Lucene search
+L

101 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/27 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2024-52595

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - lxmlhtmlclean is a project for HTML cleaning functionalities copied from lxml.html.clean. Prior to version 0.4.0, the HTML Parser in lxml does not properly hand...

7.7CVSS5.4AI score0.00472EPSS
Exploits0References2
NVD
NVD
added 2025/07/10 3:15 a.m.8 views

CVE-2025-46406

A Privilege Context Switching Error CWE-270 in the Command Center Server could allow a privileged Operator with high level access in one Division to perform limited privileged activities across the Division boundary. This issue affects Command Centre Server: 9.30 prior to 9.30.1874 MR1, 9.20 prio...

5.6CVSS0.00105EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/07/10 3:10 a.m.16 views

CVE-2025-46406

A Privilege Context Switching Error CWE-270 in the Command Center Server could allow a privileged Operator with high level access in one Division to perform limited privileged activities across the Division boundary. This issue affects Command Centre Server: 9.30 prior to 9.30.1874 MR1, 9.20 prio...

5.6CVSS0.00105EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/07/10 12:0 a.m.6 views

PT-2025-28974 · Unknown · Command Centre Server

Name of the Vulnerable Software and Affected Versions: Command Centre Server versions prior to 9.30.1874 MR1 Command Centre Server versions prior to 9.20.2337 MR3 Command Centre Server versions prior to 9.10.3194 MR6 Command Centre Server versions prior to 9.00.3371 MR7 Command Centre Server...

5.6CVSS6.5AI score0.00105EPSS
Exploits0References4
OSV
OSV
added 2025/07/04 2:15 p.m.6 views

UBUNTU-CVE-2025-38188

In the Linux kernel, the following vulnerability has been resolved: drm/msm/a7xx: Call CPRESETCONTEXTSTATE Calling this packet is necessary when we switch contexts because there are various pieces of state used by userspace to synchronize between BR and BV that are persistent across submits and w...

5.5CVSS6.1AI score0.00145EPSS
Exploits0References12
Cvelist
Cvelist
added 2025/07/04 1:37 p.m.14 views

CVE-2025-38188 drm/msm/a7xx: Call CP_RESET_CONTEXT_STATE

In the Linux kernel, the following vulnerability has been resolved: drm/msm/a7xx: Call CPRESETCONTEXTSTATE Calling this packet is necessary when we switch contexts because there are various pieces of state used by userspace to synchronize between BR and BV that are persistent across submits and w...

0.00145EPSS
Exploits0References3
CVE
CVE
added 2025/07/04 1:37 p.m.87 views

CVE-2025-38188

CVE-2025-38188 affects the Linux kernel DRM MSM (a7xx) path. The vulnerability arises from missing CP_RESET_CONTEXT_STATE handling when switching contexts, risking userspace submissions in one context causing another context to hang (DoS) without data leakage. The fix ensures CP_RESET_CONTEXT_STA...

5.5CVSS6.4AI score0.00145EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2025/07/04 1:37 p.m.4 views

CVE-2025-38188 drm/msm/a7xx: Call CP_RESET_CONTEXT_STATE

In the Linux kernel, the following vulnerability has been resolved: drm/msm/a7xx: Call CPRESETCONTEXTSTATE Calling this packet is necessary when we switch contexts because there are various pieces of state used by userspace to synchronize between BR and BV that are persistent across submits and w...

5.5CVSS6.2AI score0.00145EPSS
Exploits0References6
Gitee
Gitee
added 2025/06/06 9:44 p.m.300 views

Exploit for Privilege Context Switching Error in Canonical Ubuntu_Linux

PoC exploit for CVE-2021-3493, an Ubuntu OverlayFS Local Privesc vulnerability. The target is the Linux kernel, specifically the overlayfs file system, which did not properly validate the application of file system capabilities with respect to user namespaces. A local attacker could use this to...

8.8CVSS7AI score0.43988EPSS
Exploits27
Positive Technologies
Positive Technologies
added 2025/05/01 12:0 a.m.7 views

PT-2025-18693 · Devolutions · Devolutions Server

Name of the Vulnerable Software and Affected Versions: Devolutions Server versions 2025.1.5.0 and earlier Description: The issue concerns a privilege context switching error in the PAM JIT feature of Devolutions Server. This error allows a PAM JIT account password to be improperly reset after usa...

