Lucene search
K

31 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.7 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

A memory write vulnerability that is outside the bounds of the system’s protection was discovered in the Linux kernel’s Kid-friendly Wired Controller driver. This vulnerability allows a local user to crash the system or potentially escalate their privileges. The issue lies in the bigbenprobe...

7.8CVSS6.7AI score0.00242EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/15 12:0 a.m.1 views

Linux Distros Unpatched Vulnerability : CVE-2022-3577

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An out-of-bounds memory write flaw was found in the Linux kernel's Kid-friendly Wired Controller driver. This flaw allows a local user to crash or potentially...

7.8CVSS6.7AI score0.00242EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/10 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-25012

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The Linux kernel through 6.1.9 has a Use-After-Free in bigbenremove in drivers/hid/hid-bigbenff.c via a crafted USB device because the LED controllers remain...

4.6CVSS6.7AI score0.00813EPSS
Exploits1References2
Ubuntu
Ubuntu
added 2023/07/12 7:31 p.m.63 views

USN-6223-1: Linux kernel (Azure CVM) vulnerabilities

It was discovered that the TUN/TAP driver in the Linux kernel did not properly initialize socket data. A local attacker could use this to cause a denial of service system crash. CVE-2023-1076 It was discovered that the Real-Time Scheduling Class implementation in the Linux kernel contained a type...

7.8CVSS6.7AI score0.01377EPSS
Exploits5References2
OSV
OSV
added 2023/07/12 7:31 p.m.13 views

USN-6223-1 linux-azure-fde vulnerabilities

It was discovered that the TUN/TAP driver in the Linux kernel did not properly initialize socket data. A local attacker could use this to cause a denial of service system crash. CVE-2023-1076 It was discovered that the Real-Time Scheduling Class implementation in the Linux kernel contained a type...

7.8CVSS6.7AI score0.01377EPSS
Exploits5References12
Ubuntu
Ubuntu
added 2023/07/06 7:0 p.m.65 views

USN-6207-1: Linux kernel (Intel IoTG) vulnerabilities

It was discovered that the TUN/TAP driver in the Linux kernel did not properly initialize socket data. A local attacker could use this to cause a denial of service system crash. CVE-2023-1076 It was discovered that the Real-Time Scheduling Class implementation in the Linux kernel contained a type...

7.8CVSS6.4AI score0.01377EPSS
Exploits4
OSV
OSV
added 2023/07/06 7:0 p.m.6 views

USN-6207-1 linux-intel-iotg vulnerabilities

It was discovered that the TUN/TAP driver in the Linux kernel did not properly initialize socket data. A local attacker could use this to cause a denial of service system crash. CVE-2023-1076 It was discovered that the Real-Time Scheduling Class implementation in the Linux kernel contained a type...

7.8CVSS6.6AI score0.01377EPSS
Exploits4References9
Ubuntu
Ubuntu
added 2023/06/22 12:41 p.m.65 views

USN-6185-1: Linux kernel vulnerabilities

It was discovered that the TUN/TAP driver in the Linux kernel did not properly initialize socket data. A local attacker could use this to cause a denial of service system crash. CVE-2023-1076 It was discovered that the Real-Time Scheduling Class implementation in the Linux kernel contained a type...

7.8CVSS6.4AI score0.01377EPSS
Exploits4
OSV
OSV
added 2023/06/22 12:41 p.m.6 views

USN-6185-1 linux-aws, linux-azure, linux-bluefield, linux-gcp, linux-gke, linux-gkeop, linux-ibm, linux-kvm, linux-oracle, linux-raspi vulnerabilities

It was discovered that the TUN/TAP driver in the Linux kernel did not properly initialize socket data. A local attacker could use this to cause a denial of service system crash. CVE-2023-1076 It was discovered that the Real-Time Scheduling Class implementation in the Linux kernel contained a type...

