Lucene search
K

1129 matches found

Tenable Nessus
Tenable Nessus
added 2026/03/26 12:0 a.m.2 views

NetScaler ADC and NetScaler Gateway Race Condition (CTX696300 / CVE-2026-4368)

The remote NetScaler ADC formerly Citrix ADC or NetScaler Gateway formerly Citrix Gateway device is version 14.1-66.54. It is, therefore, affected by a vulnerability: - Race Condition in NetScaler ADC and NetScaler Gateway when appliance is configured as Gateway SSL VPN, ICA Proxy, CVPN, RDP Prox...

7.7CVSS6.1AI score0.03618EPSS
Exploits0References2
OSV
OSV
added 2026/03/25 6:46 a.m.2 views

SUSE-SU-2026:20837-1 Security update for the Linux Kernel (Live Patch 3 for SUSE Linux Enterprise 16)

This update for the SUSE Linux Enterprise Kernel 6.12.0-160000.8.1 fixes various security issues The following security issues were fixed: - CVE-2025-40214: afunix: Initialise sccindex in unixaddedge bsc1255052. - CVE-2025-40258: mptcp: fix race condition in mptcpschedulework bsc1255053. -...

5.5CVSS6.5AI score0.00176EPSS
Exploits0References15
OSV
OSV
added 2026/03/24 4:49 p.m.5 views

SUSE-SU-2026:20889-1 Security update for the Linux Kernel (Live Patch 14 for SUSE Linux Enterprise Micro 6.0)

This update for the SUSE Linux Enterprise Kernel 6.4.0-38.1 fixes various security issues The following security issues were fixed: - CVE-2025-40258: mptcp: fix race condition in mptcpschedulework bsc1255053. - CVE-2025-40284: Bluetooth: MGMT: cancel mesh send timer when hdev removed bsc1257669. ...

5.5CVSS6.5AI score0.00176EPSS
Exploits0References15
OSV
OSV
added 2026/03/24 4:49 p.m.2 views

SUSE-SU-2026:20863-1 Security update for the Linux Kernel (Live Patch 11 for SUSE Linux Enterprise Micro 6.0)

This update for the SUSE Linux Enterprise Kernel 6.4.0-34.1 fixes various security issues The following security issues were fixed: - CVE-2025-38488: smb: client: fix use-after-free in cryptmessage when using async crypto bsc1247240. - CVE-2025-40258: mptcp: fix race condition in mptcpschedulewor...

7.8CVSS6.5AI score0.00278EPSS
Exploits0References17
OSV
OSV
added 2026/03/24 4:49 p.m.2 views

SUSE-SU-2026:20885-1 Security update for the Linux Kernel (Live Patch 10 for SUSE Linux Enterprise Micro 6.0)

This update for the SUSE Linux Enterprise Kernel 6.4.0-32.1 fixes various security issues The following security issues were fixed: - CVE-2025-38488: smb: client: fix use-after-free in cryptmessage when using async crypto bsc1247240. - CVE-2025-40258: mptcp: fix race condition in mptcpschedulewor...

7.8CVSS6.5AI score0.00278EPSS
Exploits0References17
OSV
OSV
added 2026/03/24 4:48 p.m.2 views

SUSE-SU-2026:20854-1 Security update for the Linux Kernel RT (Live Patch 12 for SUSE Linux Enterprise Micro 6.0)

This update for the SUSE Linux Enterprise Kernel 6.4.0-36.1 fixes various security issues The following security issues were fixed: - CVE-2025-38488: smb: client: fix use-after-free in cryptmessage when using async crypto bsc1247240. - CVE-2025-40258: mptcp: fix race condition in mptcpschedulewor...

7.8CVSS5.9AI score0.00278EPSS
Exploits0References17
OSV
OSV
added 2026/03/24 4:48 p.m.3 views

SUSE-SU-2026:20851-1 Security update for the Linux Kernel RT (Live Patch 9 for SUSE Linux Enterprise Micro 6.0)

This update for the SUSE Linux Enterprise Kernel 6.4.0-33.1 fixes various security issues The following security issues were fixed: - CVE-2025-38488: smb: client: fix use-after-free in cryptmessage when using async crypto bsc1247240. - CVE-2025-40258: mptcp: fix race condition in mptcpschedulewor...

7.8CVSS6.5AI score0.00278EPSS
Exploits0References13
EUVD
EUVD
added 2026/03/23 9:30 p.m.8 views

EUVD-2026-14547

Race Condition in NetScaler ADC and NetScaler Gateway when appliance is configured as Gateway SSL VPN, ICA Proxy, CVPN, RDP Proxy or AAA virtual server leading to User Session Mixup...

7.7CVSS5.8AI score0.03618EPSS
Exploits0References2
NVD
NVD
added 2026/03/23 9:17 p.m.8 views

CVE-2026-4368

Race Condition in NetScaler ADC and NetScaler Gateway when appliance is configured as Gateway SSL VPN, ICA Proxy, CVPN, RDP Proxy or AAA virtual server leading to User Session Mixup...

