Lucene search
+L

165 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.12 views

EUVD-2024-53843

Malicious code in bioql PyPI...

5.5CVSS7.3AI score0.00218EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2025/09/06 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2025-38707

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fs/ntfs3: Add sanity check for file name The length of the file name should be smaller than the directory entry size. CVE-2025-38707 Note that Nessus relies on...

7.8CVSS6.6AI score0.00156EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/09/04 11:23 p.m.5 views

SUSE CVE-2025-38707

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Add sanity check for file name The length of the file name should be smaller than the directory entry size...

7.8CVSS6.4AI score0.00156EPSS
Exploits0References3
NVD
NVD
added 2025/09/04 4:15 p.m.6 views

CVE-2025-38707

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Add sanity check for file name The length of the file name should be smaller than the directory entry size...

7.8CVSS0.00156EPSS
Exploits0References9
OSV
OSV
added 2025/09/04 4:15 p.m.3 views

DEBIAN-CVE-2025-38707

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Add sanity check for file name The length of the file name should be smaller than the directory entry size...

7.8CVSS6.1AI score0.00156EPSS
Exploits0References1
OSV
OSV
added 2025/09/04 4:15 p.m.7 views

AZL-66845 CVE-2025-38707 affecting package kernel for versions less than 6.6.104.2-1

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Add sanity check for file name The length of the file name should be smaller than the directory entry size...

7.8CVSS5.6AI score0.00156EPSS
Exploits0References1
OSV
OSV
added 2025/09/04 4:15 p.m.8 views

UBUNTU-CVE-2025-38707

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Add sanity check for file name The length of the file name should be smaller than the directory entry size...

7.8CVSS6.5AI score0.00156EPSS
Exploits0References35
Cvelist
Cvelist
added 2025/09/04 3:32 p.m.15 views

CVE-2025-38707 fs/ntfs3: Add sanity check for file name

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Add sanity check for file name The length of the file name should be smaller than the directory entry size...

0.00156EPSS
Exploits0References7
OSV
OSV
added 2025/09/04 3:32 p.m.5 views

CVE-2025-38707 fs/ntfs3: Add sanity check for file name

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Add sanity check for file name The length of the file name should be smaller than the directory entry size...

7.8CVSS6.1AI score0.00156EPSS
Exploits0References12
CVE
CVE
added 2025/09/04 3:32 p.m.40 views

CVE-2025-38707

CVE-2025-38707 is a Linux-kernel NTFS3 file-name sanity-check vulnerability. The issue arises from a too-long file name not being validated against the directory-entry size, potentially enabling local escalation when processing NTFS names. The CVE entry in the initial doc shows a HIGH impact with...

7.8CVSS6AI score0.00156EPSS
Exploits0References9Affected Software1
RedHat Linux
RedHat Linux
added 2025/08/27 11:42 a.m.9 views

kernel: ext4: fix off-by-one error in do_split

In the Linux kernel, the following vulnerability has been resolved: ext4: fix off-by-one error in dosplit Syzkaller detected a use-after-free issue in ext4insertdentry that was caused by out-of-bounds access due to incorrect splitting in dosplit. BUG: KASAN: use-after-free in...

5.5CVSS6.5AI score0.00171EPSS
Exploits0References5
OSV
OSV
added 2025/08/19 5:3 p.m.7 views

CVE-2025-38615 fs/ntfs3: cancle set bad inode after removing name fails

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: cancle set bad inode after removing name fails The reproducer uses a file0 on a ntfs3 file system with a corrupted ilink. When renaming, the file0's inode is marked as a bad inode because the file name cannot be deleted...

5.5CVSS6.1AI score0.00145EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/08/12 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2022-49879

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ext4: fix BUGON when directory entry has invalid reclen The reclen field in the directory entry has to be a multiple of 4. A corrupted filesystem image can be...

5.5CVSS6.3AI score0.00185EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/10 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-52444

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to avoid dirent corruption As Al reported in link1: f2fsrename ... if olddir !=...

7.8CVSS5.7AI score0.00245EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/09 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2024-42104

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - nilfs2: add missing check for inode numbers on directory entries Syzbot reported that mounting and unmounting a specific pattern of corrupted nilfs2 filesystem...

7.8CVSS6.6AI score0.0026EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2025/08/06 7:0 a.m.10 views

smb: client: Fix use-after-free in cifs_fill_dirent

...

7.1CVSS7AI score0.00181EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2025/06/23 7:46 a.m.15 views

kernel: proc: fix UAF in proc_get_inode()

In the Linux kernel, the following vulnerability has been resolved: proc: fix UAF in procgetinode Fix race between rmmod and /proc/XXX's inode instantiation. The bug is that pde-procops don't belong to /proc, it belongs to a module, therefore dereferencing it after /proc entry has been registered...

7.8CVSS6.3AI score0.002EPSS
Exploits0References5
OSV
OSV
added 2025/06/18 10:15 a.m.1 views

DEBIAN-CVE-2025-38051

In the Linux kernel, the following vulnerability has been resolved: smb: client: Fix use-after-free in cifsfilldirent There is a race condition in the readdir concurrency process, which may access the rsp buffer after it has been released, triggering the following KASAN warning...

7CVSS6AI score0.00181EPSS
Exploits0References1
OSV
OSV
added 2025/06/18 10:15 a.m.15 views

AZL-64061 CVE-2025-38051 affecting package kernel for versions less than 6.6.96.1-1

In the Linux kernel, the following vulnerability has been resolved: smb: client: Fix use-after-free in cifsfilldirent There is a race condition in the readdir concurrency process, which may access the rsp buffer after it has been released, triggering the following KASAN warning...

7CVSS6.8AI score0.00181EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/06/16 9:1 a.m.7 views

kernel: proc: fix UAF in proc_get_inode()

In the Linux kernel, the following vulnerability has been resolved: proc: fix UAF in procgetinode Fix race between rmmod and /proc/XXX's inode instantiation. The bug is that pde-procops don't belong to /proc, it belongs to a module, therefore dereferencing it after /proc entry has been registered...

7.8CVSS6.3AI score0.002EPSS
Exploits0References5
Rows per page
Query Builder