36974 matches found
PT-2025-36734
Name of the Vulnerable Software and Affected Versions: APTIOV affected versions not specified Description: APTIOV contains vulnerabilities in the BIOS that could allow a privileged user to cause a “Write-what-where Condition” and “Exposure of Sensitive Information to an Unauthorized Actor” throug...
PT-2025-36547
Name of the Vulnerable Software and Affected Versions: SAP HCM My Timesheet Fiori 2.0 application affected versions not specified Description: The SAP HCM My Timesheet Fiori 2.0 application is susceptible to a privilege escalation issue stemming from missing authorization checks. An authenticated...
PT-2025-36557
Name of the Vulnerable Software and Affected Versions: SAP NetWeaver AS Java application versions affected versions not specified Description: The SAP NetWeaver AS Java application utilizes Adobe Document Service, which includes a vulnerable version of OpenSSL. Exploitation of known vulnerabiliti...
OPENSUSE-SU-2025:15534-1 perl-Cpanel-JSON-XS-4.400.0-1.1 on GA media
These are all security issues fixed in the perl-Cpanel-JSON-XS-4.400.0-1.1 package on the GA media of openSUSE Tumbleweed...
Huawei HarmonyOS Ark eTS Module Denial of Service Vulnerability
Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A denial of service vulnerability exists in the Huawei HarmonyOS Ark eTS module, which can be exploited by attackers to cause availability to be compromised...
PT-2025-36549
Name of the Vulnerable Software and Affected Versions: SAP ABAP Reports affected versions not specified Description: Due to missing input validation in ABAP reports, an attacker with high privilege access could delete the content of arbitrary database tables if the tables are not protected by an...
PT-2025-36545
Name of the Vulnerable Software and Affected Versions: SAP HCM My Timesheet Fiori 2.0 application affected versions not specified Description: The SAP HCM My Timesheet Fiori 2.0 application does not perform necessary authorization checks for an authenticated user, resulting in escalation of...
PT-2025-36724
Name of the Vulnerable Software and Affected Versions: 1756-EN4TR communication modules 1756-EN2TR communication modules Description: A security issue exists in the protected mode of the communication modules, where a Concurrent Forward Close operation can trigger a Major Non-Recoverable MNFR...
OPENSUSE-SU-2025:15537-1 warewulf4-4.6.4-1.1 on GA media
These are all security issues fixed in the warewulf4-4.6.4-1.1 package on the GA media of openSUSE Tumbleweed...
CVE-2025-0010
An out of bounds write in the Linux graphics driver could allow an attacker to overflow the buffer potentially resulting in loss of confidentiality, integrity, or availability...
CVE-2025-0009
A NULL pointer dereference in AMD Crash Defender could allow an attacker to write a NULL output to a log file potentially resulting in a system crash and loss of availability...
CVE-2023-31365
An integer overflow in the SMU could allow a privileged attacker to potentially write memory beyond the end of the reserved dRAM area resulting in loss of integrity or availability...
CVE-2023-31322
Type confusion in the ASP could allow an attacker to pass a malformed argument to the Reliability, Availability, and Serviceability trusted application RAS TA potentially leading to a read or write to shared memory resulting in loss of confidentiality, integrity, or availability...
RLSA-2025:14999 Moderate: resource-agents security update
The resource-agents packages provide the Pacemaker and RGManager service managers with a set of scripts. These scripts interface with several services to allow operating in a high-availability HA environment. Security Fixes: requests: Requests vulnerable to .netrc credentials leak via malicious...
CVE-2021-26383
Insufficient bounds checking in AMD TEE Trusted Execution Environment could allow an attacker with a compromised userspace to invoke a command with malformed arguments leading to out of bounds memory access, potentially resulting in loss of integrity or availability...
OPENSUSE-SU-2025:15533-1 kernel-devel-6.16.5-1.1 on GA media
These are all security issues fixed in the kernel-devel-6.16.5-1.1 package on the GA media of openSUSE Tumbleweed...
CVE-2025-58280
Vulnerability of exposing object heap addresses in the Ark eTS module. Impact: Successful exploitation of this vulnerability may affect availability...
CVE-2025-58281
Out-of-bounds read vulnerability in the runtime interpreter module. Impact: Successful exploitation of this vulnerability may affect availability...
CVE-2025-58276
Permission verification vulnerability in the home screen module Impact: Successful exploitation of this vulnerability may affect availability...
net, hsr: reject HSR frame if skb can't hold tag
...