Lucene search
K

810 matches found

OSV
OSV
added 2026/04/22 6:31 p.m.6 views

GHSA-9GQX-53GP-C8G3 Duplicate Advisory: uutils coreutils allows users to bypass the --preserve-root safety mechanism

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-4c7q-4928-8445. This link is maintained to preserve external references. Original Description A vulnerability in the chmod utility of uutils coreutils allows users to bypass the --preserve-root safety mechanism...

7.3CVSS6AI score0.00175EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/04/22 4:7 p.m.7 views

CVE-2026-35338 uutils coreutils chmod Path Traversal Bypass of --preserve-root

A vulnerability in the chmod utility of uutils coreutils allows users to bypass the --preserve-root safety mechanism. The implementation only validates if the target path is literally / and does not canonicalize the path. An attacker or accidental user can use path variants such as /../ or symbol...

7.3CVSS5.9AI score0.00175EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/22 12:0 a.m.10 views

PowerDNS Authoritative Server 输入验证错误漏洞

The PowerDNS Authoritative Server is a DNS server developed by the Dutch company PowerDNS. There is a vulnerability in input validation of the PowerDNS Authoritative Server. This vulnerability arises from operations conducted by administrators who are allowed to use the REST API. Such actions may...

6.5CVSS5.8AI score0.00423EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/22 12:0 a.m.9 views

ONE 输入验证错误漏洞

ONE is a high-performance edge-side neural network inference framework developed by Samsung. Versions of ONE prior to 1.30.0 contained a vulnerability related to input validation errors. This vulnerability stemmed from integer overflows during the calculation of the copy size for output tensors,...

6.6CVSS5.8AI score0.00138EPSS
Exploits0References2
Packet Storm News
Packet Storm News
added 2026/04/19 12:0 a.m.9 views

Bit-Flip Vulnerability of Shared KV-Cache Blocks in LLM Serving Systems

Rowhammer on GPU DRAM has enabled adversarial bit flips in model weights; shared KV-cache blocks in LLM serving systems present an analogous but previously unexamined target. In vLLM's Prefix Caching, these blocks exist as a single physical copy without integrity protection. Using software fault...

5.8AI score
Exploits0
Snyk
Snyk
added 2026/04/06 10:54 p.m.2 views

Improper Control of a Resource Through its Lifetime

Overview pocketmine/pocketmine-mp is a highly customisable, open source server software for Minecraft: Bedrock Edition written in PHP Affected versions of this package are vulnerable to Improper Control of a Resource Through its Lifetime in the process handling entity state transitions. An attack...

6.3CVSS5.9AI score
Exploits0References2
Krebs on Security
Krebs on Security
added 2026/04/06 2:7 a.m.7 views

Germany Doxes “UNKN,” Head of RU Ransomware Gangs REvil, GandCrab

An elusive hacker who went by the handle "UNKN " and ran the early Russian ransomware groups GandCrab and REvil now has a name and a face. Authorities in Germany say 31-year-old Russian Daniil Maksimovich Shchukin headed both cybercrime gangs and helped carry out at least 130 acts of computer...

5.8AI score
Exploits0
CNNVD
CNNVD
added 2026/03/30 12:0 a.m.9 views

virtio-win 安全漏洞

virtio-win is an open-source virtual machine simulation software developed by virtio-win. virtio-win has a security vulnerability, which stems from improper memory management during the reset of VirtIO Block devices. This vulnerability may lead to reuse of freed resources after release, as well a...

7.8CVSS5.8AI score0.00109EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/03/25 12:0 a.m.7 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the failure to remove automatically bound connected sockets from the 4-tuple hash table when they...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/03/25 12:0 a.m.11 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from improper cleanup of message states when the sender’s actions are incorrect. This vulnerability may lead...

