Lucene search
K

2566 matches found

OSV
OSV
added 2024/06/19 2:15 p.m.4 views

UBUNTU-CVE-2024-38545

In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix UAF for cq async event The refcount of CQ is not protected by locks. When CQ asynchronous events and CQ destruction are concurrent, CQ may have been released, which will cause UAF. Use the xalock to protect the CQ...

7.8CVSS6.3AI score0.00252EPSS
Exploits0References20
Vulnrichment
Vulnrichment
added 2024/06/19 1:35 p.m.11 views

CVE-2024-38545 RDMA/hns: Fix UAF for cq async event

In the Linux kernel, the following vulnerability has been resolved: RDMA/hns: Fix UAF for cq async event The refcount of CQ is not protected by locks. When CQ asynchronous events and CQ destruction are concurrent, CQ may have been released, which will cause UAF. Use the xalock to protect the CQ...

6.9AI score0.00252EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2024/06/17 12:0 a.m.5 views

The vulnerability of the queue_oob() function in socket implementations for kernels AF_UNIX in Linux operating systems allows a hacker to cause a service failure.

The vulnerability of the queueoob function in the net/unix/afunix.c module, which is part of the AFUNIX socket implementation in Linux operating systems, relates to the reutilization of previously freed memory due to concurrent access to resources. Exploiting this vulnerability can allow an...

5.5CVSS6.4AI score0.0067EPSS
Exploits0References11Affected Software3
BDU FSTEC
BDU FSTEC
added 2024/06/14 12:0 a.m.4 views

The vulnerability of the tcp_twsk_unique() function in the Linux operating system’s IPv4 kernel implementation allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the tcptwskunique function in the net/ipv4/tcpipv4.c module, which is part of the Linux kernel’s implementation of the IPv4 protocol, relates to the reutilization of previously freed memory due to concurrent access to resources. Exploiting this vulnerability could allow an...

7.8CVSS6.8AI score0.00614EPSS
Exploits0References47Affected Software5
BDU FSTEC
BDU FSTEC
added 2024/06/14 12:0 a.m.5 views

The vulnerability of the msft_do_close() function in the Linux operating system’s Bluetooth kernel implementation allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the msftdoclose function in the net/bluetooth/msft.c module of the Linux operating system’s Bluetooth protocol implementation is related to the reallocation of previously freed memory due to concurrent access to resources. Exploiting this vulnerability could allow an attacker...

6.4CVSS6.4AI score0.00212EPSS
Exploits0References15Affected Software4
SUSE CVE
SUSE CVE
added 2024/06/11 2:5 a.m.4 views

SUSE CVE-2024-36972

In the Linux kernel, the following vulnerability has been resolved: afunix: Update unixsksk-oobskb under skreceivequeue lock. Billy Jheng Bing-Jhong reported a race between unixgc and queueoob. unixgc tries to garbage-collect closed inflight sockets, and then if the socket has MSGOOB in...

7CVSS6.7AI score0.0067EPSS
Exploits0References12
PyPA
PyPA
added 2024/06/06 7:15 p.m.8 views

PYSEC-2024-105

A race condition vulnerability exists in zenml-io/zenml versions up to and including 0.55.3, which allows for the creation of multiple users with the same username when requests are sent in parallel. This issue was fixed in version 0.55.5. The vulnerability arises due to insufficient handling of...

3.1CVSS6.7AI score0.00289EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2024/06/06 7:15 p.m.15 views

PYSEC-2024-105

A race condition vulnerability exists in zenml-io/zenml versions up to and including 0.55.3, which allows for the creation of multiple users with the same username when requests are sent in parallel. This issue was fixed in version 0.55.5. The vulnerability arises due to insufficient handling of...

3.1CVSS3.9AI score0.00289EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/06/06 12:0 a.m.5 views

PT-2024-18648 · Zenml Io · Zenml

Name of the Vulnerable Software and Affected Versions: zenml-io/zenml versions up to and including 0.55.3 Description: A race condition issue exists, allowing for the creation of multiple users with the same username when requests are sent in parallel. This is due to insufficient handling of...

3.1CVSS4.5AI score0.00289EPSS
Exploits0References10
SUSE CVE
SUSE CVE
added 2024/06/04 12:57 p.m.2 views

SUSE CVE-2021-32778

Envoy is an open source L7 proxy and communication bus designed for large modern service oriented architectures. In affected versions envoy's procedure for resetting a HTTP/2 stream has ON^2 complexity, leading to high CPU utilization when a large number of streams are reset. Deployments are...

