Lucene search
K

84 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.32 views

Linux Distros Unpatched Vulnerability : CVE-2025-21673

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - smb: client: fix double free of TCPServerInfo::hostname When shutting down the server in cifsputtcpsession, cifsd thread might be reconnecting to multiple DFS...

5.5CVSS6.8AI score0.002EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2024-36022

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Init zone device and drm client after mode-1 reset on reload In passthrough...

6.2AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2023-52803

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - SUNRPC: Fix RPC client cleaned up the freed pipefs dentries RPC client pipefs dentries cleanup is in separated rpcremovepipedir workqueue,which takes care about...

5.5CVSS6.6AI score0.00236EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2022-49321

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xprtrdma: treat all calls not a bcall when bcserv is NULL When a rdma server returns a fault format reply, nfs v3 client may treats it as a bcall when bc servic...

5.5CVSS6.7AI score0.00272EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.18 views

Linux Distros Unpatched Vulnerability : CVE-2021-37533

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Prior to Apache Commons Net 3.9.0, Net's FTP client trusts the host from PASV response by default. A malicious server can redirect the Commons Net code to use a...

6.5CVSS6.4AI score0.01858EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2024-24783

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Verifying a certificate chain which contains a certificate with an unknown public key algorithm will cause Certificate.Verify to panic. This affects all...

5.9CVSS7.2AI score0.00667EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.15 views

Linux Distros Unpatched Vulnerability : CVE-2024-46796

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: smb: client: fix double put of @cfile in smb2setpathsize If smb2compoundop is called with a...

7.8CVSS5.9AI score0.00208EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2024-30260

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Undici is an HTTP/1.1 client, written from scratch for Node.js. Undici cleared Authorization and Proxy- Authorization headers for fetch, but did not clear them...

4.3CVSS6.3AI score0.00734EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.5 views

Azure Linux 3.0 Security Update: kernel (CVE-2024-49871)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-49871 advisory. - In the Linux kernel, the following vulnerability has been resolved: Input: adp5589-keys - fix NULL pointer...

5.5CVSS6.1AI score0.00235EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/06 2:6 a.m.19 views

CVE-2022-25732

Information disclosure in modem due to buffer over read in dns client due to missing length check...

8.2CVSS6.8AI score0.00375EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/29 5:40 p.m.16 views

CVE-2025-24882 regclient may ignore pinned manifest digests

regclient is a Docker and OCI Registry Client in Go. A malicious registry could return a different digest for a pinned manifest without detection. This vulnerability is fixed in 0.7.1...

5.2CVSS5.1AI score0.00172EPSS
Exploits0References2
OSV
OSV
added 2025/01/14 10:3 p.m.6 views

GHSA-53RV-HCVM-RPP9 Lodestar snappy decompression issue

Impact Unintended permanent chain split affecting greater than or equal to 25% of the network, requiring hard fork network partition requiring hard fork Description Lodestar client may fail to decode snappy framing compressed messages. Vulnerability Details In Req/Resp protocol the message are...

7AI score
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/01/14 12:0 a.m.7 views

PT-2025-4354

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to a double free of TCP Server Info::hostname in the Linux kernel's smb client. When shutting down the server in cifs put tcp session, the cifsd thread might be...

5.5CVSS6.6AI score0.002EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/11/25 12:0 a.m.12 views

EulerOS 2.0 SP12 : golang (EulerOS-SA-2024-2921)

According to the versions of the golang packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : The net/http HTTP/1.1 client mishandled the case where a server responds to a request with an 'Expect: 100-continue' header with a non-information...

7.5CVSS7.4AI score0.01414EPSS
Exploits0References2
OSV
OSV
added 2024/11/13 6:48 p.m.19 views

MGASA-2024-0364 Updated java-1.8.0-openjdk, java-11-openjdk, java-17-openjdk, java-21-openjdk & java-latest-openjdk packages fix security vulnerabilities

giflib: Heap-Buffer Overflow during Image Saving in DumpScreen2RGB Function. CVE-2023-48161 Array indexing integer overflow. CVE-2024-21210 HTTP client improper handling of maxHeaderSize. CVE-2024-21208 Unbounded allocation leads to out-of-memory error. CVE-2024-21217 Integer conversion error lea...

7.1CVSS5.3AI score0.01157EPSS
Exploits1References6
SUSE Linux
SUSE Linux
added 2024/10/30 6:33 p.m.16 views

Security update for the Linux Kernel RT (Live Patch 10 for SLE 15 SP5)

This update for the Linux Kernel 5.14.21-1505001335 fixes several issues. The following security issues were fixed: CVE-2024-35905: Fixed int overflow for stack access size bsc1226327. CVE-2021-47598: schcake: do not call cakedestroy from cakeinit bsc1227471. CVE-2024-35863: Fixed potential UAF i...

7.8CVSS8.6AI score0.0094EPSS
Exploits1References120
Tenable Nessus
Tenable Nessus
added 2024/10/27 12:0 a.m.12 views

EulerOS Virtualization 2.12.1 : glib2 (EulerOS-SA-2024-2750)

According to the versions of the glib2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : An issue was discovered in GNOME GLib before 2.78.5, and 2.79.x and 2.80.x before 2.80.1. When a GDBus- based client subscribes to...

5.2CVSS6.4AI score0.00756EPSS
Exploits1References2
Citrix
Citrix
added 2024/07/13 12:0 a.m.9 views

Applications in StoreFront Fail to Enumerate

When using Citrix Receiver running in Mac 11 to log on to StoreFront, the applications fail to enumerate. An internal server error occurs in the client device. The following is the log trace of the issue in StoreFront server: Log Name: Citrix Delivery ServicesSource: WebApplicationDate: 06/02/201...

7AI score
Exploits0
OSV
OSV
added 2024/05/30 12:14 p.m.6 views

SUSE-SU-2024:1859-1 Security update for java-1_8_0-ibm

This update for java-180-ibm fixes the following issues: Update to Java 8.0 Service Refresh 8 Fix Pack 25 bsc1223470: - CVE-2023-38264: Fixed Object Request Broker ORB denial of service bsc1224164. - CVE-2024-21094: Fixed C2 compilation fails with 'Exceeded noderegs array' bsc1222986. -...

7.5CVSS6.1AI score0.01361EPSS
Exploits0References14
Circl
Circl
added 2024/02/05 7:21 p.m.7 views

CVE-2024-24267

creationtimestamp| type| source ---|---|--- 2024-02-05 19:21:58+00:00| seen| https://t.me/ctinow/179441 2024-02-08 03:16:20+00:00| seen| https://t.me/ctinow/181123 2024-02-29 11:26:59+00:00| seen| https://t.me/ctinow/196519 2025-06-20 20:44:23+00:00| published-proof-of-concept|...

7.5CVSS7.3AI score0.01635EPSS
Exploits1References4
Rows per page
Query Builder