7.7CVSS0.03618EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/23 8:9 p.m.10 views

CVE-2026-4368

Race Condition in NetScaler ADC and NetScaler Gateway when appliance is configured as Gateway SSL VPN, ICA Proxy, CVPN, RDP Proxy or AAA virtual server leading to User Session Mixup...

7.7CVSS5.8AI score0.03618EPSS
Exploits0References2Affected Software2
Vulnrichment
Vulnrichment
added 2026/03/23 8:9 p.m.4 views

CVE-2026-4368 Race Condition leading to User Session Mixup

Race Condition in NetScaler ADC and NetScaler Gateway when appliance is configured as Gateway SSL VPN, ICA Proxy, CVPN, RDP Proxy or AAA virtual server leading to User Session Mixup...

7.7CVSS5.8AI score0.03618EPSS
Exploits0References1
CVE
CVE
added 2026/03/23 8:9 p.m.14 views

CVE-2026-4368

CVE-2026-4368 affects Citrix NetScaler ADC and NetScaler Gateway (14.1-66.54) with a race condition that can cause user session mixups when configured as a Gateway (SSL VPN, ICA Proxy, CVPN, RDP Proxy) or an AAA vserver. The issue’s base score is 7.7 ( HIGH ) per CVSS v4.0. Remediation: upgrade t...

7.7CVSS5.8AI score0.03618EPSS
Exploits0References1
OSV
OSV
added 2026/03/22 10:49 p.m.3 views

SUSE-SU-2026:0951-1 Security update for the Linux Kernel (Live Patch 2 for SUSE Linux Enterprise 15 SP7 RT)

This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.7.8 fixes various security issues The following security issues were fixed: - CVE-2025-38488: smb: client: fix use-after-free in cryptmessage when using async crypto bsc1247240. - CVE-2025-40258: mptcp: fix race condition in...

7.8CVSS6.4AI score0.00278EPSS
Exploits0References17
SUSE Linux
SUSE Linux
added 2026/03/20 1:41 p.m.2 views

Security update for

This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.7.13 fixes various security issues The following security issues were fixed: CVE-2025-38488: smb: client: fix use-after-free in cryptmessage when using async crypto bsc1247240. CVE-2025-40258: mptcp: fix race condition in...

8.7CVSS6.4AI score0.00278EPSS
Exploits0References32
SUSE Linux
SUSE Linux
added 2026/03/20 1:41 p.m.8 views

Security update for

This update for the SUSE Linux Enterprise Kernel 6.4.0-150700.7.3 fixes various security issues The following security issues were fixed: CVE-2025-38159: wifi: rtw88: fix the 'para' buffer size to avoid reading out of bounds bsc1257629. CVE-2025-38488: smb: client: fix use-after-free in...

8.7CVSS6.8AI score0.00278EPSS
Exploits0References36
CVE
CVE
added 2026/03/10 12:0 a.m.15 views

CVE-2025-70246

The CVE concerns D-Link DIR-513 (v1.10) with a stack buffer overflow in the curTime parameter to goform/formVirtualServ. This is the specific vulnerable component/parameter and the root cause is a stack buffer overflow. The description notes the affected device and function but does not provide e...

7.5CVSS6.1AI score0.00583EPSS
Exploits1References3Affected Software1
SUSE CVE
SUSE CVE
added 2026/03/05 7:26 a.m.4 views

SUSE CVE-2025-22891

When BIG-IP PEM Control Plane listener Virtual Server is configured with Diameter Endpoint profile, undisclosed traffic can cause the Virtual Server to stop processing new client connections and an increase in memory resource utilization. Note: Software versions which have reached End of Technica...

8.7CVSS5.8AI score0.00396EPSS
Exploits0References2
Amazon
Amazon
added 2026/02/19 12:0 a.m.10 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: RDMA/restrack: Release MR restrack when delete CVE-2022-50822 In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: reject duplicate device on updates CVE-2025-38678 In the Linux...

7.8CVSS5.6AI score0.00517EPSS
Exploits7
RedhatCVE
RedhatCVE
added 2026/02/05 7:23 p.m.6 views

CVE-2026-22548

When a BIG-IP Advanced WAF or ASM security policy is configured on a virtual server, undisclosed requests along with conditions beyond the attacker's control can cause the bd process to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.2CVSS5.4AI score0.00185EPSS
Exploits0References1
OSV
OSV
added 2026/02/04 3:16 p.m.4 views

CVE-2026-22548

When a BIG-IP Advanced WAF or ASM security policy is configured on a virtual server, undisclosed requests along with conditions beyond the attacker's control can cause the bd process to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

5.9CVSS5.8AI score0.00185EPSS
Exploits0References1
Rows per page
Query Builder