Lucene search
K

12 matches found

CVE
CVE
added 2026/06/24 4:30 p.m.16 views

CVE-2026-53071

CVE-2026-53071 concerns the Linux kernel Bluetooth L2CAP implementation. The flaw arises when l2cap_ecred_reconf_rsp() deletes a channel without holding l2cap_chan_lock(), unlike other callers which acquire the lock first. This can allow a remote BLE device to corrupt the channel list while anoth...

8.8CVSS5.8AI score0.00266EPSS
Exploits0References11
EUVD
EUVD
added 2025/10/03 8:7 p.m.21 views

EUVD-2023-24067

Malicious code in bioql PyPI...

6.5CVSS7.2AI score0.00705EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-1440

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00551EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/08/09 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2022-49909

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: fix use-after-free in l2capconndel When l2caprecvframe is invoked to recei...

7.3AI score0.00024EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 2:34 a.m.9 views

CVE-2023-1865

The YourChannel plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check when resetting plugin settings via the yrcnuke GET parameter in versions up to, and including, 1.2.3. This makes it possible for unauthenticated attackers to delete YouTube channels...

6.5CVSS6.7AI score0.00705EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2024/12/04 12:51 a.m.3 views

kernel: Bluetooth: l2cap: fix null-ptr-deref in l2cap_chan_timeout

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: l2cap: fix null-ptr-deref in l2capchantimeout There is a race condition between l2capchantimeout and l2capchandel. When we use l2capchandel to delete the channel, the chan-conn will be set to null. But the conn could b...

5.5CVSS6.8AI score0.00301EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2024/12/04 12:19 a.m.2 views

kernel: Bluetooth: l2cap: fix null-ptr-deref in l2cap_chan_timeout

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: l2cap: fix null-ptr-deref in l2capchantimeout There is a race condition between l2capchantimeout and l2capchandel. When we use l2capchandel to delete the channel, the chan-conn will be set to null. But the conn could b...

5.5CVSS6.8AI score0.00301EPSS
Exploits0References5
OSV
OSV
added 2024/05/14 3:12 p.m.2 views

DEBIAN-CVE-2024-27399

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: l2cap: fix null-ptr-deref in l2capchantimeout There is a race condition between l2capchantimeout and l2capchandel. When we use l2capchandel to delete the channel, the chan-conn will be set to null. But the conn could b...

5.5CVSS5.6AI score0.00301EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2024/05/14 3:32 a.m.3 views

SUSE CVE-2024-27399

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: l2cap: fix null-ptr-deref in l2capchantimeout There is a race condition between l2capchantimeout and l2capchandel. When we use l2capchandel to delete the channel, the chan-conn will be set to null. But the conn could b...

5.5CVSS6.1AI score0.00301EPSS
Exploits0References20
Positive Technologies
Positive Technologies
added 2023/04/05 12:0 a.m.7 views

PT-2023-17294 · WordPress · Yourchannel

Name of the Vulnerable Software and Affected Versions: YourChannel plugin for WordPress versions up to, and including, 1.2.3 Description: The issue is related to a missing capability check when resetting plugin settings via the yrc nuke GET parameter. This allows unauthenticated attackers to dele...

6.5CVSS6.8AI score0.00705EPSS
Exploits0References7
OSV
OSV
added 2019/10/02 12:50 p.m.8 views

SUSE-SU-2019:2521-1 Security update for SUSE Manager Server 3.2

This update fixes the following issues: cobbler: - Jinja2 template library fix bsc1141661 pgjdbc-ng: - Allow dots in database name bsc1146416 py26-compat-salt: - Get tornado dependency from the system on SLE12 bsc1149409 - Catch SSLError for TLS 1.2 bootstraps with RES/RHEL6 and SLE11 bsc1147126...

8.8CVSS7.3AI score0.0484EPSS
Exploits0References28
Prion
Prion
added 2014/04/25 2:15 p.m.15 views

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities in OpenX 2.8.11 and earlier allow remote attackers to hijack the authentication of administrators for requests that delete 1 users via admin/agency-user-unlink.php, 2 advertisers via admin/advertiser-delete.php, 3 banners via...

6.8CVSS7.8AI score0.03099EPSS
Exploits2References7Affected Software2
Rows per page
Query Builder