7.5CVSS7.2AI score0.0123EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/06/04 12:0 a.m.5 views

PT-2024-28424

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to a potential kernel crash when multiple napi instances redirect to the same AF XDP socket. This can happen when the linked list of sockets to flush gets corrupted ...

4.7CVSS5.5AI score0.00138EPSS
Exploits0References20
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.26 views

RHEL 9 : pki-servlet-engine (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 9 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - tomcat: Leaking of unrelated request bodies in default error page CVE-2024-21733 Note that Nessus has not tested fo...

5.3CVSS5.9AI score0.14286EPSS
Exploits3References1
OSV
OSV
added 2024/05/30 4:15 p.m.1 views

UBUNTU-CVE-2024-36932

In the Linux kernel, the following vulnerability has been resolved: thermal/debugfs: Prevent use-after-free from occurring after cdev removal Since thermaldebugcdevremove does not run under cdev-lock, it can run in parallel with thermaldebugcdevstateupdate and it may free the struct thermaldebugf...

5.5CVSS6.5AI score0.00198EPSS
Exploits0References10
BDU FSTEC
BDU FSTEC
added 2024/05/30 12:0 a.m.4 views

The vulnerability of the ax25_dev_device_down() function in the implementation of the Amateur Radio X.25 PLP (Rose) protocol in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the ax25devdevicedown function in the net/ax25/ax25dev.c module, which is part of the Amateur Radio X.25 PLP Rose protocol implementation in the Linux operating system, relates to the reutilization of previously freed memory due to concurrent access to resources. Exploiting...

5.5CVSS6.7AI score0.00232EPSS
Exploits0References10Affected Software2
BDU FSTEC
BDU FSTEC
added 2024/05/30 12:0 a.m.4 views

The vulnerability of the pep_ioctl() function in the PhoNet protocol implementation in Linux kernel allows a hacker to cause a service failure.

The vulnerability of the pepioctl function in the net/phonet/pep.c module of the PhoNet protocol implementation in the Linux operating system is related to the reutilization of previously freed memory due to concurrent access to resources. Exploiting this vulnerability can allow a attacker to cau...

5.5CVSS6.7AI score0.00223EPSS
Exploits0References13Affected Software3
SUSE CVE
SUSE CVE
added 2024/05/29 2:19 p.m.3 views

SUSE CVE-2023-52774

In the Linux kernel, the following vulnerability has been resolved: s390/dasd: protect device queue against concurrent access In dasdprofilestart the amount of requests on the device queue are counted. The access to the device queue is unprotected against concurrent access. With a lot of parallel...

5.5CVSS6.2AI score0.0024EPSS
Exploits0References18
SUSE CVE
SUSE CVE
added 2024/05/28 2:59 p.m.4 views

SUSE CVE-2024-3933

In Eclipse OpenJ9 release versions prior to 0.44.0 and after 0.13.0, when running with JVM option -Xgc:concurrentScavenge, the sequence generated for System.arrayCopy on the IBM Z platform with hardware and software support for guarded storage 1, could allow access to a buffer with an incorrect...

5.3CVSS6.7AI score0.00207EPSS
Exploits0References6
OSV
OSV
added 2024/05/27 6:15 a.m.3 views

CVE-2024-3933

In Eclipse OpenJ9 release versions prior to 0.44.0 and after 0.13.0, when running with JVM option -Xgc:concurrentScavenge, the sequence generated for System.arrayCopy on the IBM Z platform with hardware and software support for guarded storage 1, could allow access to a buffer with an incorrect...

7.3CVSS6.5AI score
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/05/27 6:8 a.m.25 views

CVE-2024-3933 Eclipse Open J9 With -Xgc:concurrentScavenge on IBM Z, could write/read outside of a buffer

In Eclipse OpenJ9 release versions prior to 0.44.0 and after 0.13.0, when running with JVM option -Xgc:concurrentScavenge, the sequence generated for System.arrayCopy on the IBM Z platform with hardware and software support for guarded storage 1, could allow access to a buffer with an incorrect...

5.3CVSS6.8AI score0.00207EPSS
Exploits0References2
CNNVD
CNNVD
added 2024/05/27 12:0 a.m.5 views

Eclipse OpenJ9 安全漏洞

Eclipse OpenJ9 is a Java application engine from the Eclipse Foundation. The product is primarily used to run Java applications. A security vulnerability exists in Eclipse OpenJ9 that stems from an out-of-bounds read and out-of-bounds write vulnerability when running with the JVM option...

7.3CVSS6.7AI score0.00207EPSS
Exploits0References4
Rows per page
Query Builder