8396 matches found
KB5073696: Windows Server 2012 R2 Security Update (January 2026)
The remote Windows host is missing security update 5073696. It is, therefore, affected by multiple vulnerabilities - An issue was discovered in Broadcom LSI PCI-SV92EX Soft Modem Kernel Driver through 2.2.100.1 aka AGRSM64.sys. There is Local Privilege Escalation to SYSTEM via a Stack Overflow in...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an unchecked pskbcopy return value in prpgetuntaggedframe, which could result in a null pointer dereference...
KLA90833 Multiple vulnerabilities in Mozilla Firefox ESR
Multiple vulnerabilities were found in Mozilla Firefox ESR. Malicious users can exploit these vulnerabilities to spoof user interface, bypass security restrictions, execute arbitrary code, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1...
KLA90835 Multiple vulnerabilities in Mozilla Firefox
Multiple vulnerabilities were found in Mozilla Firefox. Malicious users can exploit these vulnerabilities to cause denial of service, bypass security restrictions, execute arbitrary code, obtain sensitive information, spoof user interface. Below is a complete list of vulnerabilities: 1. Denial of...
Linux Distros Unpatched Vulnerability : CVE-2025-71092
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: RDMA/bnxtre: Fix OOB write in bnxtrecopyerrstats Commit ef56081d1864 RDMA/bnxtre: RoCE relat...
MiracleLinux 8 : java-17-openjdk-17.0.14.0.7-3.el8 (AXSA:2025-9605:04)
The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-9605:04 advisory. JDK: Enhance array handling CVE-2025-21502 Bug Fixes: The Asianux OpenJDK packages rely on the copy-jdk-configs package to transfer configuration files to a...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from improper handling of the memory type of the zero-copy XDPTX operation in the stmmacxdpxmitxdpf function, whi...
PT-2026-2543
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s svcrdma functionality related to memory copying. Specifically, the svc rdma copy inline range function incorrectly added the page index rc curpage to...
Mozilla Firefox和Mozilla Firefox ESR 安全漏洞
Mozilla Firefox and Mozilla Firefox ESR are both products of the Mozilla Foundation, U.S.A. Mozilla Firefox is an open source web browser.Mozilla Firefox ESR is an extended support version of Firefox web browser. A security vulnerability exists in Mozilla Firefox versions prior to 147 and Mozilla...
PT-2026-2591
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel’s ublk subsystem related to reference counting of user copy operations. Specifically, when a ublk server process releases a ublk character device file,...
Linux Distros Unpatched Vulnerability : CVE-2026-0890
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Spoofing issue in the DOM: Copy & Paste and Drag & Drop component. This vulnerability was fixed in Firefox 147, Firefox ESR 140.7, Thunderbird 147, and...
Linux Distros Unpatched Vulnerability : CVE-2025-71070
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ublk: clean up user copy references on ublk server exit If a ublk server process releases a...
MiracleLinux 9 : java-17-openjdk-17.0.14.0.7-2.el9.ML.1 (AXSA:2025-9583:02)
The remote MiracleLinux 9 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-9583:02 advisory. JDK: Enhance array handling CVE-2025-21502 Bug Fixes: The Red Hat OpenJDK packages rely on the copy-jdk-configs package to transfer configuration files to a...
Linux Distros Unpatched Vulnerability : CVE-2025-71095
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: stmmac: fix the crash issue for zero copy XDPTX action There is a crash issue when running zero copy XDPTX action, the crash log is shown below. 216.122464...
PT-2026-2652
Name of the Vulnerable Software and Affected Versions Firefox versions prior to 147 Firefox ESR versions prior to 140.7 Description A spoofing issue exists in the DOM Copy, Paste, and Drag & Drop components. The issue involves potential manipulation within these components, allowing for spoofing...
Linux kernel 安全漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure to clean up user copy references when the ublk server exits, which could lead to reuse after relea...
ROS-20260113-7340
A vulnerability in the void function of the kernel/rcu/tasks.h module of the synchronization subsystem in multithreaded systems of the Linux kernel is related to an operation exceeding buffer boundaries in memory. Exploitation of the vulnerability may allow an attacker to cause a denial of servic...
KB5073698: Windows Server 2012 Security Update (January 2026)
The remote Windows host is missing security update 5073698. It is, therefore, affected by multiple vulnerabilities - An issue was discovered in Broadcom LSI PCI-SV92EX Soft Modem Kernel Driver through 2.2.100.1 aka AGRSM64.sys. There is Local Privilege Escalation to SYSTEM via a Stack Overflow in...
PT-2026-2616
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A crash issue exists within the Linux kernel's networking subsystem, specifically in the stmmac driver when utilizing zero copy XDP TX actions. The issue stems from an incorrect memory...
ROS-20260112-7368
A vulnerability in the dasdcopypairstore function of the drivers/s390/block/dasddevmap.c module of the Linux kernel is related to pointer dereferencing. Exploitation of the vulnerability could allow an attacker to cause a denial of service...