Lucene search
K

264 matches found

AstraLinux
AstraLinux
added 2026/01/13 2:1 p.m.4 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: vhost: vringh: Fixed the check on the return value of copytoiter. The return value of copytoiter cannot be negative; instead of checking for negative values, we should check whether the copied length is equal to the requested...

5.7AI score0.00197EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/01/13 2:1 p.m.4 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: vhost: Take a reference on the task in the struct vhosttask. The vhosttaskcreate function creates a task and maintains a reference to its taskstruct. This task may exit early due to a signal, and its taskstruct will be released. ...

5.9AI score0.00183EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2026/01/12 2:24 a.m.7 views

libsoup: libsoup: Duplicate Host Header Handling Causes Host-Parsing Discrepancy (First- vs Last-Value Wins)

A flaw in libsoup’s HTTP header handling allows multiple Host: headers in a request and returns the last occurrence for server-side processing. Common front proxies often honor the first Host: header, so this mismatch can cause vhost confusion where a proxy routes a request to one backend but the...

8.2CVSS5.8AI score0.00505EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/01/07 12:0 a.m.5 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000302)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000302 advisory. A flaw was found in the Linux kernel's handlerx function in the vhostnet driver. A malicious virtual guest, under specific conditions, can trigger an out-of-bounds...

7CVSS6.7AI score0.00561EPSS
Exploits0References4
Fedora
Fedora
added 2026/01/04 1:3 a.m.9 views

[SECURITY] Fedora 42 Update: nginx-mod-vts-0.2.4-4.fc42

Nginx virtual host traffic status module...

6.3CVSS6.8AI score0.00371EPSS
Exploits0
Cvelist
Cvelist
added 2025/12/30 12:15 p.m.26 views

CVE-2022-50851 vhost_vdpa: fix the crash in unmap a large memory

In the Linux kernel, the following vulnerability has been resolved: vhostvdpa: fix the crash in unmap a large memory While testing in vIOMMU, sometimes Guest will unmap very large memory, which will cause the crash. To fix this, add a new function vhostvdpageneralunmap. This function will only...

0.00198EPSS
Exploits0References3
CVE
CVE
added 2025/12/24 1:5 p.m.10 views

CVE-2022-50738

Technical details for CVE-2022-50738 are not publicly provided in the supplied documents. Monitor for updates from kernel/vhost-vdpa patches and related advisories.

6.2AI score0.00198EPSS
Exploits0References3
Fedora
Fedora
added 2025/12/22 1:7 a.m.5 views

[SECURITY] Fedora 42 Update: gobuster-3.8.2-2.fc42

Directory/File, DNS and VHost busting tool written in Go...

7.5CVSS7AI score0.00361EPSS
Exploits0
Fedora
Fedora
added 2025/12/22 12:52 a.m.6 views

[SECURITY] Fedora 43 Update: gobuster-3.8.2-1.fc43

Directory/File, DNS and VHost busting tool written in Go...

7.5CVSS7AI score0.00361EPSS
Exploits0
CVE
CVE
added 2025/12/11 12:30 p.m.38 views

CVE-2025-14523

CVE-2025-14523 – libsoup Host header handling issue A flaw in libsoup’s HTTP header handling allows multiple Host headers in a single request, with the backend reading the last occurrence. This mismatch between proxies (first Host header honored) and backend processing can enable request-smugglin...

8.2CVSS6.4AI score0.00505EPSS
Exploits0References21
Cvelist
Cvelist
added 2025/12/11 12:30 p.m.31 views

CVE-2025-14523 Libsoup: libsoup: duplicate host header handling causes host-parsing discrepancy (first- vs last-value wins)

A flaw in libsoup’s HTTP header handling allows multiple Host: headers in a request and returns the last occurrence for server-side processing. Common front proxies often honor the first Host: header, so this mismatch can cause vhost confusion where a proxy routes a request to one backend but the...

8.2CVSS0.00505EPSS
Exploits0References21
Apache Tomcat
Apache Tomcat
added 2025/12/08 12:0 a.m.8 views

Fixed in Apache Tomcat 11.0.15

Low: Security constraint bypass CVE-2026-24733 Tomcat did not limit HTTP/0.9 requests to the GET method. If a security constraint was configured to allow HEAD requests to a URI but deny GET requests, the user could bypass that constraint on GET requests by sending a specification invalid HEAD...

9.1CVSS5.6AI score0.00494EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/11/18 12:0 a.m.9 views

Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-43883)

usb: vhci-hcd: vulnerability due to the vhci-hcd driver dropping references before new ones were gained, potentially leading to the use of stale pointers. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C...

7CVSS6.7AI score0.00223EPSS
Exploits0References4
AstraLinux
AstraLinux
added 2025/11/01 10:54 a.m.4 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: Bluetooth: vhci: Prevent use-after-free by removing debugfs files early The creation of debugfs files is moved to a dedicated function, and it is ensured that these files are explicitly removed during vhcirelease, before the...

7.8CVSS6.7AI score0.00142EPSS
Exploits0References3
Microsoft CVE
Microsoft CVE
added 2025/10/26 8:1 a.m.4 views

vhost: Take a reference on the task in struct vhost_task.

...

5.5CVSS7AI score0.00183EPSS
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2001-1365

Malware in sbrugna...

5CVSS6.4AI score0.01613EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2014-3580

Malware in sbrugna...

4.3CVSS6AI score0.05654EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-58930

Malicious code in bioql PyPI...

5.4CVSS5.7AI score0.02242EPSS
Exploits5References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2021-30370

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.01227EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-30339

Malicious code in bioql PyPI...

6.3AI score0.00142EPSS
Exploits0References5
Rows per page
Query Builder