Lucene search
K

18 matches found

EUVD
EUVD
added 2026/06/24 6:32 p.m.4 views

EUVD-2026-38821

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Fix oops due to out of scope access Below oops triggers when kill QEMU process: Oops: general protection fault, probably for non-canonical address 0x7fffffff844eaaa7: 0000 1 SMP NOPTI Call Trace: dorawspinlock+0xaa/0x...

5.7AI score0.00133EPSS
Exploits0References4
NVD
NVD
added 2026/06/24 5:17 p.m.8 views

CVE-2026-52953

In the Linux kernel, the following vulnerability has been resolved: iommu/vt-d: Fix oops due to out of scope access Below oops triggers when kill QEMU process: Oops: general protection fault, probably for non-canonical address 0x7fffffff844eaaa7: 0000 1 SMP NOPTI Call Trace: dorawspinlock+0xaa/0x...

7.1CVSS0.00133EPSS
Exploits0References3
CVE
CVE
added 2026/06/24 4:28 p.m.7 views

CVE-2026-52953

The CVE-2026-52953 issue affects the Linux kernel IOMMU VT-d subsystem, where an out-of-scope memory access could trigger a general protection fault (kernel oops) when a QEMU process is terminated. The triggering path involves domain_remove_dev_pasid and related IOMMU PASID handling, with a dummy...

7.1CVSS5.7AI score0.00133EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.6 views

PT-2026-51847

Content removed...

7.1CVSS5.8AI score0.00133EPSS
Exploits0References5
OSV
OSV
added 2026/01/15 10:43 a.m.2 views

SUSE-SU-2026:20085-1 Security update for bind

This update for bind fixes the following issues: - Upgrade to release 9.20.15 Security Fixes: CVE-2025-40778: Fixed cache poisoning attacks with unsolicited RRs bsc1252379 CVE-2025-40780: Fixed cache poisoning due to weak PRNG bsc1252380 CVE-2025-8677: Fixed resource exhaustion via malformed DNSK...

8.6CVSS6.7AI score0.1096EPSS
Exploits1References8
SUSE CVE
SUSE CVE
added 2025/07/29 11:27 p.m.8 views

SUSE CVE-2025-8283

A vulnerability was found in the netavark package, a network stack for containers used with Podman. Due to dns.podman search domain being removed, netavark may return external servers if a valid A/AAAA record is sent as a response. When creating a container with a given name, this name will be us...

3.7CVSS6.8AI score0.0029EPSS
Exploits0References3
OSV
OSV
added 2025/07/28 7:15 p.m.6 views

CVE-2025-8283

A vulnerability was found in the netavark package, a network stack for containers used with Podman. Due to dns.podman search domain being removed, netavark may return external servers if a valid A/AAAA record is sent as a response. When creating a container with a given name, this name will be us...

3.7CVSS5.5AI score0.0029EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2025/07/28 6:16 p.m.7 views

CVE-2025-8283

A vulnerability was found in the netavark package, a network stack for containers used with Podman. Due to dns.podman search domain being removed, netavark may return external servers if a valid A/AAAA record is sent as a response. When creating a container with a given name, this name will be us...

3.7CVSS5.7AI score0.0029EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/07/28 12:0 a.m.4 views

Red Hat Enterprise Linux 安全漏洞

Red Hat Enterprise Linux is a Linux operating system for business users from the American company Red Hat. A security vulnerability exists in Red Hat Enterprise Linux that stems from a DNS search domain removal that could cause connections to be forwarded to an unexpected external server...

3.7CVSS6.3AI score0.0029EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/05/22 9:12 a.m.6 views

CVE-2018-20864

cPanel before 76.0.8 allows a persistent Virtual FTP accounts after removal of its associated domain SEC-454...

6.5CVSS7AI score0.00772EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2024/05/15 12:0 a.m.7 views

The vulnerability of the scmi_perf_domain_remove() function in the drivers/pmdomain/arm/scmi_perf_domain.c driver of the System Control and Management Interface (SCMI) kernel of the Linux operating system allows a malicious actor to cause a service failure.

The vulnerability of the scmiperfdomainremove function in the drivers/pmdomain/arm/scmiperfdomain.c file of the System Control and Management Interface SCMI driver for the Linux operating system is related to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker ...

5.5CVSS5.9AI score0.00195EPSS
Exploits0References7Affected Software1
RedHat Linux
RedHat Linux
added 2022/11/08 9:32 a.m.3 views

kernel: PM: domains: Fix sleep-in-atomic bug caused by genpd_debug_remove()

In the Linux kernel, the following vulnerability has been resolved: PM: domains: Fix sleep-in-atomic bug caused by genpddebugremove When a genpd with GENPDFLAGIRQSAFE gets removed, the following sleep-in-atomic bug will be seen, as genpddebugremove will be called with a spinlock being held...

5.5CVSS6.6AI score0.00252EPSS
Exploits0References5
OSV
OSV
added 2022/11/01 1:15 p.m.31 views

CVE-2022-42323

Xenstore: Cooperating guests can create arbitrary numbers of nodes This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Since the fix of XSA-322 any Xenstore node owned by a removed domain will be modified to be owned by...

5.5CVSS2.4AI score
Exploits0References8
OSV
OSV
added 2022/11/01 1:15 p.m.2 views

DEBIAN-CVE-2022-42322

Xenstore: Cooperating guests can create arbitrary numbers of nodes This CNA information record relates to multiple CVEs; the text explains which aspects/vulnerabilities correspond to which CVE. Since the fix of XSA-322 any Xenstore node owned by a removed domain will be modified to be owned by...

5.5CVSS5.8AI score0.00277EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2020/03/04 12:0 a.m.3 views

The vulnerability of the server management application CentOS Web Panel arises due to insufficient validation of input data. This allows a hacker to remove a domain from a user’s account.

The vulnerability of the CentOS Web Panel server management application exists due to insufficient validation of input data. Exploiting this vulnerability could allow a malicious actor to remove a domain from a user’s account remotely...

4.3CVSS5.5AI score0.015EPSS
Exploits1References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2019/10/01 12:0 a.m.4 views

The vulnerability of the astra-winbind component of the Astra Linux operating system allows a perpetrator to gain access to confidential data and compromise its integrity.

The vulnerability of the astra-winbind component of the Astra Linux operating system is related to incorrect cleaning of PAM records when a node is removed from the domain, as well as the creation of publicly accessible resources during initialization. Exploiting this vulnerability allows an...

5.2CVSS5.5AI score
Exploits0References3
OSV
OSV
added 2019/07/30 3:15 p.m.3 views

CVE-2018-20864

cPanel before 76.0.8 allows a persistent Virtual FTP accounts after removal of its associated domain SEC-454...

6.5CVSS5.8AI score0.00772EPSS
Exploits0References1
Prion
Prion
added 2019/07/30 3:15 p.m.16 views

Design/Logic Flaw

cPanel before 76.0.8 allows a persistent Virtual FTP accounts after removal of its associated domain SEC-454...

6.4CVSS6.5AI score0.00772EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder