Lucene search
K

3830 matches found

EUVD
EUVD
added 2026/07/07 8:36 a.m.8 views

EUVD-2026-42021

EEPROM firmware on Raspberry Pi 5 and Compute Module 5 devices produced non-random KASLR and RNG seed values. This resulted in consistent kernel addresses across boots and devices, potentially making it easier to exploit other vulnerabilities. Additionally, the low-quality RNG seed may affect the...

5.1CVSS5.9AI score0.00114EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/07/07 8:36 a.m.7 views

CVE-2026-13199

EEPROM firmware on Raspberry Pi 5 and Compute Module 5 devices produced non-random KASLR and RNG seed values. This resulted in consistent kernel addresses across boots and devices, potentially making it easier to exploit other vulnerabilities. Additionally, the low-quality RNG seed may affect the...

5.1CVSS5.9AI score0.00114EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/07/07 8:36 a.m.36 views

CVE-2026-13199 Insufficient Entropy in Raspberry Pi 5 and Compute Module 5

EEPROM firmware on Raspberry Pi 5 and Compute Module 5 devices produced non-random KASLR and RNG seed values. This resulted in consistent kernel addresses across boots and devices, potentially making it easier to exploit other vulnerabilities. Additionally, the low-quality RNG seed may affect the...

5.1CVSS0.00114EPSS
Exploits0References2
CVE
CVE
added 2026/07/07 8:36 a.m.16 views

CVE-2026-13199

CVE-2026-13199 affects Raspberry Pi 5 and Compute Module 5 EEPROM firmware. The issue is that the EEPROM produced non-random KASLR and RNG seed values, resulting in consistent kernel addresses across boots and devices. This may lower entropy and potentially ease exploitation of other vulnerabilit...

5.1CVSS5.9AI score0.00114EPSS
Exploits0References2
CVE
CVE
added 2026/07/06 8:9 p.m.11 views

CVE-2026-21379

CVE-2026-21379 describes a memory corruption (buffer over-read) issue in Windows Compute caused by allocating memory with sizes that exceed the maximum allowed value. The CVSS 3.1 metrics indicate a high impact on confidentiality, integrity, and availability (C:H, I:H, A:H) with a local attack ve...

7.8CVSS6AI score0.0007EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/07/06 8:9 p.m.36 views

CVE-2026-21379 Buffer Over-read in Windows Compute

Memory Corruption when allocating memory with sizes that exceed the maximum allowed value...

7.8CVSS0.0007EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2026/07/02 3:24 p.m.8 views

ThreatsDay: AI Compute Hijacking, Apple Email Flaw, BlueHammer Ransomware + 14 Stories

This week’s security news is mostly about weak spots. Browsers, bots, sandboxes, AI systems, and email flows all show the same problem in different ways. Everything looks normal until someone tests a small gap and finds a way through. This is not one big break. It is small permissions, weak check...

7.8CVSS7.8AI score0.06749EPSS
Exploits3
OSV
OSV
added 2026/07/02 2:13 p.m.5 views

PYSEC-2026-656 OpenStack Keystone and other components vulnerable to Improper Certificate Validation

HTTPSConnections in OpenStack Keystone 2013, OpenStack Compute 2013.1, and possibly other OpenStack components, fail to validate server-side SSL certificates...

5.9CVSS5.9AI score0.00962EPSS
Exploits1References14
RedHat Linux
RedHat Linux
added 2026/07/02 5:23 a.m.9 views

Important: Red Hat Security Advisory: Red Hat AI Base Images 3.2.2 (ROCm 7.0)

Red Hat AI Base Images 3.2.2 ROCm 7.0 is now available. Red Hat® AI Base Images...

8CVSS5.8AI score0.0032EPSS
Exploits0References3
EUVD
EUVD
added 2026/07/01 12:34 a.m.11 views

EUVD-2026-40447

ImageMagick before 7.1.2-13 contains a memory leak vulnerability in LoadOpenCLDeviceBenchmark function when parsing malformed OpenCL device profile XML files with unclosed device elements. Attackers with write access to the OpenCL cache directory can place malicious XML files to exhaust memory an...

