Lucene search
K

710 matches found

NVD
NVD
added 2026/03/25 11:16 a.m.2 views

CVE-2026-23349

In the Linux kernel, the following vulnerability has been resolved: HID: pidff: Fix condition effect bit clearing As reported by MPDarkGuy on discord, NULL pointer dereferences were happening because not all the conditional effects bits were cleared. Properly clear all conditional effect bits fro...

5.5CVSS0.00121EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/03/25 10:27 a.m.2 views

CVE-2026-23355

In the Linux kernel, the following vulnerability has been resolved: ata: libata: cancel pending work after clearing deferredqc Syzbot reported a WARNON in atascsideferredqcwork, caused by ap-ops-qcdefer returning non-zero before issuing the deferred qc. atascsischeduledeferredqc is called during...

5.5CVSS5.4AI score0.00122EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/03/25 10:27 a.m.1 views

CVE-2026-23349

In the Linux kernel, the following vulnerability has been resolved: HID: pidff: Fix condition effect bit clearing As reported by MPDarkGuy on discord, NULL pointer dereferences were happening because not all the conditional effects bits were cleared. Properly clear all conditional effect bits fro...

5.6AI score0.00121EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2026/03/25 10:27 a.m.6 views

CVE-2026-23349 HID: pidff: Fix condition effect bit clearing

In the Linux kernel, the following vulnerability has been resolved: HID: pidff: Fix condition effect bit clearing As reported by MPDarkGuy on discord, NULL pointer dereferences were happening because not all the conditional effects bits were cleared. Properly clear all conditional effect bits fro...

5.5CVSS5.7AI score0.00121EPSS
Exploits0References6
CVE
CVE
added 2026/03/25 10:27 a.m.14 views

CVE-2026-23349

CVE-2026-23349 concerns the Linux kernel HID subsystem, specifically the pidff module. The issue arises from not clearing all conditional effect bits, which can lead to NULL pointer dereferences and potential system instability. The root cause is improper handling of the ffbit flag where some con...

5.5CVSS5.6AI score0.00121EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/03/25 10:27 a.m.20 views

CVE-2026-23349 HID: pidff: Fix condition effect bit clearing

In the Linux kernel, the following vulnerability has been resolved: HID: pidff: Fix condition effect bit clearing As reported by MPDarkGuy on discord, NULL pointer dereferences were happening because not all the conditional effects bits were cleared. Properly clear all conditional effect bits fro...

0.00121EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/03/25 10:27 a.m.2 views

CVE-2026-23349

In the Linux kernel, the following vulnerability has been resolved: HID: pidff: Fix condition effect bit clearing As reported by MPDarkGuy on discord, NULL pointer dereferences were happening because not all the conditional effects bits were cleared. Properly clear all conditional effect bits fro...

5.5CVSS5.2AI score0.00121EPSS
Exploits0
CNNVD
CNNVD
added 2026/03/25 12:0 a.m.8 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the failure to cancel pending tasks after clearing deferredqc, potentially leading to the triggering of...

5.5CVSS6AI score0.00122EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/03/25 12:0 a.m.4 views

PT-2026-28117

IBM Concert 1.0.0 through 2.2.0 could allow an attacker to access sensitive information in memory due to the buffer not properly clearing resources...

6.2CVSS6AI score0.00174EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/18 12:0 a.m.9 views

Mura 安全漏洞

Mura is a content management system developed by Mura Corporation. Versions of Mura 10.1.10 and earlier contained security vulnerabilities. These vulnerabilities stemmed from the lack of CSRF token verification when clearing the trash bin, which could lead to permanent data loss...

8.1CVSS5.8AI score0.00124EPSS
Exploits0References2
Redos
Redos
added 2026/03/13 12:0 a.m.8 views

ROS-20260313-73-0022

A vulnerability in the raid1reshape function of the Linux operating system kernel is related to incorrect resource clearing or freeing. Exploitation of the vulnerability may allow an attacker to affect confidentiality, integrity and availability of protected information...

7.1CVSS7.3AI score0.00165EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2026/03/09 1:3 a.m.5 views

kernel: macvlan: fix possible UAF in macvlan_forward_source()

In the Linux kernel, the following vulnerability has been resolved: macvlan: fix possible UAF in macvlanforwardsource Add RCU protection on struct macvlansourceentry-vlan. Whenever macvlanhashdelsource is called, we must clear entry-vlan pointer before RCU grace period starts. This allows...

7.8CVSS5.7AI score0.00188EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/03/05 8:0 p.m.4 views

lz4-java: lz4-java: Information Disclosure via Insufficient Output Buffer Clearing

A flaw was found in lz4-java. This vulnerability allows disclosure of sensitive data via crafted compressed input due to insufficient clearing of the output buffer in Java-based decompressor implementations...

8.2CVSS5.9AI score0.00562EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/03/05 1:40 p.m.6 views

CVE-2026-3056

The Seraphinite Accelerator plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the seraphaccelapi AJAX action with fn=LogClear in all versions up to, and including, 2.28.14. This makes it possible for authenticated attackers, with...

4.3CVSS5.9AI score0.0025EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/03/05 12:0 a.m.3 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : patch (SUSE-SU-2026:0781-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2026:0781-1 advisory. - CVE-2021-45261: Clear range of pointers before they are used/freed bsc1194037. Tenable has extracted th...

5.5CVSS6AI score0.00705EPSS
Exploits1References4
Patchstack
Patchstack
added 2026/03/04 10:22 p.m.6 views

WordPress Seraphinite Accelerator plugin <= 2.28.14 - Missing Authorization to Authenticated (Subscriber+) Log Clearing vulnerability

Missing Authorization to Authenticated Subscriber+ Log Clearing vulnerability discovered by Nabil Irawan - Heroes Cyber Security in WordPress Plugin Seraphinite Accelerator versions = 2.28.14...

4.3CVSS5.9AI score0.0025EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2026/03/04 12:30 p.m.4 views

EUVD-2026-9394

The Seraphinite Accelerator plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the seraphaccelapi AJAX action with fn=LogClear in all versions up to, and including, 2.28.14. This makes it possible for authenticated attackers, with...

4.3CVSS5.9AI score0.0025EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/03/04 11:22 a.m.3 views

CVE-2026-3056 Seraphinite Accelerator <= 2.28.14 - Missing Authorization to Authenticated (Subscriber+) Log Clearing

The Seraphinite Accelerator plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the seraphaccelapi AJAX action with fn=LogClear in all versions up to, and including, 2.28.14. This makes it possible for authenticated attackers, with...

4.3CVSS5.9AI score0.0025EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/03/04 11:22 a.m.3 views

CVE-2026-3056

The Seraphinite Accelerator plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the seraphaccelapi AJAX action with fn=LogClear in all versions up to, and including, 2.28.14. This makes it possible for authenticated attackers, with...

4.3CVSS5.9AI score0.0025EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/03/04 12:0 a.m.8 views

PT-2026-22901

The Seraphinite Accelerator plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the seraph accel api AJAX action with fn=LogClear in all versions up to, and including, 2.28.14. This makes it possible for authenticated attackers, with...

4.3CVSS5.9AI score0.0025EPSS
Exploits0References5
Rows per page
Query Builder