Lucene search
+L

1113 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: iio: adc: ad7606: check for NULL before calling swmodeconfig It was checked that the pointer to the swmodeconfig function is not NULL before calling it. Not all buses define this callback, which could lead to a NULL pointer being...

5.5CVSS5.2AI score0.0014EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: iio: adc: rzg2ladc: Set the driver data before enabling runtime PM When performing stress tests on the system by repeatedly unbinding and binding the ADC device in a loop, and the ADC serves as a supplier for another device e.g.,...

5.5CVSS5.2AI score0.00119EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/01 2:14 p.m.39 views

CVE-2026-31768 iio: adc: ti-adc161s626: use DMA-safe memory for spi_read()

In the Linux kernel, the following vulnerability has been resolved: iio: adc: ti-adc161s626: use DMA-safe memory for spiread Add a DMA-safe buffer and use it for spiread instead of a stack memory. All SPI buffers must be DMA-safe. Since we only need up to 3 bytes, we just use a u8 instead of be16...

7.8CVSS0.00129EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2026/05/01 2:14 p.m.7 views

CVE-2026-31768

In the Linux kernel, the following vulnerability has been resolved: iio: adc: ti-adc161s626: use DMA-safe memory for spiread Add a DMA-safe buffer and use it for spiread instead of a stack memory. All SPI buffers must be DMA-safe. Since we only need up to 3 bytes, we just use a u8 instead of be16...

7.8CVSS5.7AI score0.00129EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.7 views

PT-2026-36403

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the ti-adc161s626 component of the Industrial I/O IIO ADC subsystem where spi read utilized stack memory instead of DMA-safe memory. Direct Memory Access DMA is a...

7.8CVSS5.4AI score0.00129EPSS
Exploits0References16
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.12 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the iio adc i-adc161s626 driver's use of stack memory for spiread, which could lead to unsafe DMA...

7.8CVSS5.8AI score0.00129EPSS
Exploits0References1
OSV
OSV
added 2026/04/23 10:16 a.m.16 views

USN-8180-4 linux-azure-fips vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - Block layer subsystem; - Drivers core; - Bluetooth drivers; - DMA engine subsystem; - GPU...

8.8CVSS5.6AI score0.0071EPSS
Exploits0References81
Ubuntu
Ubuntu
added 2026/04/23 10:8 a.m.16 views

USN-8180-3: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - Block layer subsystem; - Drivers core; - Bluetooth drivers; - DMA engine subsystem; - GPU...

8.8CVSS6.9AI score0.0071EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.6 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-013341)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013341 advisory. In the Linux kernel, the following vulnerability has been resolved: mfd: pcf50633-adc: Fix potential memleak in pcf50633adcasyncread req is allocated in...

5.9AI score0.00191EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.7 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-011118)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011118 advisory. In the Linux kernel, the following vulnerability has been resolved: mfd: pcf50633-adc: Fix potential memleak in pcf50633adcasyncread req is allocated in...

5.6AI score0.00191EPSS
Exploits0References4
EUVD
EUVD
added 2026/04/20 3:31 p.m.6 views

EUVD-2026-23857

OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC Products allows an authenticated attacker with “All” permissions to execute arbitrary commands on the LoadMaster appliance by exploiting unsanitized input in the 'killsession' command...

9.3CVSS6.2AI score0.18238EPSS
Exploits4References2
NVD
NVD
added 2026/04/20 2:16 p.m.6 views

CVE-2026-3518

OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC Products allows an authenticated attacker with “All” permissions to execute arbitrary commands on the LoadMaster appliance by exploiting unsanitized input in the 'killsession' command...

8.4CVSS0.0252EPSS
Exploits0References1
CVE
CVE
added 2026/04/20 1:36 p.m.16 views

CVE-2026-4048

CVE-2026-4048 : OS Command Injection RCE in Progress LoadMaster family (LoadMaster, ECS Connection Manager, Object Scale Connection Manager, MOVEit WAF UI). An authenticated attacker with high-level permissions (e.g., “All”) can execute arbitrary commands by exploiting unsanitized input in a cust...

8.4CVSS6.4AI score0.02132EPSS
Exploits0References1Affected Software3
ATTACKERKB
ATTACKERKB
added 2026/04/20 1:32 p.m.6 views

CVE-2026-3519

OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC Products allows an authenticated attacker with “VS Administration” permissions to execute arbitrary commands on the LoadMaster appliance by exploiting unsanitized input in the 'aclcontrol' command...

9.3CVSS6.2AI score0.18238EPSS
Exploits4References2Affected Software4
ATTACKERKB
ATTACKERKB
added 2026/04/20 1:29 p.m.6 views

CVE-2026-3518

OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC Products allows an authenticated attacker with “All” permissions to execute arbitrary commands on the LoadMaster appliance by exploiting unsanitized input in the 'killsession' command...

9.3CVSS6.2AI score0.18238EPSS
Exploits4References2Affected Software4
Vulnrichment
Vulnrichment
added 2026/04/20 1:29 p.m.3 views

CVE-2026-3518 OS Command Injection Remote Code Execution Vulnerability in Progress LoadMaster, ECS Connection Manager, Object Scale Connection Manager & MOVEit WAF

OS Command Injection Remote Code Execution Vulnerability in API in Progress ADC Products allows an authenticated attacker with “All” permissions to execute arbitrary commands on the LoadMaster appliance by exploiting unsanitized input in the 'killsession' command...

8.4CVSS6.4AI score0.18238EPSS
Exploits0References1
CVE
CVE
added 2026/04/20 1:29 p.m.27 views

CVE-2026-3518

CVE-2026-4048, CVE-2026-3518, and CVE-2026-3519 are Progress LoadMaster family command-injection/RCE vulnerabilities. Each allows an authenticated attacker with specific permissions to execute arbitrary commands on LoadMaster appliances by supplying unsanitized input via different entry points: C...

8.4CVSS6.4AI score0.18238EPSS
Exploits0References1Affected Software3
Positive Technologies
Positive Technologies
added 2026/04/20 12:0 a.m.8 views

PT-2026-33762

Name of the Vulnerable Software and Affected Versions Progress ADC Products affected versions not specified Description An OS command injection flaw allows an authenticated attacker with "All" permissions to execute arbitrary commands on the LoadMaster appliance. This occurs due to unsanitized...

8.4CVSS6.2AI score0.0252EPSS
Exploits0References7
GithubExploit
GithubExploit
added 2026/04/19 6:22 a.m.142 views

Exploit for Out-of-bounds Read in Citrix Netscaler_Application_Delivery_Controller

CVE-2026-3055 - Security Vulnerability Severity: N/A CV...

9.8CVSS5.8AI score0.83996EPSS
Exploits7
Ubuntu
Ubuntu
added 2026/04/17 10:28 a.m.24 views

USN-8188-1: Linux kernel (HWE) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM64 architecture; - Block layer subsystem; - Cryptographic API; - Drivers core; - Bluetooth drivers; - DMA engine...

8.8CVSS5.8AI score0.0071EPSS
Exploits7
Rows per page
Query Builder