36 matches found
Astra Linux - уязвимость в linux-5.10
In the Linux kernel, the following vulnerability has been resolved: accel/qaic: Treat the remaining value of == 0 as an error in findandmapuserpages. Currently, if findandmapuserpages receives a DMA transfer request from the user with a length field set to 0, or in a rare case, when the host...
CVE-2025-40172
In the Linux kernel, the following vulnerability has been resolved: accel/qaic: Treat remaining == 0 as error in findandmapuserpages Currently, if findandmapuserpages takes a DMA xfer request from the user with a length field set to 0, or in a rare case, the host receives QAICTRANSDMAXFERCONT fro...
EUVD-2025-124911
In the Linux kernel, the following vulnerability has been resolved: accel/qaic: Treat remaining == 0 as error in findandmapuserpages Currently, if findandmapuserpages takes a DMA xfer request from the user with a length field set to 0, or in a rare case, the host receives QAICTRANSDMAXFERCONT fro...
CVE-2025-40172 accel/qaic: Treat remaining == 0 as error in find_and_map_user_pages()
In the Linux kernel, the following vulnerability has been resolved: accel/qaic: Treat remaining == 0 as error in findandmapuserpages Currently, if findandmapuserpages takes a DMA xfer request from the user with a length field set to 0, or in a rare case, the host receives QAICTRANSDMAXFERCONT fro...
CVE-2025-40172
The connected Astra Linux entry for CVE-2025-40172 provides concrete technical details: a Linux kernel vulnerability in accel/qaic where find_and_map_user_pages() may return 0 when a zero-length DMA request is made, or when a QAIC_TRANS_DMA_XFER_CONT occurs after bytes are transferred, causing en...
swiss-alp-health.ch Improper Access Control vulnerability OBB-3860480
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
tegia-alp-plaun.ch Cross Site Scripting vulnerability OBB-2298552
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
alp-bayern.de Improper Access Control vulnerability OBB-2232377
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
Huawei Data Communication: SegmentSmack Vulnerability in Linux Kernel (huawei-sa-20181031-02-linux)
There is a DoS vulnerability in the Linux Kernel versions 4.9+ and supported versions known as a SegmentSmack attack. Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
alp-bnb.ch Cross Site Scripting vulnerability
Open Bug Bounty ID: OBB-1126310 Security Researcher g0bl1nsec Helped patch 3768 vulnerabilities Received 4 Coordinated Disclosure badges Received 3 recommendations , a holder of 4 badges for responsible and coordinated disclosure, found a security vulnerability affecting alp-bnb.ch website and it...
Microsoft Windows Multiple Vulnerabilities (KB4512501)
This host is missing a critical security update according to Microsoft KB4512501 Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This progra...
CVE-2018-7910
CVE-2018-7910 applies to several Huawei smartphones (e.g., ALP-AL00B, ALP-TL00B, BLA-AL00B, BLA-L09C, BLA-L29C) running Android 8.x with builds such as 8.0.0.118D(C00/ C01), 8.0.0.127/128/137(C432). The flaw is an authentication bypass that lets an attacker replace the boot/startup program when t...
CVE-2018-7991
Huawei smartphones Mate10 with versions earlier before ALP-AL00B 8.0.0.110C00 have a Factory Reset Protection FRP bypass vulnerability. The system does not sufficiently verify the permission, an attacker uses a data cable to connect the smartphone to the computer and then perform some specific...
CVE-2018-7923
Huawei ALP-L09 smart phones with versions earlier than ALP-L09 8.0.0.150C432 have an insufficient input validation vulnerability due to lack of parameter check. An attacker tricks the user who has root privilege to install a crafted application, the application may modify the specific data to...
CVE-2018-7923
Huawei ALP-L09 smart phones with versions earlier than ALP-L09 8.0.0.150C432 have an insufficient input validation vulnerability due to lack of parameter check. An attacker tricks the user who has root privilege to install a crafted application, the application may modify the specific data to...
Input validation
Huawei ALP-L09 smart phones with versions earlier than ALP-L09 8.0.0.150C432 have an insufficient input validation vulnerability due to lack of parameter check. An attacker tricks the user who has root privilege to install a crafted application, the application may modify the specific data to...
CVE-2018-7922
Huawei ALP-L09 smart phones with versions earlier than ALP-L09 8.0.0.150C432 have an insufficient input validation vulnerability due to lack of parameter check. An attacker tricks the user who has root privilege to install a crafted application, the application may modify the specific data to...
Input validation
Huawei ALP-L09 smart phones with versions earlier than ALP-L09 8.0.0.150C432 have an insufficient input validation vulnerability due to lack of parameter check. An attacker tricks the user who has root privilege to install a crafted application, the application may modify the specific data to...
CVE-2018-7922
Huawei ALP-L09 smart phones with versions earlier than ALP-L09 8.0.0.150C432 have an insufficient input validation vulnerability due to lack of parameter check. An attacker tricks the user who has root privilege to install a crafted application, the application may modify the specific data to...
CVE-2018-7923
Huawei ALP-L09 smart phones with versions earlier than ALP-L09 8.0.0.150C432 have an insufficient input validation vulnerability due to lack of parameter check. An attacker tricks the user who has root privilege to install a crafted application, the application may modify the specific data to...