Lucene search
+L

82 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-2348

Malware in sbrugna...

7.8CVSS7.8AI score0.00189EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-3658

Malware in sbrugna...

7.8CVSS6.9AI score0.00184EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-3341

Malware in sbrugna...

7.8CVSS7.7AI score0.00187EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.3 views

Unity Linux 20.1050a / 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-387783)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-387783 advisory. In the Linux kernel, the following vulnerability has been resolved: netrom: check buffer length before accessing it Syzkaller reports an uninit value read from ax25c...

5.5CVSS6.4AI score0.00222EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-53759

Malicious code in bioql PyPI...

5.5CVSS7.3AI score0.00222EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2025/09/04 11:24 p.m.6 views

SUSE CVE-2025-38680

In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Fix 1-byte out-of-bounds read in uvcparseformat The buffer length check before calling uvcparseformat only ensured that the buffer has at least 3 bytes buflen 2, buf the function accesses buffer3, requiring at...

5.5CVSS6.7AI score0.00164EPSS
Exploits0References22
OSV
OSV
added 2025/09/04 4:15 p.m.3 views

UBUNTU-CVE-2025-38680

In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Fix 1-byte out-of-bounds read in uvcparseformat The buffer length check before calling uvcparseformat only ensured that the buffer has at least 3 bytes buflen 2, buf the function accesses buffer3, requiring at...

7.1CVSS6.6AI score0.00164EPSS
Exploits0References37
CVE
CVE
added 2025/09/04 3:32 p.m.33 views

CVE-2025-38680

The CVE CVE-2025-38680 affects the Linux kernel media: uvcvideo component, where a 1-byte out-of-bounds read can occur in uvc_parse_format(). The root cause is a buffer length check that only guaranteed buf > 2, while the code accesses buffer[3], requiring at least 4 bytes. The vulnerability’s...

7.1CVSS6AI score0.00164EPSS
Exploits0References12Affected Software1
Cvelist
Cvelist
added 2025/09/04 3:32 p.m.15 views

CVE-2025-38680 media: uvcvideo: Fix 1-byte out-of-bounds read in uvc_parse_format()

In the Linux kernel, the following vulnerability has been resolved: media: uvcvideo: Fix 1-byte out-of-bounds read in uvcparseformat The buffer length check before calling uvcparseformat only ensured that the buffer has at least 3 bytes buflen 2, buf the function accesses buffer3, requiring at...

0.00164EPSS
Exploits0References9
OSV
OSV
added 2025/08/16 2:15 p.m.3 views

DEBIAN-CVE-2023-4130

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix wrong next length validation of ea buffer in smb2setea There are multiple smb2eainfo buffers in FILEFULLEAINFORMATION request from client. ksmbd find next smb2eainfo using -NextEntryOffset of current smb2eainfo. ksmbd...

5.5CVSS5.5AI score0.00232EPSS
Exploits1References1
OSV
OSV
added 2025/08/16 2:15 p.m.5 views

UBUNTU-CVE-2023-4130

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix wrong next length validation of ea buffer in smb2setea There are multiple smb2eainfo buffers in FILEFULLEAINFORMATION request from client. ksmbd find next smb2eainfo using -NextEntryOffset of current smb2eainfo. ksmbd...

5.5CVSS5.8AI score0.00232EPSS
Exploits1References7
CVE
CVE
added 2025/08/16 1:27 p.m.68 views

CVE-2023-4130

CVE-2023-4130 : In the Linux kernel’s ksmbd SMB2 handling, there is a vulnerability due to wrong next length validation of the ea buffer in smb2_set_ea(). When multiple smb2_ea_info buffers are in FILE_FULL_EA_INFORMATION, ksmbd iterates using NextEntryOffset and validates only with that offset i...

5.5CVSS7.3AI score0.00232EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2025/08/16 1:27 p.m.14 views

CVE-2023-4130 ksmbd: fix wrong next length validation of ea buffer in smb2_set_ea()

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix wrong next length validation of ea buffer in smb2setea There are multiple smb2eainfo buffers in FILEFULLEAINFORMATION request from client. ksmbd find next smb2eainfo using -NextEntryOffset of current smb2eainfo. ksmbd...

0.00232EPSS
Exploits1References4
Debian CVE
Debian CVE
added 2025/07/25 1:20 p.m.8 views

CVE-2025-38413

In the Linux kernel, the following vulnerability has been resolved: virtio-net: xsk: rx: fix the frame's length check When calling buftoxdp, the len argument is the frame data's length without virtio header's length vi-hdrlen. We check that len with xskpoolgetrxframesize + vi-hdrlen to ensure the...

5.5CVSS5.5AI score0.00154EPSS
Exploits0
CVE
CVE
added 2025/07/25 12:53 p.m.88 views

CVE-2025-38375

CVE-2025-38375: In the Linux kernel, virtio-net could trigger an out-of-bounds read due to not validating the received length against the allocated size when reading buffers from the ring in xdp_linearize_page. The fix adds the missing length check. Affected entries in Debian/Amazon/RH advisories...

7.8CVSS6.3AI score0.0017EPSS
Exploits0References10Affected Software1
OSV
OSV
added 2025/07/09 11:15 a.m.10 views

UBUNTU-CVE-2025-38249

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Fix out-of-bounds read in sndusbgetaudioformatuac3 In sndusbgetaudioformatuac3, the length value returned from sndusbctlmsg is used directly for memory allocation without validation. This length is controlled by...

7.1CVSS6.3AI score0.00153EPSS
Exploits0References40
Amazon
Amazon
added 2025/06/10 12:0 a.m.6 views

Medium: libcublas-12-9

Issue Overview: NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the cuobjdump binary, where a failure to check the length of a buffer could allow a user to cause the tool to crash or execute arbitrary code by passing in a malformed ELF file. A successful exploit of this...

7.8CVSS8AI score0.00261EPSS
Exploits1
Amazon
Amazon
added 2025/06/10 12:0 a.m.6 views

Medium: cuda-toolkit-12

Issue Overview: NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the cuobjdump binary, where a failure to check the length of a buffer could allow a user to cause the tool to crash or execute arbitrary code by passing in a malformed ELF file. A successful exploit of this...

7.8CVSS8AI score0.00261EPSS
Exploits1
Amazon
Amazon
added 2025/06/10 12:0 a.m.4 views

Medium: cuda-nsight-12-9

Issue Overview: NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the cuobjdump binary, where a failure to check the length of a buffer could allow a user to cause the tool to crash or execute arbitrary code by passing in a malformed ELF file. A successful exploit of this...

7.8CVSS8AI score0.00261EPSS
Exploits1
Amazon
Amazon
added 2025/06/10 12:0 a.m.6 views

Medium: cuda-nvprune-12-9

Issue Overview: NVIDIA CUDA Toolkit for all platforms contains a vulnerability in the cuobjdump binary, where a failure to check the length of a buffer could allow a user to cause the tool to crash or execute arbitrary code by passing in a malformed ELF file. A successful exploit of this...

7.8CVSS8AI score0.00261EPSS
Exploits1
Rows per page
Query Builder