Lucene search
K

9203 matches found

Amazon
Amazon
added 2026/05/05 12:0 a.m.13 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: crypto: algifaead - Revert to operating out-of-place To mitigate this issue, we recommend that customers disable loading of the algifaead module by running the following commands as an administrator user: echo...

7.8CVSS6.8AI score0.96775EPSS
Exploits228
Amazon
Amazon
added 2026/05/05 12:0 a.m.16 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: crypto: algifaead - Revert to operating out-of-place To mitigate this issue, we recommend that customers disable loading of the algifaead module by running the following commands as an administrator user: echo...

7.8CVSS6.8AI score0.96775EPSS
Exploits228
Amazon
Amazon
added 2026/05/05 12:0 a.m.16 views

Important: kernel6.18

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: crypto: algifaead - Revert to operating out-of-place To mitigate this issue, we recommend that customers disable loading of the algifaead module by running the following commands as an administrator user: echo...

7.8CVSS7AI score0.96775EPSS
Exploits228
Amazon
Amazon
added 2026/05/05 12:0 a.m.13 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: crypto: algifaead - Revert to operating out-of-place To mitigate this issue, we recommend that customers disable loading of the algifaead module by running the following commands as an administrator user: echo...

7.8CVSS6.8AI score0.96775EPSS
Exploits228
Amazon
Amazon
added 2026/05/05 12:0 a.m.12 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: crypto: authencesn - reject too-short AAD assoclen /etc/modprobe.d/disable-algif.conf rmmod algifaead Some Amazon Linux 2 systems on the ARM64 architecture may fail the above rmmod command as they have the algifae...

7.8CVSS6.6AI score0.96775EPSS
Exploits228
Amazon
Amazon
added 2026/05/05 12:0 a.m.19 views

Important: kernel

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: crypto: authencesn - reject too-short AAD assoclen /etc/modprobe.d/disable-algif.conf rmmod algifaead Some Amazon Linux 2 systems on the ARM64 architecture may fail the above rmmod command as they have the algifae...

7.8CVSS6.5AI score0.96775EPSS
Exploits228
Amazon
Amazon
added 2026/05/05 12:0 a.m.13 views

Important: kernel6.12

Issue Overview: In the Linux kernel, the following vulnerability has been resolved: crypto: algifaead - Revert to operating out-of-place To mitigate this issue, we recommend that customers disable loading of the algifaead module by running the following commands as an administrator user: echo...

7.8CVSS6.8AI score0.96775EPSS
Exploits228
Tenable Nessus
Tenable Nessus
added 2026/05/05 12:0 a.m.12 views

Amazon Linux 2023 : bpftool6.12, kernel6.12, kernel6.12-devel (ALAS2023-2026-1650)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1650 advisory. In the Linux kernel, the following vulnerability has been resolved:crypto: algifaead - Revert to operating out-of-place To mitigate this issue, we recommend that customers disable loading of t...

7.8CVSS7.3AI score0.96775EPSS
Exploits228References12
Tenable Nessus
Tenable Nessus
added 2026/05/05 12:0 a.m.13 views

Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.4-2026-120 (ALASKERNEL-5.4-2026-120)

The version of kernel installed on the remote host is prior to 5.4.302-223.469. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.4-2026-120 advisory. In the Linux kernel, the following vulnerability has been resolved: crypto: authencesn - reject too-short...

7.8CVSS6.9AI score0.96775EPSS
Exploits228References14
Tenable Nessus
Tenable Nessus
added 2026/05/05 12:0 a.m.17 views

Amazon Linux 2 : kernel, --advisory ALAS2KERNEL-5.10-2026-116 (ALASKERNEL-5.10-2026-116)

The version of kernel installed on the remote host is prior to 5.10.252-250.1016. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2KERNEL-5.10-2026-116 advisory. In the Linux kernel, the following vulnerability has been resolved:crypto: algifaead - Revert to...

