Lucene search
K

6047 matches found

OSV
OSV
added 2024/12/27 3:15 p.m.2 views

UBUNTU-CVE-2024-56603

In the Linux kernel, the following vulnerability has been resolved: net: afcan: do not leave a dangling sk pointer in cancreate On error cancreate frees the allocated sk object, but sockinitdata has already attached it to the provided sock object. This will leave a dangling sk pointer in the sock...

7.8CVSS6.2AI score0.00226EPSS
Exploits0References46
Debian CVE
Debian CVE
added 2024/12/27 2:23 p.m.13 views

CVE-2024-56560

In the Linux kernel, the following vulnerability has been resolved: slab: Fix too strict alignment check in createcache On m68k, where the minimum alignment of unsigned long is 2 bytes: Kernel panic - not syncing: kmemcachecreateargs: Failed to create slab 'iokiocb'. Error -22 CPU: 0 UID: 0 PID: ...

5.5CVSS5.9AI score0.00182EPSS
Exploits0
OSV
OSV
added 2024/12/27 2:15 p.m.0 views

DEBIAN-CVE-2024-56537

In the Linux kernel, the following vulnerability has been resolved: drm: xlnx: zynqmpdisp: layer may be null while releasing layer-info can be null if we have an error on the first layer in zynqmpdispcreatelayers...

5.5CVSS5.6AI score0.00206EPSS
Exploits0References1
OSV
OSV
added 2024/12/27 2:15 p.m.1 views

DEBIAN-CVE-2024-53175

In the Linux kernel, the following vulnerability has been resolved: ipc: fix memleak if msginitns failed in createipcns Percpu memory allocation may failed during createipcns however this fail is not handled properly since ipc sysctls and mq sysctls is not released properly. Fix this by release...

5.5CVSS5.7AI score0.00231EPSS
Exploits0References1
OSV
OSV
added 2024/12/27 12:32 p.m.6 views

OESA-2024-2589 kernel security update

The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: iouring/io-wq: Use setbit and testbit at worker-flags Utilize setbit and testbit on worker-flags within iouring/io-wq to address potential data races. The...

7.8CVSS6.1AI score0.00272EPSS
Exploits0References6
CNNVD
CNNVD
added 2024/12/27 12:0 a.m.3 views

Dcat Admin 安全漏洞

Dcat Admin is a second development based on laravel-admin to build the backend system tools . A cross-site scripting vulnerability exists in Dcat Admin v2.2.0-beta, which stems from the lack of effective filtering and escaping of user-supplied data in /admin/articles/create, and can be exploited ...

4.8CVSS6AI score0.00315EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/12/27 12:0 a.m.1 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a failure to clear a pointer to the sk object allocated on failure of the ieee802154create function in the...

7.8CVSS6.5AI score0.00224EPSS
Exploits0References7
CNNVD
CNNVD
added 2024/12/27 12:0 a.m.1 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from inetcreate in the net:inet module not clearing the dangling sk pointer, which could lead to reuse after...

7.8CVSS6.4AI score0.00252EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2024/12/27 12:0 a.m.8 views

The vulnerability of the `__bch2_ioctl_subvolume_create()` function in the `fs/bcachefs/fs-ioctl.c` module of the bcachefs component in the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the bch2ioctlsubvolumecreate function in the fs/bcachefs/fs-ioctl.c module of the bcachefs component of the Linux operating system is related to a crash due to repeated resource blocking. Exploiting this vulnerability could allow an attacker to cause service failures...

5.5CVSS5.9AI score0.00148EPSS
Exploits0References10Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/12/23 12:0 a.m.17 views

Amazon Linux 2 : postgresql (ALASPOSTGRESQL14-2024-014)

The version of postgresql installed on the remote host is prior to 14.14-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2POSTGRESQL14-2024-014 advisory. Incomplete tracking in PostgreSQL of tables with row security allows a reused query to view or change...

8.8CVSS7.3AI score0.04422EPSS
Exploits1References10
RedHat Linux
RedHat Linux
added 2024/12/19 2:36 p.m.3 views

hornetq-core-client: Arbitrarily overwrite files or access sensitive information

A flaw was found in the createTempFile method of hornetq. Affected version of hornetq allows attackers to arbitrarily overwrite files or access sensitive information...

9.1CVSS5.7AI score0.00699EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2024/12/19 1:0 p.m.3 views

hornetq-core-client: Arbitrarily overwrite files or access sensitive information

A flaw was found in the createTempFile method of hornetq. Affected version of hornetq allows attackers to arbitrarily overwrite files or access sensitive information...

9.1CVSS5.7AI score0.00699EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2024/12/19 12:52 p.m.4 views

hornetq-core-client: Arbitrarily overwrite files or access sensitive information

A flaw was found in the createTempFile method of hornetq. Affected version of hornetq allows attackers to arbitrarily overwrite files or access sensitive information...

9.1CVSS5.7AI score0.00699EPSS
Exploits1References6
Microsoft CVE
Microsoft CVE
added 2024/12/19 8:0 a.m.5 views

Tuned: improper sanitization of `instance_name` parameter of the `instance_create()` method

...

5.5CVSS6.3AI score0.00298EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2024/12/13 8:0 a.m.3 views

net: explicitly clear the sk pointer, when pf->create fails

...

7.8CVSS6.9AI score0.00231EPSS
Exploits0
vulnersOsv
vulnersOsv
added 2024/12/12 2:46 p.m.5 views

@agent_z/egg (>=1.0.0 <=1.0.2), @ccci/micro-server (>=1.0.57 <=1.0.132) +16 more potentially affected by CVE-2024-21548 via bun (>=0.0.2 <=1.1.3)

bun NPM version =0.0.2, =1.0.0, =1.0.57, =1.0.0, =0.0.0, =0.0.2, =0.0.3, =0.0.2, =0.0.3, =0.2.0, =0.0.55, =0.1.0, =0.1.1 and more Source cves: CVE-2024-21548 Source advisory: SNYK:JS-BUN-8499549...

7.7CVSS5.8AI score0.00634EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2024/12/11 4:19 p.m.1 views

kernel: bpf: Add BPF_PROG_TYPE_CGROUP_SKB attach type enforcement in BPF_LINK_CREATE

In the Linux kernel, the following vulnerability has been resolved: bpf: Add BPFPROGTYPECGROUPSKB attach type enforcement in BPFLINKCREATE bpfprogattach uses attachtypetoprogtype to enforce proper attach type for BPFPROGTYPECGROUPSKB. linkcreate uses bpfprogget and relies on...

5.5CVSS6.8AI score0.00228EPSS
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2024/12/10 12:0 a.m.6 views

The vulnerability of the instance_create() method in the program for monitoring and adaptive configuration of system devices allows attackers to perform spoofing attacks.

The vulnerability of the instancecreate method in the program for monitoring and adaptive configuration of system devices related to insufficient validation of input data when processing the instancename parameter. Exploiting this vulnerability allows attackers to perform spoofing attacks...

5.5CVSS6.2AI score0.00298EPSS
Exploits0References12Affected Software5
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/12/08 11:43 p.m.4 views

Malicious code in create-semi-d2c-plugin (npm)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
OSV
OSV
added 2024/12/08 9:58 p.m.5 views

MAL-2024-11264 Malicious code in @douinfe/create-semi-d2c-plugin (npm)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0
Rows per page
Query Builder