6.3CVSS6.3AI score0.00267EPSS
Exploits0References7
Snyk
Snyk
added 2025/04/02 3:31 p.m.10 views

Privilege Context Switching Error

Overview Affected versions of this package are vulnerable to Privilege Context Switching Error due to the injectPrimitives function not taking sandbox protection into account for folder-scoped libraries. A user with Item/Configure permission can bypass the sandbox to execute code in the Jenkins...

8.8CVSS7.4AI score0.01171EPSS
Exploits1References2
BDU FSTEC
BDU FSTEC
added 2025/02/06 12:0 a.m.8 views

The vulnerability of Fortinet FortiClientWindows security devices, related to context switching privilege errors, allows attackers to elevate their privileges.

The vulnerability of Fortinet FortiClientWindows protection devices is related to context switching privilege errors. Exploiting this vulnerability can allow attackers to enhance their privileges...

8.8CVSS5.4AI score0.00219EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/01/20 12:0 a.m.7 views

The vulnerability of the Session Token Handler component of the software platform based on Git for collaborative code development on GitLab allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Session Token Handler component in the Git-based software development platform, which is used for collaborative code development on GitLab, is related to context switching errors during privilege handling. Exploiting this vulnerability can allow an attacker, operating...

6.8CVSS5.5AI score0.00434EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/01/16 12:0 a.m.7 views

The vulnerability of Dell PowerScale InsightIQ software for performance monitoring and reporting, related to context switching errors during privilege escalation, allows a perpetrator to elevate their privileges to the root level.

The vulnerability of the Dell PowerScale InsightIQ software for performance monitoring and reporting is related to context switching privilege errors. Exploiting this vulnerability could allow an attacker to elevate their privileges to the root level...

6.8CVSS5.5AI score
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2024/12/12 11:30 a.m.26 views

CVE-2024-12570 Privilege Context Switching Error in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.7 prior to 17.4.6, from 17.5 prior to 17.5.4, and from 17.6 prior to 17.6.2. It may have been possible for an attacker with a victim's CIJOBTOKEN to obtain a GitLab session token belonging to the victim...

6.7CVSS0.00434EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/12/12 12:0 a.m.6 views

PT-2024-10153 · Gitlab · Gitlab Ce/Ee

Name of the Vulnerable Software and Affected Versions: GitLab CE/EE versions 13.7 through 17.4.6 GitLab CE/EE versions 17.5 through 17.5.4 GitLab CE/EE versions 17.6 through 17.6.2 Description: An issue has been discovered in GitLab CE/EE that may have allowed an attacker with a victim's CI JOB...

6.8CVSS6.9AI score0.00434EPSS
Exploits1References13
Tenable Nessus
Tenable Nessus
added 2024/12/12 12:0 a.m.8 views

GitLab 13.7 < 17.4.6 / 17.5 < 17.5.4 / 17.6 < 17.6.2 (CVE-2024-12570)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - Privilege Context Switching Error in GitLab CVE-2024-12570 Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL...

6.7CVSS5.5AI score0.00434EPSS
Exploits1References4
OSV
OSV
added 2024/11/19 10:15 p.m.10 views

PYSEC-2024-160

lxmlhtmlclean is a project for HTML cleaning functionalities copied from lxml.html.clean. Prior to version 0.4.0, the HTML Parser in lxml does not properly handle context-switching for special HTML tags such as , and . This behavior deviates from how web browsers parse and interpret such tags...

6.1CVSS7AI score0.00472EPSS
Exploits0References3
OSV
OSV
added 2024/11/19 10:15 p.m.4 views

DEBIAN-CVE-2024-52595

lxmlhtmlclean is a project for HTML cleaning functionalities copied from lxml.html.clean. Prior to version 0.4.0, the HTML Parser in lxml does not properly handle context-switching for special HTML tags such as , and . This behavior deviates from how web browsers parse and interpret such tags...

6.1CVSS5.2AI score0.00472EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2024/11/19 9:27 p.m.11 views

CVE-2024-52595

lxmlhtmlclean is a project for HTML cleaning functionalities copied from lxml.html.clean. Prior to version 0.4.0, the HTML Parser in lxml does not properly handle context-switching for special HTML tags such as , and . This behavior deviates from how web browsers parse and interpret such tags...

7.7CVSS5.2AI score0.00472EPSS
Exploits0
Rows per page
Query Builder