Lucene search
K

125 matches found

Positive Technologies
Positive Technologies
added 2026/05/28 12:0 a.m.13 views

PT-2026-44335

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue exists in the batman-adv module. The batadv bla del backbone claims function removes all claims for a backbone by dropping the link entry in the hash list. Because...

9.8CVSS5.8AI score0.005EPSS
Exploits0References293
Positive Technologies
Positive Technologies
added 2026/05/28 12:0 a.m.17 views

PT-2026-44354

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description In the batman-adv module, the batadv bla add claim function fails to release a reference to the backbone gw object when it cannot insert a new claim into the hash. This results in a memo...

9.8CVSS5.9AI score0.03663EPSS
Exploits16References285
Microsoft CVE
Microsoft CVE
added 2026/04/26 8:7 a.m.8 views

batman-adv: hold claim backbone gateways by reference

...

9.8CVSS5.8AI score0.00399EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/04/25 1:36 a.m.7 views

SUSE CVE-2026-31657

In the Linux kernel, the following vulnerability has been resolved: batman-adv: hold claim backbone gateways by reference batadvblaaddclaim can replace claim-backbonegw and drop the old gateway's last reference while readers still follow the pointer. The netlink claim dump path dereferences...

9.8CVSS5.4AI score0.00399EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/04/24 10:14 p.m.5 views

CVE-2026-31657

A flaw was found in the Linux kernel's batman-adv component. The batadvblaaddclaim function can improperly drop a reference to a backbone gateway while other parts of the code, such as the netlink claim dump path, still hold and attempt to use a pointer to the freed memory. This creates a...

9.8CVSS5.3AI score0.00399EPSS
Exploits0References4
NVD
NVD
added 2026/04/24 3:16 p.m.6 views

CVE-2026-31657

In the Linux kernel, the following vulnerability has been resolved: batman-adv: hold claim backbone gateways by reference batadvblaaddclaim can replace claim-backbonegw and drop the old gateway's last reference while readers still follow the pointer. The netlink claim dump path dereferences...

9.8CVSS0.00399EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2026/04/24 2:45 p.m.8 views

CVE-2026-31657

In the Linux kernel, the following vulnerability has been resolved: batman-adv: hold claim backbone gateways by reference batadvblaaddclaim can replace claim-backbonegw and drop the old gateway's last reference while readers still follow the pointer. The netlink claim dump path dereferences...

9.8CVSS5.2AI score0.00399EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/04/24 2:45 p.m.3 views

CVE-2026-31657

In the Linux kernel, the following vulnerability has been resolved: batman-adv: hold claim backbone gateways by reference batadvblaaddclaim can replace claim-backbonegw and drop the old gateway's last reference while readers still follow the pointer. The netlink claim dump path dereferences...

5.2AI score0.00399EPSS
Exploits0References7Affected Software1
EUVD
EUVD
added 2026/04/24 2:45 p.m.7 views

EUVD-2026-25550

In the Linux kernel, the following vulnerability has been resolved: batman-adv: hold claim backbone gateways by reference batadvblaaddclaim can replace claim-backbonegw and drop the old gateway's last reference while readers still follow the pointer. The netlink claim dump path dereferences...

5.4AI score0.00399EPSS
Exploits0References6
CVE
CVE
added 2026/04/24 2:45 p.m.34 views

CVE-2026-31657

CVE-2026-31657 affects the Linux kernel batman-adv component. The flaw arises when batman-adv’s batadv_bla_add_claim() can replace claim->backbone_gw and drop the old gateway’s final reference while readers still follow the pointer. The netlink claim dump path dereferences claim->backbone_g...

9.8CVSS5.4AI score0.00399EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2026/04/24 2:45 p.m.46 views

CVE-2026-31657 batman-adv: hold claim backbone gateways by reference

In the Linux kernel, the following vulnerability has been resolved: batman-adv: hold claim backbone gateways by reference batadvblaaddclaim can replace claim-backbonegw and drop the old gateway's last reference while readers still follow the pointer. The netlink claim dump path dereferences...

9.8CVSS0.00399EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/04/24 12:0 a.m.8 views

PT-2026-35009

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description In the batman-adv module, the function batadv bla add claim can replace claim-backbone gw and drop the last reference of the old gateway while readers are still following the pointer. Th...

9.8CVSS5.2AI score0.00399EPSS
Exploits0
Packet Storm News
Packet Storm News
added 2026/04/07 12:0 a.m.16 views

Your Agent, Their Asset: A Real-World Safety Analysis of OpenClaw

OpenClaw, the most widely deployed personal AI agent in early 2026, operates with full local system access and integrates with sensitive services such as Gmail, Stripe, and the filesystem. While these broad privileges enable high levels of automation and powerful personalization, they also expose...

5.9AI score
Exploits0
vulnersOsv
vulnersOsv
added 2026/03/26 8:34 p.m.7 views

org.webjars.npm:chai-backbone (=0.9.2), org.webjars.npm:express (=5.1.0) +5 more potentially affected by CVE-2026-4923 via org.webjars.npm:path-to-regexp (=8.2.0)

org.webjars.npm:path-to-regexp MAVEN version =8.2.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.webjars.npm:path-to-regexp and may be impacted: - org.webjars.npm:chai-backbone =0.9.2 - org.webjars.npm:express =5.1.0 -...

5.9CVSS6.2AI score0.00353EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2026/03/26 8:34 p.m.7 views

org.webjars.npm:chai-backbone (=0.9.2), org.webjars.npm:express (=5.1.0) +5 more potentially affected by CVE-2026-4926 via org.webjars.npm:path-to-regexp (=8.2.0)

org.webjars.npm:path-to-regexp MAVEN version =8.2.0 is affected by a known vulnerability. The following packages have a transitive dependency on org.webjars.npm:path-to-regexp and may be impacted: - org.webjars.npm:chai-backbone =0.9.2 - org.webjars.npm:express =5.1.0 -...

7.5CVSS6.2AI score0.00791EPSS
Exploits0
Packet Storm News
Packet Storm News
added 2026/01/30 12:0 a.m.46 views

Sifting the Noise: A Comparative Study of LLM Agents in Vulnerability False Positive Filtering

Static Application Security Testing SAST tools are essential for identifying software vulnerabilities, but they often produce a high volume of false positives FPs, imposing a substantial manual triage burden on developers. Recent advances in Large Language Model LLM agents offer a promising...

5.4AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/01/16 12:0 a.m.5 views

LoRA As Oracle

Backdoored and privacy-leaking deep neural networks pose a serious threat to the deployment of machine learning systems in security-critical settings. Existing defenses for backdoor detection and membership inference typically require access to clean reference models, extensive retraining, or...

5.5AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/01/05 12:0 a.m.3 views

Focus on What Matters: Fisher-Guided Adaptive Multimodal Fusion for Vulnerability Detection

Software vulnerability detection is a critical task for securing software systems and can be formulated as a binary classification problem: given a code snippet, determine whether it contains a vulnerability. Existing multimodal approaches typically fuse Natural Code Sequence NCS representations...

7AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/10/26 12:0 a.m.7 views

Breaking Agent Backbones: Evaluating the Security of Backbone LLMs in AI Agents

AI agents powered by large language models LLMs are being deployed at scale, yet we lack a systematic understanding of how the choice of backbone LLM affects agent security. The non-deterministic sequential nature of AI agents complicates security modeling, while the integration of traditional...

7.3AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2021-1019

Malware in sbrugna...

8.8CVSS8.6AI score0.01606EPSS
Exploits1References3
Rows per page
Query Builder