Lucene search
K

37019 matches found

BDU FSTEC
BDU FSTEC
added 2025/06/25 12:0 a.m.6 views

The vulnerability of the dbAllocBits() function in the fs/jfs/jfs_dmap.c module of the Linux file system support for JFS kernels allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the dbAllocBits function in the fs/jfs/jfsdmap.c module of the Linux file system support module JFS is related to unvalidated array indexing. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...

7.8CVSS6.5AI score0.00249EPSS
Exploits0References38Affected Software2
Circl
Circl
added 2025/06/24 4:50 p.m.10 views

CVE-2025-6434

creationtimestamp| type| source ---|---|--- 2025-06-24 16:50:35+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lsekkcoiaq2o 2025-06-25 14:51:31+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/19459...

4.3CVSS4.6AI score0.00227EPSS
Exploits0References2
CNVD
CNVD
added 2025/06/24 12:0 a.m.3 views

TOTOLINK T10 Trust Management Issue Vulnerability

TOTOLINK T10 is a wireless network system router from China's Gion Electronics TOTOLINK. The TOTOLINK T10 suffers from a trust management issue vulnerability that stems from the use of hard-coded passwords in the file /etc/shadow.sample. An attacker could exploit the vulnerability to cause...

3.9CVSS6.9AI score0.00331EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2025/06/24 12:0 a.m.5 views

The vulnerability of the rweather library and the crypto-based solutions for organizing tactical radio communications in hard-to-access areas like Meshtastic allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the rweather library and the crypto-based solutions for organizing tactical radio communications in hard-to-access areas like Meshtastic is related to insufficient entropy during key generation. Exploiting this vulnerability allows a remote attacker to compromise the...

10CVSS5.5AI score0.00409EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2025/06/23 8:22 a.m.3 views

MINI-V53V-RXX2-QR96

Bulletin has no description...

4.3CVSS7.2AI score0.00462EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/06/23 7:0 a.m.6 views

Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).

...

4.9CVSS7.7AI score0.00716EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.6 views

The vulnerability of the zynqmp_dpsub_drm_cleanup() function in the drivers/gpu/drm/xlnx/zynqmp_kms.c module of the Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the zynqmpdpsubdrmcleanup function in the drivers/gpu/drm/xlnx/zynqmpkms.c module of the Linux kernel is related to the reutilization of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

7.8CVSS7.2AI score0.0022EPSS
Exploits0References14Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.5 views

The vulnerability of the __smc_create() function in the net/smc/af_smc.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the smccreate function in the net/smc/afsmc.c module of the Linux operating system is related to the reutilization of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...

7.8CVSS7.1AI score0.00213EPSS
Exploits0References7Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.6 views

The vulnerability of the binder_txns_pending_ilocked() function in the drivers/android/binder.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the bindertxnspendingilocked function in the drivers/android/binder.c module of the Linux operating system’s kernel is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to compromise the confidentiality,...

7CVSS6.5AI score0.00149EPSS
Exploits0References7Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.5 views

The vulnerability of the prepare_trampoline() function in the arch/arm64/net/bpf_jit_comp.c module of the Linux operating system allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the preparetrampoline function in the arch/arm64/net/bpfjitcomp.c module of the Linux operating system is related to writing beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of...

7.8CVSS7.2AI score0.00231EPSS
Exploits0References7Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.5 views

The vulnerability of the setWiFiScheduleCfg() function (/cgi-bin/cstecgi.cgi) in the TOTOLINK T10 router software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the setWiFiScheduleCfg function /cgi-bin/cstecgi.cgi in the TOTOLINK T10 router microprogramming software is related to the issue of the operation going beyond the buffer in memory when processing the desc parameter. Exploiting this vulnerability allows a remote attacker to...

9CVSS7.9AI score0.00758EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.5 views

The vulnerability of the nfsd4_free_stateid() function in the fs/nfsd/nfs4state.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the nfsd4freestateid function in the fs/nfsd/nfs4state.c module of the Linux operating system is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of t...

7.8CVSS7.1AI score0.0021EPSS
Exploits0References7Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.5 views

The vulnerability of TOTOLINK T10 router microprogramming software, related to the use of pre-installed account data, allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of TOTOLINK T10 router microprogramming software is related to the use of pre-installed account data. Exploiting this vulnerability can allow a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected information...

4CVSS5.4AI score0.00331EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.9 views

The vulnerability of the ucsi_ccg_sync_control() function in the Linux kernel’s driver/us module allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the ucsiccgsynccontrol function in the drivers/us module of the Linux operating system is related to unvalidated array indexing. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

7.8CVSS6.9AI score0.0024EPSS
Exploits0References17Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.6 views

The vulnerability of the bch2_sb_clean_validate_late() function in the fs/bcachefs/sb-clean.c module of the bcachefs file system support in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the bch2sbcleanvalidatelate function in the fs/bcachefs/sb-clean.c module of the bcachefs file system support module in the Linux operating system is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow an attacker to compromise the...

8.4CVSS5.9AI score0.0023EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.8 views

The vulnerability of the kvm_riscv_vcpu_sbi_init() function in the arch/riscv/kvm/vcpu_sbi.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the kvmriscvvcpusbiinit function in the arch/riscv/kvm/vcpusbi.c module of the Linux operating system is related to unvalidated array indexing. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protect...

7.8CVSS7.1AI score0.00234EPSS
Exploits0References9Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.7 views

Vulnerability of the zynqmp_qspi_irq() function in the drivers/spi/spi-zynqmp-gqspi.c module – This driver provides support for SPI devices in the Linux kernel, which allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

Vulnerability of the zynqmpqspiirq function in the drivers/spi/spi-zynqmp-gqspi.c module – The Linux kernel’s SPI device driver support has a vulnerability related to incorrect checking of the return value of this function. Exploiting this vulnerability could allow an attacker to compromise the...

5.5CVSS5.9AI score0.00239EPSS
Exploits0References14Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.6 views

Vulnerability of the save_iaa_wq() function in the drivers/crypto/intel/iaa/iaa_crypto_main.c module – a driver for the Intel cryptographic accelerator in the Linux operating system, which allows an attacker to compromise the confidentiality, integrity, and accessibility of protected information.

Vulnerability of the saveiaawq function in the drivers/crypto/intel/iaa/iaacryptomain.c module – The Linux kernel cryptographic accelerator driver has a vulnerability related to insufficient validation of input data when dividing by zero. Exploiting this vulnerability could allow an attacker to...

8.4CVSS5.9AI score0.00238EPSS
Exploits0References12Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.7 views

The vulnerability of the xe_reg_sr_add() function in the drivers/gpu/drm/xe/xe_reg_sr.c kernel of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the xeregsradd function in the drivers/gpu/drm/xe/xeregsr.c kernel of the Linux operating system is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility o...

7.8CVSS7.1AI score0.00207EPSS
Exploits0References7Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.8 views

The vulnerability of the manage_oob() function in the net/unix/af_unix.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the manageoob function in the net/unix/afunix.c module of the Linux kernel is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...

7.8CVSS7.2AI score0.00206EPSS
Exploits0References9Affected Software1
Rows per page
Query Builder