Lucene search
K

17 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: virtio-net: The recursive rtnllock function occurs during the probe operation. This deadlock appears in a stack trace like this: virtnetprobe rtnllock virtioconfigChangedWork netdevNotifyPeers rtnllock This occurs when the VMM...

5.5CVSS5.8AI score0.00106EPSS
Exploits0References2
CVE
CVE
added 2026/05/06 11:28 a.m.28 views

CVE-2026-43249

The CVE-2026-43249 entry describes a race in the Linux kernel 9p/xen frontend: xenwatch and backend change notifications can concurrently call xen_9pfs_front_free, causing a double-free and a general protection fault. The fixes guard the teardown path so only a single caller releases the front-en...

8.8CVSS5.8AI score0.00241EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2026/03/23 6:14 p.m.5 views

GO-2026-4757 free5GC UDM DataChangeNotification Procedure Panic Due to Nil Pointer Dereference in github.com/free5gc/udm

free5GC UDM DataChangeNotification Procedure Panic Due to Nil Pointer Dereference in github.com/free5gc/udm...

8.7CVSS5.8AI score0.00486EPSS
Exploits1References5
Snyk
Snyk
added 2026/03/23 6:14 p.m.2 views

Missing Default Case in Switch Statement

Overview Affected versions of this package are vulnerable to Missing Default Case in Switch Statement in the DataChangeNotification process due to a nil pointer dereference. An attacker can cause a panic and disrupt service availability by triggering this process with crafted input. Remediation...

8.7CVSS5.9AI score0.00486EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/03/20 8:0 a.m.22 views

CVE-2026-33064 free5GC UDM DataChangeNotification Procedure Panic Due to Nil Pointer Dereference

Free5GC is an open-source Linux Foundation project for 5th generation 5G mobile core networks. Versions prior to 1.4.2 are vulnerable to procedure panic caused by Nil Pointer Dereference in the /sdm-subscriptions endpoint. A remote attacker can cause the UDM service to panic and crash by sending ...

8.7CVSS0.00486EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/03/20 8:0 a.m.4 views

CVE-2026-33064 free5GC UDM DataChangeNotification Procedure Panic Due to Nil Pointer Dereference

Free5GC is an open-source Linux Foundation project for 5th generation 5G mobile core networks. Versions prior to 1.4.2 are vulnerable to procedure panic caused by Nil Pointer Dereference in the /sdm-subscriptions endpoint. A remote attacker can cause the UDM service to panic and crash by sending ...

8.7CVSS5.8AI score0.00486EPSS
Exploits1References4
OSV
OSV
added 2026/03/18 8:6 p.m.5 views

GHSA-7G27-V5WJ-JR75 free5GC UDM DataChangeNotification Procedure Panic Due to Nil Pointer Dereference

Impact This is a NULL Pointer Dereference vulnerability leading to Denial of Service. - Security Impact: A remote attacker can cause the UDM service to panic and crash by sending a crafted POST request to the /sdm-subscriptions endpoint with a malformed URL path containing path traversal sequence...

8.7CVSS5.8AI score0.00486EPSS
Exploits1References6
Github Security Blog
Github Security Blog
added 2026/03/18 8:6 p.m.5 views

free5GC UDM DataChangeNotification Procedure Panic Due to Nil Pointer Dereference

Impact This is a NULL Pointer Dereference vulnerability leading to Denial of Service. - Security Impact: A remote attacker can cause the UDM service to panic and crash by sending a crafted POST request to the /sdm-subscriptions endpoint with a malformed URL path containing path traversal sequence...

8.7CVSS5.8AI score0.00486EPSS
Exploits1References6Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/02 11:1 p.m.1 views

CVE-2025-6593 "{{SITENAME}} registered email address has been changed" email sent to unverified email addresses

Vulnerability in Wikimedia Foundation MediaWiki. This vulnerability is associated with program files includes/user/User.Php. This issue affects MediaWiki: from 1.27.0 before 1.39.13, 1.42.7 1.43.2, 1.44.0...

2.1CVSS5.3AI score0.00396EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/08/16 11:22 p.m.1 views

SUSE CVE-2025-38551

In the Linux kernel, the following vulnerability has been resolved: virtio-net: fix recursived rtnllock during probe The deadlock appears in a stack trace like: virtnetprobe rtnllock virtioconfigchangedwork netdevnotifypeers rtnllock It happens if the VMM sends a VIRTIONETSANNOUNCE request while...

5.5CVSS6.5AI score0.00106EPSS
Exploits0References7
NVD
NVD
added 2025/08/16 12:15 p.m.4 views

CVE-2025-38551

In the Linux kernel, the following vulnerability has been resolved: virtio-net: fix recursived rtnllock during probe The deadlock appears in a stack trace like: virtnetprobe rtnllock virtioconfigchangedwork netdevnotifypeers rtnllock It happens if the VMM sends a VIRTIONETSANNOUNCE request while...

5.5CVSS0.00106EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/08/16 11:34 a.m.8 views

CVE-2025-38551 virtio-net: fix recursived rtnl_lock() during probe()

In the Linux kernel, the following vulnerability has been resolved: virtio-net: fix recursived rtnllock during probe The deadlock appears in a stack trace like: virtnetprobe rtnllock virtioconfigchangedwork netdevnotifypeers rtnllock It happens if the VMM sends a VIRTIONETSANNOUNCE request while...

0.00106EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2025/08/16 11:34 a.m.5 views

CVE-2025-38551

In the Linux kernel, the following vulnerability has been resolved: virtio-net: fix recursived rtnllock during probe The deadlock appears in a stack trace like: virtnetprobe rtnllock virtioconfigchangedwork netdevnotifypeers rtnllock It happens if the VMM sends a VIRTIONETSANNOUNCE request while...

5.5CVSS5.3AI score0.00106EPSS
Exploits0
Penetration Testing Lab
Penetration Testing Lab
added 2020/02/10 9:19 a.m.54 views

Credential Access – Password Filter DLL

Microsoft has introduced password filters as a method for systems administrators to enforce password policies and change notification. Filters are used to validate new passwords… Continue reading - Credential Access - Password Filter DLL...

3.6AI score
Exploits0
Hacker One
Hacker One
added 2017/05/25 8:44 a.m.16 views

Cuvva: No Notification Sent When Email Is Changed.

We weren't sending notifications when a customer changed the email address on their account. This meant it was less likely the customer would notice if this happened maliciously. A simple best practise issue...

6.9AI score
Exploits0
securityvulns
securityvulns
added 2008/02/12 12:0 a.m.38 views

Microsoft Internet Information Services privilege escalation

Privilege escalation through file change notification. ASP files processing privilege escalation...

10CVSS2.5AI score0.57167EPSS
Exploits2References2
Symantec
Symantec
added 2008/02/12 12:0 a.m.138 views

Microsoft IIS File Change Notification Local Privilege Escalation Vulnerability

Description Microsoft Internet Information Service IIS is prone to a local privilege-escalation vulnerability that occurs when handling file change notifications. A local attacker can exploit this issue to execute arbitrary code with SYSTEM-level privileges. Successfully exploiting this issue wil...

1.4AI score
Exploits0References1Affected Software4
Rows per page
Query Builder