7.8CVSS6.6AI score0.01377EPSS
Exploits4References9
OpenVAS
OpenVAS
added 2023/06/19 12:0 a.m.24 views

Ubuntu: Security Advisory (USN-6171-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.1AI score0.01377EPSS
Exploits4References2
Ubuntu
Ubuntu
added 2023/06/16 4:19 p.m.64 views

USN-6171-1: Linux kernel vulnerabilities

William Zhao discovered that the Traffic Control TC subsystem in the Linux kernel did not properly handle network packet retransmission in certain situations. A local attacker could use this to cause a denial of service kernel deadlock. CVE-2022-4269 It was discovered that the TUN/TAP driver in t...

7.8CVSS6.4AI score0.01377EPSS
Exploits4
Ubuntu
Ubuntu
added 2023/04/19 6:8 p.m.94 views

USN-6033-1: Linux kernel (OEM) vulnerabilities

It was discovered that the Traffic-Control Index TCINDEX implementation in the Linux kernel did not properly perform filter deactivation in some situations. A local attacker could possibly use this to gain elevated privileges. Please note that with the fix for this CVE, kernel support for the...

7.8CVSS6.8AI score0.01377EPSS
Exploits5
Veracode
Veracode
added 2023/03/06 7:26 p.m.16 views

Out-of-bounds Write

chromium is vulnerable to Out of Bounds Write. The flaw allows a local user to crash or potentially escalate their privileges on the system. The vulnerability exists in bigbenprobe of drivers/hid/hid-bigbenff.c due to incorrect assumption - bigben devices all have inputs...

7.8CVSS7.4AI score0.00242EPSS
Exploits0References4Affected Software1
RedhatCVE
RedhatCVE
added 2023/02/23 3:29 p.m.53 views

CVE-2023-25012

A use-after-free flaw was found in the Linux kernel. This issue may be triggered in the bigbensetled function when plugging in a malicious USB device that advertises itself as a bigben device. This flaw allows a local user with physical access to cause a denial of service...

4.6CVSS5.5AI score0.00813EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2023/02/15 3:21 a.m.2 views

SUSE CVE-2023-25012

The Linux kernel through 6.1.9 has a Use-After-Free in bigbenremove in drivers/hid/hid-bigbenff.c via a crafted USB device because the LED controllers remain registered for too long...

6.8CVSS6.9AI score0.00813EPSS
Exploits1References24
Microsoft CVE
Microsoft CVE
added 2023/02/11 8:0 a.m.3 views

The Linux kernel through 6.1.9 has a Use-After-Free in bigben_remove in drivers/hid/hid-bigbenff.c via a crafted USB device because the LED controllers remain registered for too long.

...

4.6CVSS6.6AI score0.00813EPSS
Exploits1
OSV
OSV
added 2023/02/02 12:15 a.m.4 views

AZL-13291 CVE-2023-25012 affecting package kernel for versions less than 5.15.107.1-2

The Linux kernel through 6.1.9 has a Use-After-Free in bigbenremove in drivers/hid/hid-bigbenff.c via a crafted USB device because the LED controllers remain registered for too long...

4.6CVSS6.7AI score0.00813EPSS
Exploits1References1
OSV
OSV
added 2023/02/02 12:15 a.m.0 views

DEBIAN-CVE-2023-25012

The Linux kernel through 6.1.9 has a Use-After-Free in bigbenremove in drivers/hid/hid-bigbenff.c via a crafted USB device because the LED controllers remain registered for too long...

4.6CVSS6.2AI score0.00813EPSS
Exploits1References1
OSV
OSV
added 2023/02/02 12:15 a.m.1 views

UBUNTU-CVE-2023-25012

The Linux kernel through 6.1.9 has a Use-After-Free in bigbenremove in drivers/hid/hid-bigbenff.c via a crafted USB device because the LED controllers remain registered for too long...

4.6CVSS6.7AI score0.00813EPSS
Exploits1References13
Openbugbounty
Openbugbounty
added 2023/01/25 9:39 a.m.11 views

bigben-interactive.de Cross Site Scripting vulnerability OBB-3168092

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Rows per page
Query Builder