7.8CVSS7AI score0.00124EPSS
Exploits0References4
EUVD
EUVD
added 2026/03/10 9:32 p.m.3 views

EUVD-2026-10753

PX4 Autopilot versions 1.12.x through 1.15.x contain a logic flaw in the mode switching mechanism. When switching from Auto mode to Manual mode while the drone is in the "ARMED" state after landing and before the automatic disarm triggered by the COMDISARMLAND parameter, the system lacks a thrott...

5.8AI score0.00259EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2026/03/10 12:0 a.m.4 views

PT-2026-24381

Name of the Vulnerable Software and Affected Versions PX4 Autopilot versions 1.12.x through 1.15.x Description The autopilot software contains a logic flaw in the mode switching mechanism. Specifically, when transitioning from Auto mode to Manual mode while the drone is in the "ARMED" state – aft...

8.1CVSS5.8AI score0.00259EPSS
Exploits1References6
CNNVD
CNNVD
added 2026/03/06 12:0 a.m.5 views

Everon 访问控制错误漏洞

Everon is an electric vehicle charging station system developed by Everon Corporation. There is an access control vulnerability in Everon, which stems from the lack of an authentication mechanism. This vulnerability allows unverified attackers to connect to WebSocket endpoints and impersonate...

9.8CVSS5.8AI score0.00637EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/03/05 6:51 a.m.7 views

SUSE CVE-2026-23236

In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory to kernelspace The UFXIOCTLREPORTDAMAGE ioctl does not properly copy data from userspace to kernelspace, and instead directly references the memory, which can cause problems if invalid...

7.8CVSS5.7AI score0.00206EPSS
Exploits0References17
OSV
OSV
added 2026/03/04 3:16 p.m.6 views

AZL-78632 CVE-2026-23236 affecting package kernel 6.6.126.1-1

In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory to kernelspace The UFXIOCTLREPORTDAMAGE ioctl does not properly copy data from userspace to kernelspace, and instead directly references the memory, which can cause problems if invalid...

7.3CVSS5.6AI score0.00206EPSS
Exploits0References1
OSV
OSV
added 2026/03/04 3:16 p.m.2 views

DEBIAN-CVE-2026-23236

In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory to kernelspace The UFXIOCTLREPORTDAMAGE ioctl does not properly copy data from userspace to kernelspace, and instead directly references the memory, which can cause problems if invalid...

5.5CVSS5.2AI score0.00206EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2026/03/04 3:16 p.m.4 views

CVE-2026-23236

In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory to kernelspace The UFXIOCTLREPORTDAMAGE ioctl does not properly copy data from userspace to kernelspace, and instead directly references the memory, which can cause problems if invalid...

7.3CVSS5.7AI score0.00206EPSS
Exploits0References10
OSV
OSV
added 2026/03/04 3:16 p.m.4 views

UBUNTU-CVE-2026-23236

In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory to kernelspace The UFXIOCTLREPORTDAMAGE ioctl does not properly copy data from userspace to kernelspace, and instead directly references the memory, which can cause problems if invalid...

7.3CVSS5.7AI score0.00206EPSS
Exploits0References17
ATTACKERKB
ATTACKERKB
added 2026/03/04 2:36 p.m.3 views

CVE-2026-23236

In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory to kernelspace The UFXIOCTLREPORTDAMAGE ioctl does not properly copy data from userspace to kernelspace, and instead directly references the memory, which can cause problems if invalid...

5.8AI score0.00206EPSS
Exploits0References9Affected Software1
OSV
OSV
added 2026/03/04 2:36 p.m.11 views

CVE-2026-23236 fbdev: smscufx: properly copy ioctl memory to kernelspace

In the Linux kernel, the following vulnerability has been resolved: fbdev: smscufx: properly copy ioctl memory to kernelspace The UFXIOCTLREPORTDAMAGE ioctl does not properly copy data from userspace to kernelspace, and instead directly references the memory, which can cause problems if invalid...

7.3CVSS5.7AI score0.00206EPSS
Exploits0References12
Rows per page
Query Builder