418 matches found
CVE-2022-38672
In face detect driver, there is a possible out of bounds write due to a missing bounds check. This could lead to local denial of service in kernel...
CVE-2018-1000191
A exposure of sensitive information vulnerability exists in Jenkins Black Duck Detect Plugin 1.4.0 and older in DetectPostBuildStepDescriptor.java that allows attackers with Overall/Read access to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through anoth...
BountyBench: Dollar Impact of AI Agent Attackers and Defenders on Real-World Cybersecurity Systems
AI agents have the potential to significantly alter the cybersecurity landscape. To help us understand this change, we introduce the first framework to capture offensive and defensive cyber-capabilities in evolving real-world systems. Instantiating this framework with BountyBench, we set up 25...
CVE-2025-26262
An issue in the component /internals/functions of R-fx Networks Linux Malware Detect v1.6.5 allows attackers to escalate privileges and execute arbitrary code via supplying a file that contains a crafted filename...
CVE-2025-26262
An issue in the component /internals/functions of R-fx Networks Linux Malware Detect v1.6.5 allows attackers to escalate privileges and execute arbitrary code via supplying a file that contains a crafted filename...
CVE-2025-26262
An issue in the component /internals/functions of R-fx Networks Linux Malware Detect v1.6.5 allows attackers to escalate privileges and execute arbitrary code via supplying a file that contains a crafted filename...
CVE-2025-26262
An issue in the component /internals/functions of R-fx Networks Linux Malware Detect v1.6.5 allows attackers to escalate privileges and execute arbitrary code via supplying a file that contains a crafted filename...
PT-2025-19893 · R Fx Networks · R-Fx Networks Linux Malware Detect
Name of the Vulnerable Software and Affected Versions: R-fx Networks Linux Malware Detect version 1.6.5 Description: The issue allows attackers to escalate privileges and execute arbitrary code via supplying a file that contains a crafted filename. This is related to the component...
CVE-2025-26262
An issue in the component /internals/functions of R-fx Networks Linux Malware Detect v1.6.5 allows attackers to escalate privileges and execute arbitrary code via supplying a file that contains a crafted filename...
linux-malware-detect 安全漏洞
linux-malware-detect is a Linux malware detection LMD tool by Ryan MacDonald, an individual developer. A security vulnerability exists in linux-malware-detect version 1.6.5, which stems from an elevation of privilege and could lead to the execution of arbitrary code...
CVE-2025-26262
CVE-2025-26262 affects R-fx Networks Linux Malware Detect v1.6.5. The issue resides in the /internals/functions component and can allow an attacker to escalate privileges and execute arbitrary code by supplying a file with a crafted filename. The CVSS: Base 6.5 (Network, Low Attack Complexity, Pr...
DEBIAN-CVE-2025-38240
In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: dp: drmerr = deverr in HPD path to avoid NULL ptr The function mtkdpwaithpdasserted may be called before the mtkdp-drmdev pointer is assigned in mtkdpbridgeattach. Specifically it can be called via this callpath: -...
UBUNTU-CVE-2025-38240
In the Linux kernel, the following vulnerability has been resolved: drm/mediatek: dp: drmerr = deverr in HPD path to avoid NULL ptr The function mtkdpwaithpdasserted may be called before the mtkdp-drmdev pointer is assigned in mtkdpbridgeattach. Specifically it can be called via this callpath: -...
SUSE CVE-2022-49616
In the Linux kernel, the following vulnerability has been resolved: ASoC: rt7-sdw: harden jackdetecthandler Realtek headset codec drivers typically check if the card is instantiated before proceeding with the jack detection. The rt700, rt711 and rt711-sdca are however missing a check on the card...
Astra Linux – Vulnerability in Linux 6.1
In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fixed a system hang that occurred during resume with a Thunderbolt monitor. Why This issue arises when using a Thunderbolt monitor and performing suspend or resume operations. During the resume procedure, the TBT...
CVE-2021-39157
detect-character-encoding is an open source character encoding inspection library. In detect-character-encoding v0.6.0 and earlier, data matching no charset causes the Node.js process to crash. The problem has been patched in detect-character-encoding v0.7.0. No workaround are available and all...
CVE-2025-22550
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Joe Rhoney AddFunc Mobile Detect addfunc-mobile-detect allows Stored XSS.This issue affects AddFunc Mobile Detect: from n/a through = 3.1...
CVE-2025-22550 WordPress AddFunc Mobile Detect plugin <= 3.1 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in AddFunc AddFunc Mobile Detect allows Stored XSS.This issue affects AddFunc Mobile Detect: from n/a through 3.1...
CVE-2025-22550 WordPress AddFunc Mobile Detect plugin <= 3.1 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Joe Rhoney AddFunc Mobile Detect addfunc-mobile-detect allows Stored XSS.This issue affects AddFunc Mobile Detect: from n/a through = 3.1...
CVE-2025-22550
CVE-2025-22550 affects AddFunc Mobile Detect (WordPress plugin). The issue is a Stored Cross-Site Scripting vulnerability in AddFunc Mobile Detect <= 3.1, caused by improper input neutralization during web page generation. Impact is stored XSS as described in multiple sources; no public exploi...