Linux Distros Unpatched Vulnerability : CVE-2022-3170

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-bounds access issue was found in the Linux kernel sound subsystem. It could occur when the 'id-name' provided by the user did not end with '\0'. A...

Linux Distros Unpatched Vulnerability : CVE-2024-43822

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ASoc: PCM6240: Return directly after a failed devmkzalloc in pcmdevicei2cprobe The value...

Linux Distros Unpatched Vulnerability : CVE-2023-23586

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Due to a vulnerability in the iouring subsystem, it is possible to leak kernel memory information to the user process. timensinstall calls currentissinglethread...

Microsoft Windows Subsystem for Linux (WSL2) < 2.5.10 Kernel Elevation of Privilege (August 2025)

The version of Microsoft Windows Subsystem for Linux WSL2 on the remote Windows host is prior to 2.5.10. It is, therefore, affected by a kernel elevation of privilege vulnerability: - Time-of-check time-of-use toctou race condition in Windows Subsystem for Linux allows an authorized attacker to...

CVE-2025-26403

Out-of-bounds write in the memory subsystem for some IntelR XeonR 6 processors when using IntelR SGX or IntelR TDX may allow a privileged user to potentially enable escalation of privilege via local access...

CVE-2025-53716

Null pointer dereference in Windows Local Security Authority Subsystem Service LSASS allows an authorized attacker to deny service over a network...

CVE-2025-53788

Time-of-check time-of-use toctou race condition in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally...

PT-2025-37215

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a flaw in the ALSA subsystem related to USB audio handling. Specifically, UAC3 cluster segment descriptors require validation to ensure their sizes align with...

Microsoft Windows Subsystem for Linux WslCoreVm::Initialize Incorrect Privilege Management Information Disclosure Vulnerability

This vulnerability allows local attackers to read arbitrary files on affected installations of Microsoft Windows. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within...

PT-2025-46593

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s SCSI subsystem, specifically within the pm80xx driver. The issue involves an array-index-out-of-bounds condition that occurs during the removal of a...

PT-2025-36002

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw in the ALSA subsystem related to USB audio. Specifically, UAC3 power domain descriptors require validation of their bLength variable to prevent...

kernel: padata: fix UAF in padata_reorder

A use-after-free vulnerability was found in the Linux kernel's padata subsystem, in the padatareorder function. Caused by improper synchronization controls, this vulnerability can occur when a reference-counted data structure pd is decremented in one thread, freeing it, while another thread still...

USN-7685-5 linux-oracle vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Device tree and open firmware driver; - SCSI subsystem; - TTY drivers; - Ext4 file system; - SMB network file syste...

USN-7685-5: Linux kernel (Oracle) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Device tree and open firmware driver; - SCSI subsystem; - TTY drivers; - Ext4 file system; - SMB network file syste...

kernel: padata: fix UAF in padata_reorder

A use-after-free vulnerability was found in the Linux kernel's padata subsystem, in the padatareorder function. Caused by improper synchronization controls, this vulnerability can occur when a reference-counted data structure pd is decremented in one thread, freeing it, while another thread still...

CVE-2025-53788

Time-of-check time-of-use toctou race condition in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally...

CVE-2025-53788

Time-of-check time-of-use toctou race condition in Windows Subsystem for Linux allows an authorized attacker to elevate privileges locally...

CVE-2025-53716

Null pointer dereference in Windows Local Security Authority Subsystem Service LSASS allows an authorized attacker to deny service over a network...

CVE-2025-53132

Concurrent execution using shared resource with improper synchronization 'race condition' in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally...

CVE-2025-50161

Heap-based buffer overflow in Windows Win32K - GRFX allows an authorized attacker to elevate privileges locally...