Lucene search
K

6052 matches found

Debian CVE
Debian CVE
added 2025/02/26 2:11 a.m.8 views

CVE-2022-49351

In the Linux kernel, the following vulnerability has been resolved: net: altera: Fix refcount leak in alteratsemdiocreate Every iteration of foreachchildofnode decrements the reference count of the previous node. When break from a foreachchildofnode loop, we need to explicitly call ofnodeput on t...

5.5CVSS5.4AI score0.00253EPSS
Exploits0
CNNVD
CNNVD
added 2025/02/26 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that originates from a memory leak in cscfgcreatedevice when registration fails...

5.5CVSS5AI score0.0024EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/02/26 12:0 a.m.1 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a memory leak in the event that thresholdcreatebank fails...

5.5CVSS6.4AI score0.00246EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/02/26 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from xascreaterange incorrectly handling multiple sequential entries when they exist...

4.7CVSS5.3AI score0.00183EPSS
Exploits0References7
CNNVD
CNNVD
added 2025/02/26 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from an improper order of bc link creation in tipcnodecreate, which could lead to null pointer dereferencing...

5.5CVSS5.3AI score0.00259EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/02/26 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the ubicreatevolume function not handling ebatbl correctly in the event of a volume creation failure,...

7.8CVSS6.4AI score0.00277EPSS
Exploits0References9
CNNVD
CNNVD
added 2025/02/26 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from anondev leak in the createsubvol function...

5.5CVSS5.2AI score0.00239EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2025/02/25 11:35 a.m.4 views

tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method

A log spoofing flaw was found in the Tuned package due to improper sanitization of some API arguments. This flaw allows an attacker to pass a controlled sequence of characters; newlines can be inserted into the log. Instead of the 'evil' the attacker could mimic a valid TuneD log line and trick t...

5.5CVSS5.7AI score0.00298EPSS
Exploits0References7
OSV
OSV
added 2025/02/22 3:35 a.m.4 views

MAL-2025-1525 Malicious code in metamask-sdk-create-react-app (npm)

This package runs commands in a pre-install script that exfils sensitive data to a attacker-controlled domain. --- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ed98a81fafea025740493667412dfaf8dd28cd12988fabdf1118a1765a12733d Any computer that has this package install...

7.1AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/02/19 12:0 a.m.5 views

The vulnerability of the zswap_pool_create() function in the mm/zswap.c module of the Linux kernel’s memory management subsystem allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the zswappoolcreate function in the mm/zswap.c module of the Linux kernel’s memory management subsystem is related to the reutilization of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

7.8CVSS6.5AI score0.00191EPSS
Exploits0References10Affected Software3
RedHat Linux
RedHat Linux
added 2025/02/18 11:41 a.m.5 views

hornetq-core-client: Arbitrarily overwrite files or access sensitive information

A flaw was found in the createTempFile method of hornetq. Affected version of hornetq allows attackers to arbitrarily overwrite files or access sensitive information...

9.1CVSS5.7AI score0.00699EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2025/02/18 11:41 a.m.4 views

hornetq-core-client: Arbitrarily overwrite files or access sensitive information

A flaw was found in the createTempFile method of hornetq. Affected version of hornetq allows attackers to arbitrarily overwrite files or access sensitive information...

9.1CVSS5.7AI score0.00699EPSS
Exploits1References6
OSV
OSV
added 2025/02/14 9:37 a.m.7 views

CLSA-2025-1739525834 kernel: Fix of 24 CVEs

media: uvcvideo: Skip parsing frames of type UVCVSUNDEFINED in uvcparseformat CVE-2024-53104 - wifi: ath9k: add range check for connrspepid in htcconnectservice CVE-2024-53156 - xsk: fix OOB map writes when deleting elements CVE-2024-56614 - hvsock: Initializing vsk-trans to NULL to prevent a...

7.8CVSS7.3AI score0.03301EPSS
Exploits2References1
OSV
OSV
added 2025/02/14 9:36 a.m.9 views

CLSA-2025-1739525795 kernel: Fix of 24 CVEs

media: uvcvideo: Skip parsing frames of type UVCVSUNDEFINED in uvcparseformat CVE-2024-53104 - wifi: ath9k: add range check for connrspepid in htcconnectservice CVE-2024-53156 - xsk: fix OOB map writes when deleting elements CVE-2024-56614 - hvsock: Initializing vsk-trans to NULL to prevent a...

7.8CVSS7.3AI score0.03301EPSS
Exploits2References1
OSV
OSV
added 2025/02/12 2:15 p.m.5 views

CVE-2025-26342

A CWE-306 "Missing Authentication for Critical Function" in maxprofile/accounts/routes.lua in Q-Free MaxTime less than or equal to version 2.11.0 allows an unauthenticated remote attacker to create arbitrary users, including administrators, via crafted HTTP requests...

9.8CVSS5.9AI score0.01029EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.4 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: net: inet: Do not leave a dangling sk pointer in inetcreate sockinitdata attaches the allocated sk object to the provided sock object. If inetcreate fails later, the sk object is freed, but the sock object retains a dangling...

7.8CVSS6.1AI score0.00236EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.3 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: net: afcan: Do not leave a dangling sk pointer in cancreate. When the cancreate function fails, it releases the allocated sk object. However, the sockinitdata function has already attached this object to the provided sock object...

7.8CVSS6.2AI score0.00226EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2025/02/11 7:35 a.m.1 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: fs/ntfs3: Fixed a general protection fault in runismappedfull. ntfscreate inode: Fixed the deletion of a non-resident attribute...

5.5CVSS6.2AI score0.00218EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2025/02/10 12:0 a.m.6 views

The vulnerability of the function DVPSSoftcopyVOI_PList::createFromImage() in the library for working with DICOM format allows a perpetrator to execute arbitrary code.

The vulnerability of the DVPSSoftcopyVOIPList::createFromImage function in the library for working with DICOM format is related to incorrect data type conversion. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...

7.8CVSS7.3AI score0.01692EPSS
Exploits1References8Affected Software5
OSV
OSV
added 2025/02/08 12:35 p.m.7 views

OESA-2025-1096 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: smb: client: fix potential OOBs in smb2parsecontexts Validate offsets and lengths before dereferencing create contexts in smb2parsecontexts. This fixes following...

8.1CVSS6.2AI score0.00814EPSS
Exploits0References41
Rows per page
Query Builder