Lucene search
K

1116 matches found

Cvelist
Cvelist
added 6 days ago34 views

CVE-2026-15168 Use of Uninitialized Variable in Wireshark

BLF file parser in Wireshark 4.6.0 to 4.6.6 and 4.4.0 to 4.4.16 allows possible information disclosure...

2.5CVSS0.00102EPSS
Exploits1References2
CVE
CVE
added 6 days ago14 views

CVE-2026-15168

Wireshark is affected by CVE-2026-15168 due to a vulnerability in the BLF file parser. Versions 4.6.0–4.6.6 and 4.4.0–4.4.16 are susceptible to information disclosure. The CVSS v3.1 score is 2.5 (LOW); attack vector LOCAL, required user interaction, high complexity, and no privileges required. Th...

3.3CVSS5.9AI score0.00102EPSS
Exploits1References2Affected Software1
OSV
OSV
added 2026/07/01 2:46 p.m.7 views

USN-8489-1 linux-oem-7.0 vulnerabilities

It was discovered that the Linux kernel did not properly handle shared page fragments during socket buffer operations, collectively known as Dirty Frag. A logic flaw existed in the XFRM ESP-in-TCP subsystem and in the RxRPC networking subsystem when processing paged fragments. A local attacker...

9.8CVSS7.2AI score0.93235EPSS
Exploits73References166
Tenable Nessus
Tenable Nessus
added 2026/06/28 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-53243

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - rseq: Fix using an uninitialized stack variable in rseqexituserupdate There is an bug in which an uninitialized stack variable is used in rseqexituserupdate as...

5.5CVSS6AI score0.00112EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/06/26 2:8 a.m.8 views

SUSE CVE-2026-53243

In the Linux kernel, the following vulnerability has been resolved: rseq: Fix using an uninitialized stack variable in rseqexituserupdate There is an bug in which an uninitialized stack variable is used in rseqexituserupdate as reported by syzbot: BUG: KMSAN: kernel-infoleak in rseqsetidsgetcsadd...

5.8AI score0.00112EPSS
Exploits0References3
Rockylinux
Rockylinux
added 2026/06/25 12:3 p.m.6 views

qt5 security and bug fix update

An update is available for python-pyqt5-sip, qgnomeplatform, qt5-qtdoc, qt5-qtscript, qt5-qtlocation, qt5-qtsensors, adwaita-qt, qt5-qtconnectivity, qt5-qtquickcontrols2, qt5-qtserialbus, qt5-qtsvg, qt5-qtserialport, qt5-qtquickcontrols, qt5-qtmultimedia, qt5-qtxmlpatterns, qt5-qttranslations, qt...

7.5CVSS6.9AI score0.01553EPSS
Exploits1
OSV
OSV
added 2026/06/25 12:3 p.m.3 views

RLSA-2023:6369 Moderate: qt5 security and bug fix update

Qt is a software toolkit for developing applications. Security Fixes: qt: buffer over-read via a crafted reply from a DNS server CVE-2023-33285 qt: allows remote attacker to bypass security restrictions caused by flaw in certificate validation CVE-2023-34410 qtbase: buffer overflow in...

7.5CVSS6.2AI score0.01553EPSS
Exploits1References6
NVD
NVD
added 2026/06/25 9:16 a.m.11 views

CVE-2026-53243

In the Linux kernel, the following vulnerability has been resolved: rseq: Fix using an uninitialized stack variable in rseqexituserupdate There is an bug in which an uninitialized stack variable is used in rseqexituserupdate as reported by syzbot: BUG: KMSAN: kernel-infoleak in rseqsetidsgetcsadd...

5.5CVSS0.00112EPSS
Exploits0References2
CVE
CVE
added 2026/06/25 8:39 a.m.36 views

CVE-2026-53243

CVE-2026-53243 affects the Linux kernel component related to RSEQ (rseq_exit_user_update). The issue is an uninitialized stack variable used in the initialization of the struct rseq_ids, where ids.node_id is derived from ids.cpu_id before it is initialized, enabling potential information leakage....

5.5CVSS5.7AI score0.00112EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/06/25 8:39 a.m.6 views

EUVD-2026-39194

In the Linux kernel, the following vulnerability has been resolved: rseq: Fix using an uninitialized stack variable in rseqexituserupdate There is an bug in which an uninitialized stack variable is used in rseqexituserupdate as reported by syzbot: BUG: KMSAN: kernel-infoleak in rseqsetidsgetcsadd...

5.7AI score0.00112EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/25 12:0 a.m.14 views

PT-2026-52338

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists where an uninitialized stack variable is used within the rseq exit user update function. This occurs because the evaluation order of expressions in an initializer list is...