7.8CVSS7.4AI score0.96775EPSS
Exploits228References12
Trend Micro Simply Security
Trend Micro Simply Security
added 2026/05/05 12:0 a.m.15 views

InstallFix and Claude Code: How Fake Install Pages Lead to Real Compromise

Targeting multiple industries worldwide, the InstallFix campaign uses fake Claude AI installer pages to trick users into running malware that collects system information, disables security features, achieves persistence, and connects to attacker-controlled C&C servers for additional payloads...

5.8AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/05/04 7:42 p.m.11 views

CVE-2026-6525

A flaw was found in the IEEE 802.11 dissector in Wireshark. This issue occurs when malformed packets are decoded from a pcap file or the network, causing a NULL pointer dereference, resulting in a denial of service. Mitigation If the IEEE 802.11 protocol dissector is not being used, it can be...

5.5CVSS5.7AI score0.00181EPSS
Exploits1References5
CVE
CVE
added 2026/05/04 6:38 p.m.14 views

CVE-2026-42236

Summary: CVE-2026-42236 affects n8n, an open source workflow automation platform. The issue is in the MCP OAuth client registration endpoint, which accepted unauthenticated requests and stored client data without adequate resource controls. An unauthenticated remote attacker could perform a denia...

8.7CVSS5.8AI score0.00487EPSS
Exploits0References1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/04 2:26 p.m.7 views

Security Bulletin: Vulnerability in urllib3 affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge.

Summary Potential vulnerability in urllib3 has been identified that affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge - Assistant Builder Component. . The vulnerability have been addressed. Refer to details for additional information. Vulnerabili...

8.9CVSS6.8AI score0.02667EPSS
Exploits0Affected Software2
OSV
OSV
added 2026/05/04 1:12 p.m.7 views

JLSEC-2026-436

libcurl can in some circumstances reuse the wrong connection when asked to do an Negotiate-authenticated HTTP or HTTPS request. libcurl features a pool of recent connections so that subsequent requests can reuse an existing connection to avoid overhead. When reusing a connection a range of...

6.5CVSS7AI score0.00259EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/04 12:38 p.m.6 views

Security Bulletin: Denial of Service in urllib3 via Unbounded Decompression of Redirect Responses

Summary urllib3 is an HTTP client library for Python. urllib3's streaming API is designed for the efficient handling of large HTTP responses by reading the content in chunks, rather than loading the entire response body into memory at once. urllib3 can perform decoding or decompression based on t...

8.9CVSS6.8AI score0.02667EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2026/05/04 10:13 a.m.6 views

CVE-2026-6526

A flaw was found in Wireshark, a network protocol analyzer. By processing a specially crafted Real-Time Streaming Protocol RTSP packet, a remote attacker could cause the Wireshark application to crash, leading to a denial of service. This vulnerability affects the RTSP protocol dissector...

6.5CVSS5.8AI score0.00124EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2026/05/04 10:3 a.m.11 views

CVE-2026-6538

A flaw was found in Wireshark. A remote attacker could exploit a crash in the BEEP Blocks Extensible Exchange Protocol dissector by crafting a malicious BEEP packet. This vulnerability leads to a Denial of Service DoS, causing Wireshark to become unresponsive. Mitigation To mitigate this issue,...

6.5CVSS5.8AI score0.0018EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2026/05/04 12:0 a.m.11 views

PT-2026-36989

Name of the Vulnerable Software and Affected Versions phpVMS versions 7.x through 7.0.5 Description A critical issue in the legacy importer component allows unauthenticated access to a deprecated import feature. A remote attacker can trigger internal processes to modify or delete application data...

9.4CVSS5.8AI score0.01173EPSS
Exploits1References16
CloudLinux
CloudLinux
added 2026/05/02 12:55 a.m.10 views

glusterfs: Fix of 2 CVEs

CVE-2018-10923: posix: disable open/read/write on special files - CVE-2018-14651: server: don't allow '/' in basename...

8.8CVSS7AI score0.03225EPSS
Exploits0
Rows per page
Query Builder