwmmie The current code checks 'i + 5 inlen' at the end of the if statement. However, it accesses 'iniei + 5' before that check, which can lead to an out-of-bounds...

7.1CVSS5.8AI score0.00126EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/05/08 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2026-43386

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - staging: rtl8723bs: fix potential out-of-bounds read in rtwrestructwmmie The current code checks 'i + 5 inlen' at the end of the if statement. However, it...

7.1CVSS6.1AI score0.00126EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/06 11:28 a.m.31 views

CVE-2026-43225 staging: rtl8723bs: fix memory leak on failure path

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: fix memory leak on failure path cfg80211informbssframe may return NULL on failure. In that case, the allocated buffer 'buf' is not freed and the function returns early, leading to potential memory leak. Fix th...

0.00128EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2026/05/06 11:28 a.m.9 views

CVE-2026-43225

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: fix memory leak on failure path cfg80211informbssframe may return NULL on failure. In that case, the allocated buffer 'buf' is not freed and the function returns early, leading to potential memory leak. Fix th...

5.5CVSS5.8AI score0.00128EPSS
Exploits0
Microsoft Secure
Microsoft Secure
added 2026/05/04 3:0 p.m.10 views

Breaking the code: Multi-stage ‘code of conduct’ phishing campaign leads to AiTM token compromise

In this article 1. Multi-step social engineering campaign leading to credential theft 2. Mitigation and protection guidance 3. Microsoft Defender detections 4. Hunting queries 5. Indicators of compromise Phishing campaigns continue to improve sophistication and refinement in blending social...

5.7AI score
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/04/26 8:5 a.m.6 views

staging: sm750fb: fix division by zero in ps_to_hz()

...

5.5CVSS5.8AI score0.00125EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/04/26 8:4 a.m.12 views

staging: rtl8723bs: initialize le_tmp64 in rtw_BIP_verify()

...

7.1CVSS5.8AI score0.00288EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/04/26 12:0 a.m.4 views

Unity Linux 20.1060a Security Update: kernel (UTSA-2026-014334)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-014334 advisory. In the Linux kernel, the following vulnerability has been resolved: staging: pi433: fix memory leak with using debugfslookup When calling debugfslookup the result mu...

5.5CVSS5.5AI score0.00174EPSS
Exploits0References4
NVD
NVD
added 2026/04/24 3:16 p.m.8 views

CVE-2026-31626

In the Linux kernel, the following vulnerability has been resolved: staging: rtl8723bs: initialize letmp64 in rtwBIPverify Initialize letmp64 to zero in rtwBIPverify to prevent using uninitialized data. Smatch warns that only 6 bytes are copied to this 8-byte u64 variable, leaving the last two...

7.1CVSS0.00288EPSS
Exploits0References9
ATTACKERKB
ATTACKERKB
added 2026/04/24 2:42 p.m.4 views

CVE-2026-31603

In the Linux kernel, the following vulnerability has been resolved: staging: sm750fb: fix division by zero in pstohz pstohz is called from hwsm750crtcsetmode without validating that pixclock is non-zero. A zero pixclock passed via FBIOPUTVSCREENINFO causes a division by zero. Fix by rejecting zer...

5.4AI score0.00125EPSS
Exploits0References7Affected Software1
Positive Technologies
Positive Technologies
added 2026/04/24 12:0 a.m.12 views

PT-2026-34955

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A division by zero occurs in the ps to hz function. This happens because hw sm750 crtc set mode calls ps to hz without verifying that the pixclock variable is non-zero. An attacker can...

9.8CVSS5.8AI score0.00525EPSS
Exploits0References322
CNNVD
CNNVD
added 2026/04/24 12:0 a.m.12 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the staging sm750fb driver’s pstohz function not verifying that pixclock is non-zero, resulting i...

5.5CVSS5.8AI score0.00125EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.8 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-011305)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011305 advisory. In the Linux kernel, the following vulnerability has been resolved: staging: vt6655: fix potential memory leak In function deviceinittd0ring, memory is allocated for...

5.9AI score0.00215EPSS
Exploits0References4
VulnCheck KEV
VulnCheck KEV
added 2026/04/20 12:0 a.m.6 views

VulnCheck KEV: CVE-2025-2749

An authenticated remote code execution in Kentico Xperience allows authenticated users Staging Sync Server to upload arbitrary data to path relative locations. This results in path traversal and arbitrary file upload, including content that can be executed server side leading to remote code...

7.2CVSS6.5AI score0.03854EPSS
In wildExploits1References2
CISA KEV Catalog
CISA KEV Catalog
added 2026/04/20 12:0 a.m.6 views

Kentico Xperience Path Traversal Vulnerability

Kentico Xperience contains a path traversal vulnerability that could allow an authenticated user's Staging Sync Server to upload arbitrary data to path relative locations...

7.2CVSS5.9AI score0.03854EPSS
In wildExploits1
Malwarebytes
Malwarebytes
added 2026/04/14 11:52 a.m.8 views

Omnistealer uses the blockchain to steal everything it can

A new infostealer dubbed Omnistealer is turning the blockchain into a permanent malware hosting platform, which is bad news for both companies and everyday users. It’s pretty common for malware to store its payload on a public platform, ideally one that adds some trustworthiness to the download...

6AI score
Exploits0
CNVD
CNVD
added 2026/04/10 12:0 a.m.9 views

OpenClaw OS Command Injection Vulnerability (CNVD-2026-19447)

OpenClaw is an intelligent artificial assistant open-sourced by OpenClaw. OpenClaw suffers from an operating system command injection vulnerability. The vulnerability stems from an uncleared remote attachment path in the iMessage attachment staging process that contains shell metacharacters and i...

9.8CVSS5.8AI score0.01973EPSS
Exploits0
Rows per page
Query Builder