94 matches found
CVE-2026-54408
A malicious actor with access to the network could exploit an Improper Access Control vulnerability found in UniFi Protect Application to bypass authentication for data streaming...
CVE-2026-54408
The CVE-2026-54408 entry concerns UniFi Protect Application with an Improper Access Control flaw that could allow a network-connected attacker to bypass authentication for data streaming. Connected advisories note multiple UniFi products (including UniFi Protect) with related vulnerabilities (e.g...
CVE-2026-54408
A malicious actor with access to the network could exploit an Improper Access Control vulnerability found in UniFi Protect Application to bypass authentication for data streaming...
CVE-2026-54408
A malicious actor with access to the network could exploit an Improper Access Control vulnerability found in UniFi Protect Application to bypass authentication for data streaming...
EUVD-2026-41383
A malicious actor with access to the network could exploit an Improper Access Control vulnerability found in UniFi Protect Application to bypass authentication for data streaming...
PT-2026-55244
Name of the Vulnerable Software and Affected Versions UniFi Protect Application affected versions not specified Description An Improper Access Control issue allows a network-based actor to bypass authentication for data streaming. Improper Access Control occurs when an application fails to proper...
SUSE-SU-2026:22340-1 Security update for mutt
This update for mutt fixes the following issues - CVE-2026-43859: strfcpy used instead of memcpy for the IMAP authcram MD5 digest bsc1263897. - CVE-2026-43860: truncation of hashpasswd by one byte for IMAP authcram MD5 digest bsc1263896. - CVE-2026-43861: missing check for \0 in urlpctdecode...
CVE-2026-43064
A flaw was found in the Linux kernel's dmaengine IDXD driver. The workqueue associated with a Data Streaming Accelerator DSA or In-Memory Analytics Accelerator IAA device is not properly released when the object is freed. This resource leak may lead to a denial of service...
SUSE CVE-2026-43064
In the Linux kernel, the following vulnerability has been resolved: dmaengine: idxd: Fix not releasing workqueue on .release The workqueue associated with an DSA/IAA device is not released when the object is freed...
[SECURITY] Fedora 44 Update: GitPython-3.1.49-1.fc44
GitPython is a python library used to interact with git repositories, high-level like git-porcelain, or low-level like git-plumbing. It provides abstractions of git objects for easy access of repository data, a nd additionally allows you to access the git repository more directly using eith er a...
[SECURITY] Fedora 44 Update: libmicrohttpd-1.0.5-1.fc44
GNU libmicrohttpd is a small C library that is supposed to make it easy to run an HTTP server as part of another application. Key features that distinguish libmicrohttpd from other projects are: C library: fast and small API is simple, expressive and fully reentrant Implementation is http 1.1...
Intel DSA Search Path Uncontrolled Vulnerability
Intel DSA is a hardware gas pedal built into Intel® Xeon® Scalable processors that accelerates storage, networking, and data analytics workloads by offloading data transfer tasks to dedicated hardware, freeing up CPU resources for other tasks. Intel DSA suffers from an uncontrolled search path...
CVE-2025-26404
Uncontrolled search path for some IntelR DSA software before version 25.2.15.9 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2025-26404
Uncontrolled search path for some IntelR DSA software before version 25.2.15.9 may allow an authenticated user to potentially enable escalation of privilege via local access...
CVE-2025-26404
CVE-2025-26404 concerns Intel® DSA (Driver & Support Assistant) software prior to version 25.2.15.9. The issue is an uncontrolled search path that may allow an authenticated user to escalate privileges via local access. Impact is described as privilege escalation with high secrecy/impact on confi...
Intel DSA 代码问题漏洞
Intel DSA is a hardware gas pedal built into Intel® Xeon® Scalable processors that accelerates storage, networking, and data analytics workloads by offloading data transfer tasks to dedicated hardware, freeing up CPU resources for other tasks. Intel DSA suffers from an uncontrolled search path...
CVE-2023-36648
Missing authentication in the internal data streaming system in ProLion CryptoSpike 3.0.15P2 allows remote unauthenticated users to read potentially sensitive information and deny service to users by directly reading and writing data in Apache Kafka as consumer and producer...
Security update for ucode-intel
This update for ucode-intel fixes the following issues: Intel CPU Microcode was updated to the 20250211 release bsc1237096 Security updates for INTEL-SA-01166 https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01166.html CVE-2024-31068: Improper Finite State Machines FSMs i...
Security update for microcode_ctl
This update for microcodectl fixes the following issues: CVE-2024-31068: Improper Finite State Machines FSMs in Hardware Logic for some Intel Processors may allow privileged user to potentially enable denial of service via local access. bsc1237096 CVE-2024-36293: A potential security vulnerabilit...
Security update for ucode-intel
This update for ucode-intel fixes the following issues: Intel CPU Microcode was updated to the 20250211 release bsc1237096 Security updates for INTEL-SA-01166 https://www.intel.com/content/www/us/en/security-center/advisory/intel-sa-01166.html CVE-2024-31068: Improper Finite State Machines FSMs i...