Lucene search
K

20 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.7 views

Astra Linux – Vulnerability in Linux, Linux 5.10

The drivers/block/floppy.c file in the Linux kernel before version 5.17.6 is vulnerable to a denial-of-service attack due to a concurrency issue after deallocating rawcmd in the rawcmdioctl function...

3.3CVSS6.5AI score0.00545EPSS
Exploits1References2
OSV
OSV
added 2026/02/06 9:15 a.m.4 views

CVE-2026-24930

UAF concurrency vulnerability in the graphics module. Impact: Successful exploitation of this vulnerability may affect availability...

5.5CVSS5.8AI score0.00066EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/06 12:0 a.m.6 views

PT-2026-6704

Name of the Vulnerable Software and Affected Versions versions prior to 2026 affected versions not specified Description A use-after-free UAF concurrency vulnerability exists within the graphics module. Successful exploitation of this issue may impact system availability. Recommendations At the...

8.4CVSS5.4AI score0.00066EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/03 8:7 p.m.1 views

EUVD-2022-24938

Malicious code in bioql PyPI...

7.8CVSS6.9AI score0.00537EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-37015

Malicious code in bioql PyPI...

3.3CVSS6.8AI score0.00545EPSS
Exploits1References9
BDU FSTEC
BDU FSTEC
added 2024/08/19 12:0 a.m.8 views

The vulnerability of the Concurrency component of Oracle GraalVM Enterprise Edition and the Oracle Java SE software platform allows a hacker to trigger a service failure.

The vulnerability of the Concurrency component in Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK, and the Oracle Java SE software platform is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to cause service failures...

3.7CVSS6.4AI score0.01056EPSS
Exploits0References12Affected Software14
ATTACKERKB
ATTACKERKB
added 2023/12/28 11:15 p.m.2 views

CVE-2023-50448

In ActiveAdmin aka Active Admin before 2.12.0, a concurrency issue allows a malicious actor to access potentially private data that belongs to another user by making CSV export requests at certain specific times...

6.5CVSS6.6AI score0.00496EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/12/15 12:0 a.m.3 views

PT-2023-31554 · Unknown · Activeadmin

Name of the Vulnerable Software and Affected Versions: ActiveAdmin versions prior to 2.12.0 Description: A concurrency issue in ActiveAdmin allows a malicious actor to access potentially private data belonging to another user by making CSV export requests at specific times. The issue is caused by...

6.5CVSS6.2AI score0.00496EPSS
Exploits0References9
OpenVAS
OpenVAS
added 2022/12/28 12:0 a.m.26 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2022-2873)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.2AI score0.05451EPSS
Exploits22References2
RedHat Linux
RedHat Linux
added 2022/11/03 2:54 p.m.4 views

wildfly: Wildfly management of EJB Session context returns wrong caller principal with Elytron Security enabled

A flaw was found in Wildfly, where it returns an incorrect caller principal under certain heavily concurrent situations when Elytron Security is used. This flaw allows an attacker to gain improper access to information they should not have...

5.3CVSS5.8AI score0.00842EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2022/09/26 12:0 a.m.258 views

SUSE SLES12 Security Update : kernel (Live Patch 26 for SLE 12 SP4) (SUSE-SU-2022:3373-1)

The remote SUSE Linux SLES12 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:3373-1 advisory. This update for the Linux Kernel 4.12.14-9596 fixes several issues. The following security issues were fixed: - CVE-2022-39188: Fixed a race...

7.8CVSS6.7AI score0.00537EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2022/06/06 4:0 p.m.3 views

wildfly: Wildfly management of EJB Session context returns wrong caller principal with Elytron Security enabled

A flaw was found in Wildfly, where it returns an incorrect caller principal under certain heavily concurrent situations when Elytron Security is used. This flaw allows an attacker to gain improper access to information they should not have...

5.3CVSS5.8AI score0.00842EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2022/05/30 12:0 a.m.7 views

PT-2022-3466 · Linux +5 · Linux Kernel +5

Name of the Vulnerable Software and Affected Versions: Linux Kernel affected versions not specified Description: The issue is caused by a concurrency use-after-free flaw in the bad flp intr function, allowing a local attacker to execute arbitrary code on the system or cause a denial of service...

9.8CVSS8.3AI score0.67994EPSS
Exploits227References1692
Mageia
Mageia
added 2019/10/23 9:6 p.m.258 views

Updated java-1.8.0-openjdk packages fix security vulnerabilities

The updated packages fix several bugs and some security issues: Missing restrictions on use of custom SocketImpl Networking, 8218573. CVE-2019-2945 Improper handling of Kerberos proxy credentials Kerberos, 8220302. CVE-2019-2949 NULL pointer dereference in DrawGlyphList 2D, 8222690. CVE-2019-2962...

6.8CVSS7AI score0.03749EPSS
Exploits0References3
exploitpack
exploitpack
added 2015/10/28 12:0 a.m.10 views

Samsung fimg2d - FIMG2D_BITBLT_BLIT ioctl Concurrency Flaw

Samsung fimg2d - FIMG2DBITBLTBLIT ioctl Concurrency Flaw Source: https://code.google.com/p/google-security-research/issues/detail?id=492 The Samsung Graphics 2D driver /dev/fimg2d is accessible by unprivileged users/applications. It was found that the ioctl implementation for this driver contains...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2015/10/28 12:0 a.m.25 views

Samsung fimg2d - FIMG2D_BITBLT_BLIT ioctl Concurrency Flaw

Source: https://code.google.com/p/google-security-research/issues/detail?id=492 The Samsung Graphics 2D driver /dev/fimg2d is accessible by unprivileged users/applications. It was found that the ioctl implementation for this driver contains a locking error which can lead to memory errors such as...

7.4AI score
Exploits0
RedHat Linux
RedHat Linux
added 2012/10/18 4:41 p.m.6 views

OpenJDK: Executors state handling issues (Concurrency, 7189103)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, and 5.0 Update 36 and earlier allows remote attackers to affect confidentiality and integrity via unknown vectors related to Concurrency...

5.8CVSS7.4AI score0.02833EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2012/02/14 11:37 p.m.7 views

OpenJDK: AtomicReferenceArray insufficient array type check (Concurrency, 7082299)

Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 2 and earlier, 6 Update 30 and earlier, and 5.0 Update 33 and earlier allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Concurrency. NOTE:...

10CVSS7.3AI score0.98113EPSS
Exploits13References6
RedHat Linux
RedHat Linux
added 2006/09/15 6:49 a.m.3 views

security flaw

Concurrency vulnerability in Mozilla Firefox 1.5.0.6 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via multiple Javascript timed events that load a deeply nested XML file, followed by redirecting the browser to another page, which leads...

7.6CVSS6AI score0.14074EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2006/09/15 6:38 a.m.4 views

security flaw

Concurrency vulnerability in Mozilla Firefox 1.5.0.6 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via multiple Javascript timed events that load a deeply nested XML file, followed by redirecting the browser to another page, which leads...

7.6CVSS6AI score0.14074EPSS
Exploits0References4
Rows per page
Query Builder