ROS-20260414-73-0026

Vulnerability in kernel-lt related to synchronization errors when using a shared resource. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

ROS-20260414-73-0011

Vulnerability in kernel-lt related to synchronization errors when using a shared resource. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

[SECURITY] Fedora 44 Update: nomacs-3.22.0-5.fc44

nomacs is image viewer based on Qt5 library. nomacs is small, fast and able to handle the most common image formats. Additionally it is possible to synchronize multiple viewers running on the same computer or via LAN is possible. It allows to compare images and spot the differences e.g. schemes o...

EUVD-2026-21517

Saltcorn has an Unauthenticated Path Traversal in sync endpoints, allowing arbitrary file write and directory read...

Directory Traversal

Overview @saltcorn/server is a Server app for Saltcorn, open-source no-code platform Affected versions of this package are vulnerable to Directory Traversal via the POST /sync/offlinechanges and GET /sync/uploadfinished endpoints, which improperly handle user-supplied input in path construction. ...

CVE-2026-5774

Improper synchronization of the userTokens map in the API server in Canonical Juju 4.0.5, 3.6.20, and 2.9.56 may allow an authenticated user to possibly cause a denial of service on the server or possibly reuse a single-use discharge token...

CVE-2026-5774 Juju API Server Denial of Service and Authentication Replay via Unsynchronized Token Map

Improper synchronization of the userTokens map in the API server in Canonical Juju 4.0.5, 3.6.20, and 2.9.56 may allow an authenticated user to possibly cause a denial of service on the server or possibly reuse a single-use discharge token...

PT-2026-31910

Name of the Vulnerable Software and Affected Versions Canonical Juju versions 2.9.56, 3.6.20, and 4.0.5 Description Improper synchronization within the userTokens map in the API server of Canonical Juju may allow an authenticated user to cause a denial of service on the server or potentially reus...

Juju 安全漏洞

Juju is a canonical Juju open-source application orchestration engine. Versions 4.0.5, 3.6.20, and 2.9.56 of Juju have security vulnerabilities. These vulnerabilities stem from improper synchronization of user tokens in the API server, which may allow authenticated users to launch denial-of-servi...

CVE-2026-21919

An Incorrect Synchronization vulnerability in the management daemon mgd of Juniper Networks Junos OS and Junos OS Evolved allows a network-based attacker with low privileges to cause a complete Denial-of-Service DoS of the management plane. When NETCONF sessions are quickly established and...

CVE-2026-39959

CVE-2026-39959 affects Tmds.DBus and Tmds.DBus.Protocol. A malicious D-Bus peer on the same bus can spoof signals, exhaust file descriptor resources by sending many Unix FDs, and crash apps via malformed messages that trigger unhandled SynchronizationContext exceptions. Fixes are in Tmds.DBus 0.9...

Juniper Networks Junos OS和Juniper Networks Junos OS Evolved 安全漏洞

Juniper Networks Junos OS and Juniper Networks Junos OS Evolved are both products of Juniper Networks, a US-based company. Juniper Networks Junos OS is a network operating system specifically designed for the company’s hardware devices. This operating system provides secure programming interfaces...

EUVD-2026-20424

Missing Authorization vulnerability in mailercloud Mailercloud Integrate webforms and synchronize website contacts mailercloud-integrate-webforms-synchronize-contacts allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Mailercloud Integrate webforms and...

CVE-2026-39713 WordPress Mailercloud – Integrate webforms and synchronize website contacts plugin <= 1.0.7 - Broken Access Control vulnerability

Missing Authorization vulnerability in mailercloud Mailercloud – Integrate webforms and synchronize website contacts mailercloud-integrate-webforms-synchronize-contacts allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Mailercloud – Integrate webforms and...

PT-2026-31275

Name of the Vulnerable Software and Affected Versions Mailercloud – Integrate webforms and synchronize website contacts versions n/a through 1.0.7 Description A missing authorization issue exists in Mailercloud – Integrate webforms and synchronize website contacts, allowing exploitation of...

PT-2026-31658

Tmds.DBus and Tmds.DBus.Protocol are vulnerable to malicious D-Bus peers. A peer on the same bus can spoof signals by impersonating the owner of a well-known name, exhaust system resources or cause file descriptor spillover by sending messages with an excessive number of Unix file descriptors, an...

WordPress plugin Mailercloud Integrate webforms and synchronize website contacts 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

ROS-20260408-73-0012

A vulnerability in the rcupreemptdeferredqshandler function of the kernel/rcu/treeplugin.h component of the Linux operating system kernel is related to simultaneous execution using a shared resource with incorrect synchronization. Exploitation of the vulnerability allows an attacker to cause a...

ROS-20260408-73-0004

A vulnerability in the drivers/tty/serial/8250 component of the Linux operating system kernel is related to simultaneous execution using a shared resource with improper synchronization. Exploitation of the vulnerability allows an attacker to cause a denial of service...

CVE-2025-54601

An issue was discovered in the Wi-Fi driver in Samsung Mobile Processor amd Wearable Processor Exynos 980, 850, 1080, 1280, 1330, 1380, 1480, 1580, W920, W930, and W1000. Improper synchronization on a global variable leads to a double free. An attacker can trigger a race condition by invoking an...