Lucene search
K

6765 matches found

CNNVD
CNNVD
added 2025/05/02 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from histogram values not allowing certain modifiers...

5.5CVSS6.4AI score0.00157EPSS
Exploits0References3
OSV
OSV
added 2025/05/01 2:15 p.m.1 views

DEBIAN-CVE-2025-37767

In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Prevent division by zero The user can set any speed value. If speed is greater than UINTMAX/8, division by zero is possible. Found by Linux Verification Center linuxtesting.org with SVACE...

5.5CVSS5.7AI score0.00161EPSS
Exploits0References1
OSV
OSV
added 2025/05/01 1:7 p.m.6 views

CVE-2025-37767 drm/amd/pm: Prevent division by zero

In the Linux kernel, the following vulnerability has been resolved: drm/amd/pm: Prevent division by zero The user can set any speed value. If speed is greater than UINTMAX/8, division by zero is possible. Found by Linux Verification Center linuxtesting.org with SVACE...

5.5CVSS6.2AI score0.00161EPSS
Exploits0References10
CNNVD
CNNVD
added 2025/05/01 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from improper msg-req tlv length checking in the tipc driver, which could lead to uninitialized value issues...

5.5CVSS6.2AI score0.0016EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2025/04/30 9:14 a.m.47 views

ghostscript: Buffer Overflow in Ghostscript PDF XRef Stream Handling

A flaw was found in Artifex Ghostscript's PDF XRef stream handling. This vulnerability allows a buffer overflow via crafted values in the W array of a PDF XRef stream...

8.4CVSS6AI score0.00316EPSS
Exploits0References7
Amazon
Amazon
added 2025/04/29 12:0 a.m.5 views

Medium: libreoffice

Issue Overview: Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in The Document Foundation LibreOffice allows Absolute Path Traversal. An attacker can write to arbitrary locations, albeit suffixed with ".ttf", by supplying a file in a format that support...

6.7CVSS7.2AI score0.01008EPSS
Exploits0
CNNVD
CNNVD
added 2025/04/27 12:0 a.m.2 views

ZTE GoldenDB 安全漏洞

ZTE GoldenDB is a financial-grade transactional distributed database from China's ZTE Corporation ZTE. It is used in finance, government and enterprise, telecom and other industries to provide highly available data services. An input validation vulnerability exists in ZTE GoldenDB, which can be...

5.3CVSS6.8AI score0.00193EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/04/26 12:0 a.m.2 views

WordPress plugin Anps Theme plugin 代码注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

6.5CVSS7.3AI score0.00286EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/04/25 12:44 p.m.1 views

SUSE CVE-2025-23131

In the Linux kernel, the following vulnerability has been resolved: dlm: prevent NPD when writing a positive value to eventdone douevent returns the value written to eventdone. In case it is a positive value, newlockspace would undo all the work, and lockspace would not be set. dlmnewlockspace,...

5.5CVSS7.7AI score0.00131EPSS
Exploits0References17
OSV
OSV
added 2025/04/24 9:27 p.m.4 views

CLSA-2025-1745530034 Fix CVE(s): CVE-2024-7592

SECURITY UPDATE: Quadratic complexity, resulting in excess CPU while parsing - debian/patches/CVE-2024-7592.patch: fix quadratic complexity in parsing "-quoted cookie values with backslashes - CVE-2024-7592...

7.5CVSS6.7AI score0.02303EPSS
Exploits1References1
OSV
OSV
added 2025/04/24 1:15 p.m.9 views

AZL-61615 CVE-2025-46420 affecting package libsoup for versions less than 3.4.4-6

A flaw was found in libsoup. It is vulnerable to memory leaks in the soupheaderparsequalitylist function when parsing a quality list that contains elements with all zeroes...

6.5CVSS7.1AI score0.00487EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/04/24 11:32 a.m.2 views

SUSE CVE-2025-46420

A flaw was found in libsoup. It is vulnerable to memory leaks in the soupheaderparsequalitylist function when parsing a quality list that contains elements with all zeroes...

6.5CVSS7.4AI score0.00487EPSS
Exploits0References16
Veracode
Veracode
added 2025/04/23 4:16 p.m.5 views

Cross-site Scripting (XSS)

golang.org/x/net is vulnerable to improper parsing logic. The vulnerability is due to incorrect tag interpretation in unquoted attribute values ending with a solidus / being mistakenly marked as self-closing, especially in foreign content like or . which allows attackers to exploit content in the...

6.5CVSS6.6AI score0.0045EPSS
Exploits0References10Affected Software1
OSV
OSV
added 2025/04/21 12:15 a.m.9 views

CVE-2025-43962

In LibRaw before 0.21.4, phaseonecorrect in decoders/loadmfbacks.cpp has out-of-bounds reads for tag 0x412 processing, related to large w0 or w1 values or the frac and mult calculations...

9.1CVSS6.8AI score
Exploits0References4
NVD
NVD
added 2025/04/21 12:15 a.m.20 views

CVE-2025-43962

In LibRaw before 0.21.4, phaseonecorrect in decoders/loadmfbacks.cpp has out-of-bounds reads for tag 0x412 processing, related to large w0 or w1 values or the frac and mult calculations...

9.1CVSS0.00367EPSS
Exploits0References4
NVD
NVD
added 2025/04/21 12:15 a.m.16 views

CVE-2025-43963

In LibRaw before 0.21.4, phaseonecorrect in decoders/loadmfbacks.cpp allows out-of-buffer access because splitcol and splitrow values are not checked in 0x041f tag processing...

9.1CVSS0.00367EPSS
Exploits0References4
NVD
NVD
added 2025/04/21 12:15 a.m.17 views

CVE-2025-43964

In LibRaw before 0.21.4, tag 0x412 processing in phaseonecorrect in decoders/loadmfbacks.cpp does not enforce minimum w0 and w1 values...

9.8CVSS0.00347EPSS
Exploits0References4
OSV
OSV
added 2025/04/21 12:15 a.m.1 views

DEBIAN-CVE-2025-43964

In LibRaw before 0.21.4, tag 0x412 processing in phaseonecorrect in decoders/loadmfbacks.cpp does not enforce minimum w0 and w1 values...

9.8CVSS6.1AI score0.00347EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2025/04/21 12:15 a.m.2 views

CVE-2025-43962

In LibRaw before 0.21.4, phaseonecorrect in decoders/loadmfbacks.cpp has out-of-bounds reads for tag 0x412 processing, related to large w0 or w1 values or the frac and mult calculations...

9.1CVSS7.3AI score0.00367EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2025/04/21 12:15 a.m.1 views

CVE-2025-43964

In LibRaw before 0.21.4, tag 0x412 processing in phaseonecorrect in decoders/loadmfbacks.cpp does not enforce minimum w0 and w1 values...

9.8CVSS7.3AI score0.00347EPSS
Exploits0References4
Rows per page
Query Builder