Lucene search
+L

12 matches found

cve
cve
added 2026/06/25 8:39 a.m.23 views

CVE-2026-53236

CVE-2026-53236 affects the Linux kernel where a patch restricts SO_ATTACH_FILTER (cBPF) usage on TCP sockets to CAP_NET_ADMIN, mitigating a potential side-channel leaking TCP sequence/ACK data. Debian/Ubuntu entries show patches across newer kernel builds (e.g., Linux 6.1 series with 6.1.176-1~de...

5.5CVSS5.8AI score0.00128EPSS
Exploits0References6Affected Software1
astralinux
astralinux
added 2026/06/23 11:48 a.m.2 views

Astra Linux – Vulnerability found in Linux 6.12, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: ptrace: The logic related to getdumpable has been made slightly more robust. The “dumpability” of a task essentially relates to the memory image of the task—the concept stems from whether the task can generate a core dump or not...

7.8CVSS6.3AI score0.0138EPSS
Exploits6References3
astralinux
astralinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 5.15

A use-after-free vulnerability in the netfilter component of the Linux kernel’s nftables module can be exploited to achieve local privilege escalation. A flaw in the error handling of bound chains causes a use-after-free in the abort path of NFTMSGNEWRULE. This vulnerability requires that...

7.8CVSS6.6AI score0.00259EPSS
Exploits0References2
osv
osv
added 2026/05/19 8:45 a.m.7 views

CLSA-2026-1779180310 kernel: Fix of CVE-2026-46333

ptrace: require CAPSYSPTRACE when task has no mm CVE-2026-46333...

7.8CVSS6AI score0.0138EPSS
Exploits6References1
ptsecurity
ptsecurity
added 2026/05/15 12:0 a.m.20 views

PT-2026-41298

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 7.0.8 Linux kernel versions prior to 6.18.31 Linux kernel versions prior to 6.12.89 Linux kernel versions prior to 6.6.139 Linux kernel versions prior to 6.1.173 Linux kernel versions prior to 5.15.207 Linux kern...

7.8CVSS6.4AI score0.0138EPSS
Exploits6
euvd
euvd
added 2025/10/29 6:45 a.m.7 views

EUVD-2023-60038

The WooCommerce plugin for WordPress is vulnerable to Sensitive Information Exposure in versions up to, and including, 7.8.2, due to improper CORS handling on the Store API's REST endpoints allowing direct external access from any origin. This can allow unauthenticated attackers to extract...

5.3CVSS5.4AI score0.00303EPSS
Exploits0References4
redhat
redhat
added 2025/08/06 8:1 a.m.10 views

kernel: net_sched: hfsc: Fix a UAF vulnerability in class with netem as child qdisc

A use-after-free vulnerability has been identified in the Linux kernel's HFSC Hierarchical Fair Service Curve queuing discipline when it is configured with NETEM Network Emulation as a child. This flaw can lead to a kernel panic or crash due to incorrect assumptions about the queue state...

7.8CVSS7.3AI score0.00164EPSS
Exploits0References5
redhat
redhat
added 2023/09/12 11:7 a.m.3 views

kernel: netfilter: nf_tables: fix chain binding transaction logic in the abort path of NFT_MSG_NEWRULE

A use-after-free vulnerability was found in the netfilter: nftables component in the Linux kernel due to a missing error handling in the abort path of NFTMSGNEWRULE. This flaw allows a local attacker with CAPNETADMIN access capability to cause a local privilege escalation problem...

7.8CVSS6.6AI score0.00259EPSS
Exploits0References5
mscve
mscve
added 2023/05/12 7:0 a.m.8 views

An issue was discovered in the Linux kernel before 6.1.11. In net/netrom/af_netrom.c there is a use-after-free because accept is also allowed for a successfully connected AF_NETROM socket. However in order for an attacker to exploit this the system must have netrom routing configured or the attacker must have the CAP_NET_ADMIN capability.

...

6.7CVSS6.9AI score0.0027EPSS
Exploits0
susecve
susecve
added 2023/02/15 5:42 a.m.6 views

SUSE CVE-2012-6538

The copytouserauth function in net/xfrm/xfrmuser.c in the Linux kernel before 3.6 uses an incorrect C library function for copying a string, which allows local users to obtain sensitive information from kernel heap memory by leveraging the CAPNETADMIN capability...

1.9CVSS6AI score0.00345EPSS
Exploits0References4
susecve
susecve
added 2023/02/15 3:37 a.m.11 views

SUSE CVE-2021-42008

The decodedata function in drivers/net/hamradio/6pack.c in the Linux kernel before 5.13.13 has a slab out-of-bounds write. Input from a process that has the CAPNETADMIN capability can lead to root access...

8.8CVSS6.5AI score0.01476EPSS
Exploits3References38
osv
osv
added 2022/09/23 11:15 a.m.7 views

AZL-34860 CVE-2022-2785 affecting package kernel for versions less than 6.6.35.1-4

There exists an arbitrary memory read within the Linux Kernel BPF - Constants provided to fill pointers in structs passed in to bpfsysbpf are not verified and can point anywhere, including memory not owned by BPF. An attacker with CAPBPF can arbitrarily read memory from anywhere on the system. We...

5.5CVSS6.2AI score0.00255EPSS
Exploits0References1
Rows per page
Query Builder