Lucene search
K

4 matches found

Vulnrichment
Vulnrichment
added 2026/03/27 6:12 p.m.2 views

CVE-2026-34368 AVideo Vulnerable to Wallet Balance Double-Spend via TOCTOU Race Condition in transferBalance

WWBN AVideo is an open source video platform. In versions up to and including 26.0, the transferBalance method in plugin/YPTWallet/YPTWallet.php contains a Time-of-Check-Time-of-Use TOCTOU race condition. The method reads the sender's wallet balance, checks sufficiency in PHP, then writes the new...

5.3CVSS5.9AI score0.00228EPSS
Exploits1References2
CVE
CVE
added 2025/12/24 10:55 a.m.18 views

CVE-2023-54023

The CVE-2023-54023 entry concerns a Linux kernel bug in Btrfs where a race between balance and cancel/pause could trigger a kernel panic. The provided docs describe a fix that ensures proper cleanup of balance state when balance completes, even if a pause/cancel was requested, preventing the ASSE...

6AI score0.00155EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/12/24 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-54002

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - btrfs: fix assertion of exclop condition when starting balance Balance as exclusive state is compatible with paused balance and device add, which makes some...

6.1AI score0.00168EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/12/24 12:0 a.m.8 views

PT-2025-52959

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the btrfs subsystem related to the assertion of exclusive operation conditions during balance operations. Specifically, the issue arises when...

6.3AI score0.00168EPSS
Exploits0References17
Rows per page
Query Builder