13809 matches found
EuskalHack Security Congress IX Call for Papers
EuskalHack Security Congress ninth edition is a new proposal from the EuskalHack Computer Security Association, with the aim to promote the community growth and the culture in the digital security field. As usual, in this new edition proximity to our public and technical quality will be our...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from incorrectly checking a pre-call function, which could lead to a null pointer dereference...
MiracleLinux 3 : krb5-1.6.1-17AXS3.1 (AXSA:2008-153:02)
The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2008-153:02 advisory. Kerberos V5 is a trusted-third-party network authentication system, which can improve your network's security by eliminating the insecure practice of...
Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001721)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001721 advisory. An out-of-bounds memory read flaw was found in the Linux kernel's BPF subsystem in how a user calls the bpftailcall function with a key larger than the maxentries of...
Linux Distros Unpatched Vulnerability : CVE-2025-71102
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: scs: fix a wrong parameter in scsmagic scsmagic needs a 'void ' variable, but a 'struct...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001083)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001083 advisory. Race condition in the queuedelete function in sound/core/seq/seqqueue.c in the Linux kernel before 4.4.1 allows local users to cause a denial of service use-after-fr...
openc3-api Vulnerable to Unauthenticated Remote Code Execution
Summary OpenC3 COSMOS contains a critical remote code execution vulnerability reachable through the JSON-RPC API. When a JSON-RPC request uses the string form of certain APIs, attacker-controlled parameter text is parsed into values using Stringconverttovalue. For array-like inputs, converttovalu...
CVE-2025-68271 Unauthenticated Remote Code Execution in openc3-api
OpenC3 COSMOS provides the functionality needed to send commands to and receive data from one or more embedded systems. From 5.0.0 to 6.10.1, OpenC3 COSMOS contains a critical remote code execution vulnerability reachable through the JSON-RPC API. When a JSON-RPC request uses the string form of...
CVE-2026-20832
Windows Remote Procedure Call Interface Definition Language IDL Elevation of Privilege Vulnerability...
CVE-2026-20832
Windows Remote Procedure Call Interface Definition Language IDL Elevation of Privilege Vulnerability...
CVE-2026-20821
Exposure of sensitive information to an unauthorized actor in Windows Remote Procedure Call allows an unauthorized attacker to disclose information locally...
CVE-2026-20821
Exposure of sensitive information to an unauthorized actor in Windows Remote Procedure Call allows an unauthorized attacker to disclose information locally...
CVE-2026-20832 Windows Remote Procedure Call Interface Definition Language (IDL) Elevation of Privilege Vulnerability
...
CVE-2026-20832 Windows Remote Procedure Call Interface Definition Language (IDL) Elevation of Privilege Vulnerability
...
CVE-2026-20832
CVE-2026-20832 is a Windows component vulnerability described as a Windows Remote Procedure Call Interface Definition Language (IDL) Elevation of Privilege. Connected documents confirm the flaw affects the Windows RPC IDL handling, enabling local privilege escalation with high impact. The vulnera...
CVE-2026-20821
CVE-2026-20821 is a Windows Remote Procedure Call information disclosure vulnerability that could allow a local attacker to obtain sensitive data. The available description confirms an information disclosure resulting from RPC handling, but the connected documents do not provide vendor-specific p...
CVE-2026-20821
Exposure of sensitive information to an unauthorized actor in Windows Remote Procedure Call allows an unauthorized attacker to disclose information locally...
CVE-2026-20821 Remote Procedure Call Information Disclosure Vulnerability
...
CVE-2026-20821 Remote Procedure Call Information Disclosure Vulnerability
...
CVE-2025-8090
Null pointer dereference in the MsgRegisterEvent system call could allow an attacker with local access and code execution abilities to crash the QNX Neutrino kernel...