Lucene search
+L

203 matches found

Tenable Nessus
Tenable Nessus
added 2025/09/29 12:0 a.m.6 views

RHEL 10 : kernel (RHSA-2025:16904)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2025:16904 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: fs: export...

8.8CVSS7AI score0.00179EPSS
Exploits1References15
Microsoft CVE
Microsoft CVE
added 2025/09/04 5:7 a.m.5 views

fs: export anon_inode_make_secure_inode() and fix secretmem LSM bypass

...

7.8CVSS7AI score0.00163EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.9 views

Amazon Linux 2 : kernel (ALASKERNEL-5.10-2025-097)

The version of kernel installed on the remote host is prior to 5.10.238-234.956. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.10-2025-097 advisory. In the Linux kernel, the following vulnerability has been resolved: mm/khugepaged: fix -anonvma race...

7.8CVSS6.6AI score0.00222EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/08/15 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-21907

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mm: memory-failure: update ttu flag inside unmappoisonedfolio Patch series mm: memoryfailure: unmap poisoned folio during migrate properly, v3. Fix two bugs...

5.5CVSS6.2AI score0.00187EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/08/11 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2024-40950

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: mm: hugememory: fix misused mappinglargefoliosupport for anon folios When I did a large foli...

5.5CVSS5.4AI score0.00208EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/10 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2025-38396

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: fs: export anoninodemakesecureinode and fix secretmem LSM bypass Export...

7.8CVSS6.2AI score0.00163EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/07/28 11:23 p.m.3 views

SUSE CVE-2025-38396

In the Linux kernel, the following vulnerability has been resolved: fs: export anoninodemakesecureinode and fix secretmem LSM bypass Export anoninodemakesecureinode to allow KVM guestmemfd to create anonymous inodes with proper security context. This replaces the current pattern of calling...

7.8CVSS6.4AI score0.00163EPSS
Exploits0References69
OSV
OSV
added 2025/07/25 1:15 p.m.6 views

AZL-65726 CVE-2025-38396 affecting package kernel for versions less than 6.6.104.2-1

In the Linux kernel, the following vulnerability has been resolved: fs: export anoninodemakesecureinode and fix secretmem LSM bypass Export anoninodemakesecureinode to allow KVM guestmemfd to create anonymous inodes with proper security context. This replaces the current pattern of calling...

7.8CVSS5.6AI score0.00163EPSS
Exploits0References1
OSV
OSV
added 2025/07/25 1:15 p.m.5 views

UBUNTU-CVE-2025-38396

In the Linux kernel, the following vulnerability has been resolved: fs: export anoninodemakesecureinode and fix secretmem LSM bypass Export anoninodemakesecureinode to allow KVM guestmemfd to create anonymous inodes with proper security context. This replaces the current pattern of calling...

7.8CVSS6.2AI score0.00163EPSS
Exploits0References30
Cvelist
Cvelist
added 2025/07/25 12:53 p.m.18 views

CVE-2025-38396 fs: export anon_inode_make_secure_inode() and fix secretmem LSM bypass

In the Linux kernel, the following vulnerability has been resolved: fs: export anoninodemakesecureinode and fix secretmem LSM bypass Export anoninodemakesecureinode to allow KVM guestmemfd to create anonymous inodes with proper security context. This replaces the current pattern of calling...

0.00163EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2025/07/08 11:22 p.m.3 views

SUSE CVE-2025-38207

In the Linux kernel, the following vulnerability has been resolved: mm: fix uprobe pte be overwritten when expanding vma Patch series "Fix uprobe pte be overwritten when expanding vma". This patch of 4: We encountered a BUG alert triggered by Syzkaller as follows: BUG: Bad rss-counter state...

3.3CVSS6.4AI score0.00131EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/06/23 8:41 a.m.7 views

CVE-2025-52733

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Anonform Ab ANON::form embedded secure form anonform-embedded-secure-form allows DOM-Based XSS.This issue affects ANON::form embedded secure form: from n/a through = 1.7...

6.5CVSS5.9AI score0.00159EPSS
Exploits0References1
Amazon
Amazon
added 2025/06/23 12:0 a.m.10 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: scsi: target: Fix WRITESAME No Data Buffer crash In newer version of the SBC specs, we have a NDOB bit that indicates there is no data buffer that gets written out. If this bit is set using commands like...

9.8CVSS7.2AI score0.01483EPSS
Exploits3
Vulnrichment
Vulnrichment
added 2025/06/20 3:3 p.m.4 views

CVE-2025-52733 WordPress ANON::form embedded secure form plugin <= 1.7 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Anonform Ab ANON::form embedded secure form allows DOM-Based XSS. This issue affects ANON::form embedded secure form: from n/a through 1.7...

6.5CVSS6.5AI score0.00159EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/20 3:3 p.m.10 views

CVE-2025-52733 WordPress ANON::form embedded secure form plugin <= 1.7 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Anonform Ab ANON::form embedded secure form anonform-embedded-secure-form allows DOM-Based XSS.This issue affects ANON::form embedded secure form: from n/a through = 1.7...

6.5CVSS0.00159EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/06/20 12:0 a.m.7 views

PT-2025-26410 · Unknown · Anon::Form

Name of the Vulnerable Software and Affected Versions: ANON::form embedded secure form versions 1.7 and earlier Description: The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting. This allows for DOM-Based XSS in the ANON::form...

6.5CVSS5.4AI score0.00159EPSS
Exploits0References4
CNNVD
CNNVD
added 2025/06/20 12:0 a.m.3 views

WordPress plugin ANON::form embedded secure form 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists in the WordPress ANON::form embedded secure form plugin that stems from the application's lack of effective filtering and escaping of...

6.5CVSS5.9AI score0.00159EPSS
Exploits0References1
OSV
OSV
added 2025/06/05 12:39 a.m.4 views

GHSA-PR59-JJR4-GCF6 anon-vec lacks sufficient checks in public API

The following functions in the anon-vec crate are unsound due to insufficient checks on their arguments:: - AnonVec::getref - AnonVec::getmut - AnonVec::removeget The crate was built as a learning project and is not being maintained...

7AI score
Exploits0References2
Github Security Blog
Github Security Blog
added 2025/06/05 12:39 a.m.28 views

anon-vec lacks sufficient checks in public API

The following functions in the anon-vec crate are unsound due to insufficient checks on their arguments:: - AnonVec::getref - AnonVec::getmut - AnonVec::removeget The crate was built as a learning project and is not being maintained...

7AI score
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2025/06/05 12:0 a.m.4 views

PT-2025-25491 · Crates.Io · Anon-Vec

The following functions in the anon-vec crate are unsound due to insufficient checks on their arguments:: - AnonVec::get ref - AnonVec::get mut - AnonVec::remove get The crate was built as a learning project and is not being maintained...

7.1AI score
Exploits0References3
Rows per page
Query Builder