37019 matches found
The vulnerability of the dbAllocBits() function in the fs/jfs/jfs_dmap.c module of the Linux file system support for JFS kernels allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the dbAllocBits function in the fs/jfs/jfsdmap.c module of the Linux file system support module JFS is related to unvalidated array indexing. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...
CVE-2025-6434
creationtimestamp| type| source ---|---|--- 2025-06-24 16:50:35+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lsekkcoiaq2o 2025-06-25 14:51:31+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/19459...
TOTOLINK T10 Trust Management Issue Vulnerability
TOTOLINK T10 is a wireless network system router from China's Gion Electronics TOTOLINK. The TOTOLINK T10 suffers from a trust management issue vulnerability that stems from the use of hard-coded passwords in the file /etc/shadow.sample. An attacker could exploit the vulnerability to cause...
The vulnerability of the rweather library and the crypto-based solutions for organizing tactical radio communications in hard-to-access areas like Meshtastic allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the rweather library and the crypto-based solutions for organizing tactical radio communications in hard-to-access areas like Meshtastic is related to insufficient entropy during key generation. Exploiting this vulnerability allows a remote attacker to compromise the...
MINI-V53V-RXX2-QR96
Bulletin has no description...
Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Replication). Supported versions that are affected are 8.0.0-8.0.41, 8.4.0-8.4.4 and 9.0.0-9.2.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of MySQL Server. CVSS 3.1 Base Score 4.9 (Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H).
...
The vulnerability of the zynqmp_dpsub_drm_cleanup() function in the drivers/gpu/drm/xlnx/zynqmp_kms.c module of the Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the zynqmpdpsubdrmcleanup function in the drivers/gpu/drm/xlnx/zynqmpkms.c module of the Linux kernel is related to the reutilization of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...
The vulnerability of the __smc_create() function in the net/smc/af_smc.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the smccreate function in the net/smc/afsmc.c module of the Linux operating system is related to the reutilization of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...
The vulnerability of the binder_txns_pending_ilocked() function in the drivers/android/binder.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the bindertxnspendingilocked function in the drivers/android/binder.c module of the Linux operating system’s kernel is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to compromise the confidentiality,...
The vulnerability of the prepare_trampoline() function in the arch/arm64/net/bpf_jit_comp.c module of the Linux operating system allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the preparetrampoline function in the arch/arm64/net/bpfjitcomp.c module of the Linux operating system is related to writing beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of...
The vulnerability of the setWiFiScheduleCfg() function (/cgi-bin/cstecgi.cgi) in the TOTOLINK T10 router software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the setWiFiScheduleCfg function /cgi-bin/cstecgi.cgi in the TOTOLINK T10 router microprogramming software is related to the issue of the operation going beyond the buffer in memory when processing the desc parameter. Exploiting this vulnerability allows a remote attacker to...
The vulnerability of the nfsd4_free_stateid() function in the fs/nfsd/nfs4state.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the nfsd4freestateid function in the fs/nfsd/nfs4state.c module of the Linux operating system is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of t...
The vulnerability of TOTOLINK T10 router microprogramming software, related to the use of pre-installed account data, allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of TOTOLINK T10 router microprogramming software is related to the use of pre-installed account data. Exploiting this vulnerability can allow a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected information...
The vulnerability of the ucsi_ccg_sync_control() function in the Linux kernel’s driver/us module allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the ucsiccgsynccontrol function in the drivers/us module of the Linux operating system is related to unvalidated array indexing. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...
The vulnerability of the bch2_sb_clean_validate_late() function in the fs/bcachefs/sb-clean.c module of the bcachefs file system support in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the bch2sbcleanvalidatelate function in the fs/bcachefs/sb-clean.c module of the bcachefs file system support module in the Linux operating system is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow an attacker to compromise the...
The vulnerability of the kvm_riscv_vcpu_sbi_init() function in the arch/riscv/kvm/vcpu_sbi.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the kvmriscvvcpusbiinit function in the arch/riscv/kvm/vcpusbi.c module of the Linux operating system is related to unvalidated array indexing. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protect...
Vulnerability of the zynqmp_qspi_irq() function in the drivers/spi/spi-zynqmp-gqspi.c module – This driver provides support for SPI devices in the Linux kernel, which allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.
Vulnerability of the zynqmpqspiirq function in the drivers/spi/spi-zynqmp-gqspi.c module – The Linux kernel’s SPI device driver support has a vulnerability related to incorrect checking of the return value of this function. Exploiting this vulnerability could allow an attacker to compromise the...
Vulnerability of the save_iaa_wq() function in the drivers/crypto/intel/iaa/iaa_crypto_main.c module – a driver for the Intel cryptographic accelerator in the Linux operating system, which allows an attacker to compromise the confidentiality, integrity, and accessibility of protected information.
Vulnerability of the saveiaawq function in the drivers/crypto/intel/iaa/iaacryptomain.c module – The Linux kernel cryptographic accelerator driver has a vulnerability related to insufficient validation of input data when dividing by zero. Exploiting this vulnerability could allow an attacker to...
The vulnerability of the xe_reg_sr_add() function in the drivers/gpu/drm/xe/xe_reg_sr.c kernel of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the xeregsradd function in the drivers/gpu/drm/xe/xeregsr.c kernel of the Linux operating system is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility o...
The vulnerability of the manage_oob() function in the net/unix/af_unix.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the manageoob function in the net/unix/afunix.c module of the Linux kernel is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...