1.9CVSS5.8AI score0.00123EPSS
Exploits1References4
EUVD
EUVD
added 2026/07/01 12:34 a.m.8 views

EUVD-2026-40621

Side-channel information leakage in ComputePressure in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

5.8AI score0.00299EPSS
Exploits0References3
OSV
OSV
added 2026/06/30 11:17 p.m.3 views

DEBIAN-CVE-2026-13935

Side-channel information leakage in ComputePressure in Google Chrome prior to 150.0.7871.47 allowed a remote attacker to leak cross-origin data via a crafted HTML page. Chromium security severity: Medium...

6.5CVSS5.8AI score0.00299EPSS
Exploits0References1
CVE
CVE
added 2026/06/30 10:38 p.m.17 views

CVE-2026-13935

Summary: CVE-2026-13935 affects Google Chrome/Chromium ComputePressure. A side-channel information leakage allowed a remote attacker to exfiltrate cross-origin data via a crafted HTML page. The description specifies the affected platform as Google Chrome (Chromium) and notes the issue exists prio...

6.5CVSS5.8AI score0.00299EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2026/06/26 9:48 a.m.6 views

CVE-2026-53139

A flaw was found in the Linux kernel's graphics driver for Broadcom V3D VideoCore V GPUs. This vulnerability occurs when a compute shader dispatch CSD is initiated with zero workgroup counts, which the hardware could misinterpret as a very large number. This misinterpretation could lead to...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2026/06/26 2:12 a.m.7 views

SUSE CVE-2026-53140

In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Fix vaddr leak when indirect CSD has zeroed workgroups v3drewritecsdjobwgcountsfromindirect maps both the indirect buffer and the workgroup buffer and is expected to release them before returning. When any of the workgro...

5.9AI score0.00122EPSS
Exploits0References3
NVD
NVD
added 2026/06/25 9:16 a.m.7 views

CVE-2026-53139

In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Skip CSD when it has zeroed workgroups A compute shader dispatch encodes its workgroup counts in the CFG0..CFG2 registers. Kicking off a dispatch with a zero count in any of the three dimensions is invalid. First, the...

5.5CVSS0.00122EPSS
Exploits0References7
OSV
OSV
added 2026/06/25 9:16 a.m.3 views

UBUNTU-CVE-2026-53139

In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Skip CSD when it has zeroed workgroups A compute shader dispatch encodes its workgroup counts in the CFG0..CFG2 registers. Kicking off a dispatch with a zero count in any of the three dimensions is invalid. First, the...

6.8CVSS5.8AI score0.00122EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2026/06/25 8:39 a.m.5 views

CVE-2026-53222

In the Linux kernel, the following vulnerability has been resolved: ptp: ocp: fix resource freeing order Commit a60fc3294a37 "ptp: rework ptpclockunregister to disable events" added a call to ptpdisableallevents which changes the configuration of pins if they support EXTTS events. In ptpocpdetach...

5.5CVSS5.6AI score0.00107EPSS
Exploits0
EUVD
EUVD
added 2026/06/25 8:38 a.m.7 views

EUVD-2026-39231

In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Fix vaddr leak when indirect CSD has zeroed workgroups v3drewritecsdjobwgcountsfromindirect maps both the indirect buffer and the workgroup buffer and is expected to release them before returning. When any of the workgro...

6AI score0.00122EPSS
Exploits0References4
CVE
CVE
added 2026/06/25 8:38 a.m.13 views

CVE-2026-53140

The CVE-2026-53140 issue pertains to the Linux kernel drm/v3d driver. A fault in v3d_rewrite_csd_job_wg_counts_from_indirect() maps both the indirect buffer and the workgroup buffer and, if any workgroup count read from the buffer is zero, the cleanup is skipped on an early exit, leaking the virt...

5.5CVSS6AI score0.00122EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder