Lucene search
+L

102 matches found

nessus
nessus
added 2026/07/01 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2026-58012

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in GLib. A buffer over-read can occur in the gregexreplace function when used with the GREGEXRAW compile flag and case-change replacement escap...

8.2CVSS6.1AI score0.00322EPSS
Exploits1References4
astralinux
astralinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in Linux 5.10, Linux

In the Linux kernel, the following vulnerability has been resolved: Wifi: mac80211 – Fix for queue selection for mesh/OCB interfaces When using iTXQ, the code assumes that there is only one vif queue for broadcast packets, using the BE queue. Allowing non-BE queue marking violates this assumption...

5.5CVSS6.2AI score0.00252EPSS
Exploits0References1
packetstormnews
packetstormnews
added 2026/04/30 12:0 a.m.10 views

Alignment Contracts for Agentic Security Systems

Agentic security systems increasingly combine LLM planners with tools that can discover, validate, and report vulnerabilities. This creates an asymmetric control problem: the system should retain strong offensive capability inside an authorized engagement, while the same capabilities must be deni...

5.8AI score
Exploits0
cnnvd
cnnvd
added 2025/12/22 12:0 a.m.6 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a bmc150 accelerometer interrupt assumption error, which could lead to kernel null pointer dereference...

6AI score0.00176EPSS
Exploits0References8
susecve
susecve
added 2025/12/17 12:25 a.m.4 views

SUSE CVE-2025-68224

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

6.1AI score0.00032EPSS
Exploits0References3
redhatcve
redhatcve
added 2025/12/16 7:48 p.m.7 views

CVE-2025-14503

An overly-permissive IAM trust policy in the Harmonix on AWS framework may allow IAM principals in the same AWS account to escalate privileges via role assumption. The sample code for the EKS environment provisioning role is configured to trust the account root principal, which may enable any IAM...

8.6CVSS7.5AI score0.00447EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2025/12/15 12:0 a.m.11 views

PT-2025-51281

Name of the Vulnerable Software and Affected Versions Harmonix on AWS versions 0.3.0 through 0.4.1 Description An overly-permissive IAM trust policy within the Harmonix on AWS framework could allow IAM principals within the same AWS account to escalate privileges through role assumption. The EKS...

8.6CVSS7.2AI score0.00447EPSS
Exploits0References7
euvd
euvd
added 2025/10/07 12:30 a.m.7 views

EUVD-2018-18576

Malware in sbrugna...

7.5CVSS7.6AI score0.01811EPSS
Exploits1References5
euvd
euvd
added 2025/10/07 12:30 a.m.7 views

EUVD-2021-1883

Malware in sbrugna...

9.8CVSS9AI score0.02776EPSS
Exploits1References11
euvd
euvd
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-7074

Malware in sbrugna...

9.8CVSS9.3AI score0.01375EPSS
Exploits1References3
nessus
nessus
added 2025/10/07 12:0 a.m.2 views

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-387380)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-387380 advisory. In the Linux kernel, the following vulnerability has been resolved: x86/mm: Fix pticlonepgtable alignment assumption Guenter reported dodgy crashes on an i386-nosmp...

5.5CVSS6.3AI score0.00223EPSS
Exploits0References3
euvd
euvd
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-43003

Malicious code in bioql PyPI...

6.5CVSS6.8AI score0.00463EPSS
Exploits0References8
amazon
amazon
added 2025/07/10 12:0 a.m.4 views

Medium: python-crypto

Issue Overview: lib/Crypto/PublicKey/ElGamal.py in PyCrypto through 2.6.1 generates weak ElGamal key parameters, which allows attackers to obtain sensitive information by reading ciphertext data i.e., it does not have semantic security in face of a ciphertext-only attack. The Decisional...

7.5CVSS6.6AI score0.02071EPSS
Exploits1
redhat
redhat
added 2025/07/07 8:13 a.m.5 views

xorg-x11-server-Xwayland: xorg-x11-server: tigervnc: Out-of-Bounds Read in X Rendering Extension Animated Cursors

A flaw was found in the X Rendering extension's handling of animated cursors. If a client provides no cursors, the server assumes at least one is present, leading to an out-of-bounds read and potential crash...

6.1CVSS5.7AI score0.00285EPSS
Exploits0References7
packetstormnews
packetstormnews
added 2025/06/23 12:0 a.m.5 views

Accurate BGV Parameters Selection: Accounting for Secret and Public Key Dependencies in Average-Case Analysis

The Brakerski-Gentry-Vaikuntanathan BGV scheme is one of the most significant fully homomorphic encryption FHE schemes. It belongs to a class of FHE schemes whose security is based on the presumed intractability of the Learning with Errors LWE problem and its ring variant RLWE. Such schemes deal...

6.9AI score
Exploits0
packetstormnews
packetstormnews
added 2025/05/24 12:0 a.m.6 views

Zero Trust Cybersecurity: Procedures and Considerations in Context

In response to the increasing complexity and sophistication of cyber threats, particularly those enhanced by advancements in artificial intelligence, traditional security methods are proving insufficient. This paper explores the Zero Trust cybersecurity framework, which operates on the principle ...

6.8AI score
Exploits0
redhat
redhat
added 2025/05/13 8:28 a.m.4 views

kernel: lib: objagg: Fix general protection fault

linux kernel's lib objagg can incorrectly permit object nesting in an unallowed circumstance, based on lack of appropriate checks stemming from assumption violations. The incorrect object creation from this assumption can lead to general protection fault...

5.5CVSS6.9AI score0.0022EPSS
Exploits0References5
cvelist
cvelist
added 2025/02/26 2:24 a.m.13 views

CVE-2022-49691 erspan: do not assume transport header is always set

In the Linux kernel, the following vulnerability has been resolved: erspan: do not assume transport header is always set Rewrite tests in ip6erspantunnelxmit and erspanfbxmit to not assume transport header is set. syzbot reported: WARNING: CPU: 0 PID: 1350 at include/linux/skbuff.h:2911...

0.00274EPSS
Exploits0References6
cve
cve
added 2025/02/26 2:23 a.m.144 views

CVE-2022-49663

CVE-2022-49663 affects the Linux kernel in the tunneling path used by Genefe/IPv4 tunnels. The root cause is an assumption that skb->mac_header is set in skb_tunnel_check_pmtu(); debug added in a kernel commit triggered a warning in ndo_start_xmit() paths, since skb->data should point to th...

5.5CVSS6.3AI score0.00266EPSS
Exploits0References4Affected Software1
cnnvd
cnnvd
added 2025/02/26 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an incorrect assumption that the transport header is always set, which triggers a warning in skbuff.h when i...

5.5CVSS5.2AI score0.00274EPSS
Exploits0References8
Rows per page
Query Builder