5.5CVSS6AI score0.00112EPSS
Exploits0References13
Ubuntu
Ubuntu
added 2026/06/22 10:51 p.m.10 views

USN-8461-1: Linux kernel (Azure) vulnerabilities

It was discovered that the Linux kernel did not properly handle shared page fragments during socket buffer operations, collectively known as Dirty Frag. A logic flaw existed in the XFRM ESP-in-TCP subsystem and in the RxRPC networking subsystem when processing paged fragments. A local attacker...

8.8CVSS7AI score0.93235EPSS
Exploits57
OSV
OSV
added 2026/06/22 10:51 p.m.5 views

USN-8461-1 linux-azure vulnerabilities

It was discovered that the Linux kernel did not properly handle shared page fragments during socket buffer operations, collectively known as Dirty Frag. A logic flaw existed in the XFRM ESP-in-TCP subsystem and in the RxRPC networking subsystem when processing paged fragments. A local attacker...

8.8CVSS6.4AI score0.93235EPSS
Exploits57References19
OSV
OSV
added 2026/06/10 5:7 a.m.15 views

MGASA-2026-0189 Updated libssh packages fix security vulnerabilities

CVE-2025-4877 Write beyond bounds in binary to base64 conversion functions CVE-2025-4878 Use of uninitialized variable in privatekeyfromfile CVE-2025-5318 Likely read beyond bounds in sftp server handle management CVE-2025-5351 Double free in functions exporting keys CVE-2025-5372 sshkdf returns ...

8.8CVSS5.6AI score0.02394EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/06/05 7:49 p.m.11 views

CVE-2026-47336

Ubuntu Linux 6.8 contains SAUCE patches with a possible use of an uninitialized variable in AppArmor AFINET/AFINET6 socket mediation code. The bug can be triggered by an unprivileged local user and could result in incorrect fine-grained mediation of network sockets...

3.3CVSS5.4AI score0.00094EPSS
Exploits0References1
Snyk
Snyk
added 2026/06/03 10:23 p.m.13 views

Use of Uninitialized Variable

Overview Affected versions of this package are vulnerable to Use of Uninitialized Variable in the readMSAT function. An attacker can cause application crashes or potentially disclose sensitive information by submitting a specially crafted XLS file. Remediation There is no fixed version for libxls...

6.9CVSS5.2AI score0.00228EPSS
Exploits1References2
IBM Security Bulletins
IBM Security Bulletins
added 2026/06/03 1:53 p.m.12 views

Security Bulletin: Oracle Outside In Technology (OIT) v8.5.7 BP9, v8.5.8 BP2 vulnerabilities CVE-2025-54874 (vulnerable), CVE-2025-59375 (vulnerable) in FileNet Content Manager (FNCM) Content Based Retrieval (CBR) content indexing

Summary Oracle Outside In Technology OIT v8.5.7 BP9, v8.5.8 BP2 January, 2025 vulnerabilities CVE-2025-54874 vulnerable, CVE-2025-59375 vulnerable in FileNet Content Manager FNCM Content Based Retrieval CBR content indexing Vulnerability Details CVEID:CVE-2025-54874 DESCRIPTION: OpenJPEG is an...

9.8CVSS7.3AI score0.01279EPSS
Exploits2Affected Software1
NVD
NVD
added 2026/05/28 7:16 p.m.16 views

CVE-2026-47330

Ubuntu Linux 6.8, 7.17 and 7.0 contain AppArmor SAUCE patches which can, under certain circumstances, use an uninitialized variable in notification handling code. The bug can be triggered by an unprivileged local user and can result in the incorrect caching of AppArmor notification responses...

3.3CVSS0.00092EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/28 6:29 p.m.9 views

CVE-2026-47336 Use of uninitialized value in Ubuntu Linux AppArmor IPv4/IPv6 socket mediation rules

Ubuntu Linux 6.8 contains SAUCE patches with a possible use of an uninitialized variable in AppArmor AFINET/AFINET6 socket mediation code. The bug can be triggered by an unprivileged local user and could result in incorrect fine-grained mediation of network sockets...

3.3CVSS5.8AI score0.00094EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/28 6:29 p.m.38 views

CVE-2026-47336 Use of uninitialized value in Ubuntu Linux AppArmor IPv4/IPv6 socket mediation rules

Ubuntu Linux 6.8 contains SAUCE patches with a possible use of an uninitialized variable in AppArmor AFINET/AFINET6 socket mediation code. The bug can be triggered by an unprivileged local user and could result in incorrect fine-grained mediation of network sockets...

3.3CVSS0.00094EPSS
Exploits0References1
Rows per page
Query Builder