5 matches found
EUVD-2025-13245
Malicious code in bioql PyPI...
CVE-2025-48818
CVE-2025-48818 is a TOCTOU race condition in Windows BitLocker that enables bypass of a security feature via physical access. The CVE is listed in NCSC/NCSC-2025-0213 with impact described as bypassing security measures under Windows BitLocker and a CVSS v3.1 base score of 6.8 (PHYSICAL vector, L...
CVE-2025-37797
CVE-2025-37797 affects the Linux kernel HFSC qdisc. A Use-After-Free can occur in hfsc_change_class() when handling certain child qdiscs (e.g., netem, codel) due to a time-of-check/time-of-use race: hfsc_change_class() may add a class to vttree after qdisc_peek_len() potentially clears the queue....
CVE-2024-53134
In the Linux kernel, the following vulnerability has been resolved: pmdomain: imx93-blk-ctrl: correct remove path The check condition should be 'i onecelldata.numdomains', not 'bc-onecelldata.numdomains' which will make the look never finish and cause kernel panic. Also disable runtime to address...
CVE-2024-1729
The CVE-2024-1729 entry concerns a timing-attack vulnerability in gradio-app/gradio, specifically in the login workflow (routes.py) where credentials are validated with a direct comparison (app.auth[username] == password). This timing discrepancy can allow an attacker to guess valid credentials b...