Lucene search
K

70 matches found

OSV
OSV
added 2026/06/26 8:17 p.m.2 views

UBUNTU-CVE-2026-53303

In the Linux kernel, the following vulnerability has been resolved: f2fs: protect extensionlist reading with sblock in f2fssbishow In f2fssbishow, the extensionlist, extensioncount and hotextcount are read without holding sbi-sblock. If a concurrent sysfs store modifies the extension list via...

7.1CVSS5.7AI score0.00126EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2026/06/26 12:0 a.m.11 views

PT-2026-52942

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description In the f2fs module, the f2fs sbi show function reads extension list, extension count, and hot ext count without holding the sb lock. If a concurrent sysfs store operation modifies the...

5.8AI score0.00126EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2026/05/27 10:37 p.m.23 views

CVE-2026-45975

A flaw was found in the Linux kernel's ublk subsystem. A local attacker could exploit a race condition where the kernel reads struct ublksrvctrlcmd from userspace-mapped memory without proper synchronization. This allows a malicious user to concurrently write to the structure, potentially causing...

7.3CVSS5.8AI score0.00107EPSS
Exploits0References4
OSV
OSV
added 2026/05/13 8:9 a.m.6 views

BIT-MONGODB-2025-14345 Cross-Shard Failovers May Lead to Partial Transaction Commit in MongoDB Server

A post-authentication flaw in the network two-phase commit protocol used for cross-shard transactions in MongoDB Server may lead to logical data inconsistencies under specific conditions which are not predictable and exist for a very short period of time. This error can cause the transaction...

5.4CVSS5.8AI score0.00192EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2026/05/08 2:19 a.m.10 views

SUSE CVE-2026-43273

In the Linux kernel, the following vulnerability has been resolved: ceph: supply snapshot context in cephzeropartialobject The cephzeropartialobject function was missing proper snapshot context for its OSD write operations, which could lead to data inconsistencies in snapshots. Reproducer:...

5.7AI score0.00117EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/05/07 12:16 a.m.9 views

CVE-2026-43273

A flaw was found in the Linux kernel's Ceph file system module. The cephzeropartialobject function, responsible for handling object write operations, was missing proper snapshot context. This oversight could allow a local attacker to cause data inconsistencies within snapshots, leading to a loss ...

5.5CVSS5.8AI score0.00117EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/05/06 11:28 a.m.8 views

CVE-2026-43273

In the Linux kernel, the following vulnerability has been resolved: ceph: supply snapshot context in cephzeropartialobject The cephzeropartialobject function was missing proper snapshot context for its OSD write operations, which could lead to data inconsistencies in snapshots. Reproducer:...

5.7AI score0.00117EPSS
Exploits0References9Affected Software1
CVE
CVE
added 2026/05/06 11:28 a.m.18 views

CVE-2026-43273

CVE-2026-43273 concerns the Linux kernel Ceph file system module, where ceph_zero_partial_object() lacked proper snapshot context for OSD write operations. This omission can cause data inconsistencies within snapshots, potentially affecting data integrity of previously snapshotted data. Affected ...

5.5CVSS5.7AI score0.00117EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2026/05/06 11:28 a.m.31 views

CVE-2026-43273 ceph: supply snapshot context in ceph_zero_partial_object()

In the Linux kernel, the following vulnerability has been resolved: ceph: supply snapshot context in cephzeropartialobject The cephzeropartialobject function was missing proper snapshot context for its OSD write operations, which could lead to data inconsistencies in snapshots. Reproducer:...

0.00117EPSS
Exploits0References8
EUVD
EUVD
added 2026/04/22 12:30 p.m.4 views

EUVD-2026-24723

Having many concurrent transfers of the same RPZ can lead to inconsistent RPZ data, use after free and/or a crash of the recursor. Normally concurrent transfers of the same RPZ zone can only occur with a malfunctioning RPZ provider...

5CVSS5.8AI score0.00225EPSS
Exploits0References2
OSV
OSV
added 2026/04/22 10:16 a.m.5 views

DEBIAN-CVE-2026-33259

Having many concurrent transfers of the same RPZ can lead to inconsistent RPZ data, use after free and/or a crash of the recursor. Normally concurrent transfers of the same RPZ zone can only occur with a malfunctioning RPZ provider...

5CVSS5.3AI score0.00225EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/22 9:38 a.m.3 views

CVE-2026-33259

Having many concurrent transfers of the same RPZ can lead to inconsistent RPZ data, use after free and/or a crash of the recursor. Normally concurrent transfers of the same RPZ zone can only occur with a malfunctioning RPZ provider...

5CVSS5.8AI score0.00225EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/04/22 9:38 a.m.28 views

CVE-2026-33259 Concurrent modification of RPZ data can lead to denial of servce

Having many concurrent transfers of the same RPZ can lead to inconsistent RPZ data, use after free and/or a crash of the recursor. Normally concurrent transfers of the same RPZ zone can only occur with a malfunctioning RPZ provider...

5CVSS0.00225EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2026/04/22 9:38 a.m.3 views

CVE-2026-33259

Having many concurrent transfers of the same RPZ can lead to inconsistent RPZ data, use after free and/or a crash of the recursor. Normally concurrent transfers of the same RPZ zone can only occur with a malfunctioning RPZ provider...

5CVSS5.2AI score0.00225EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/01/24 3:17 a.m.7 views

CVE-2025-55705

This vulnerability occurs when the system permits multiple simultaneous connections to the backend using the same charging station ID. This can result in unauthorized access, data inconsistency, or potential manipulation of charging sessions. The lack of proper session management and expiration...

9.8CVSS5.3AI score0.003EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/01/22 10:32 p.m.3 views

CVE-2025-55705 EVMAPA Insufficient Session Expiration

This vulnerability occurs when the system permits multiple simultaneous connections to the backend using the same charging station ID. This can result in unauthorized access, data inconsistency, or potential manipulation of charging sessions. The lack of proper session management and expiration...

7.3CVSS5.5AI score0.003EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/01/22 10:32 p.m.3 views

CVE-2025-55705

This vulnerability occurs when the system permits multiple simultaneous connections to the backend using the same charging station ID. This can result in unauthorized access, data inconsistency, or potential manipulation of charging sessions. The lack of proper session management and expiration...

7.3CVSS5.3AI score0.003EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/01/22 10:32 p.m.20 views

CVE-2025-55705 EVMAPA Insufficient Session Expiration

This vulnerability occurs when the system permits multiple simultaneous connections to the backend using the same charging station ID. This can result in unauthorized access, data inconsistency, or potential manipulation of charging sessions. The lack of proper session management and expiration...

7.3CVSS0.003EPSS
Exploits0References2
CVE
CVE
added 2026/01/22 10:32 p.m.21 views

CVE-2025-55705

CVE-2025-55705 involves charging-station backends allowing multiple simultaneous connections with the same station ID due to insufficient session management and expiration controls. Affected component is the charging-station/session backend; outcome includes unauthorized access, data inconsistenc...

9.8CVSS5.5AI score0.003EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2026/01/22 12:0 a.m.8 views

PT-2026-4302

Name of the Vulnerable Software and Affected Versions Charging station software affected versions not specified Description The system allows multiple simultaneous connections to the backend using the same charging station ID. This can lead to unauthorized access, data inconsistency, or...

7.3CVSS5.3AI score0.003EPSS
Exploits0References4
Rows per page
Query Builder