Lucene search
K

14 matches found

OSV
OSV
added 2026/04/25 5:47 a.m.7 views

OESA-2026-1998 sudo security update

Sudo is a program designed to allow a sysadmin to give limited root privileges to users and log root activity. The basic philosophy is to give as few privileges as possible but still allow people to get their work done. Security Fixes: In Sudo through 1.9.17p2 before 3e474c2, a failure of a setui...

7.8CVSS5.3AI score0.00173EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/04/17 8:42 p.m.8 views

CVE-2026-32107

A flaw was found in xrdp, an open source Remote Desktop Protocol RDP server. The session execution component did not properly handle an error during the privilege drop process. This improper privilege management could allow an authenticated local attacker to escalate privileges to root and execut...

8.8CVSS6.3AI score0.00159EPSS
Exploits0References5
NVD
NVD
added 2026/04/17 8:16 p.m.7 views

CVE-2026-32107

xrdp is an open source RDP server. In versions through 0.10.5, the session execution component did not properly handle an error during the privilege drop process. This improper privilege management could allow an authenticated local attacker to escalate privileges to root and execute arbitrary co...

8.8CVSS0.00159EPSS
Exploits0References2
CVE
CVE
added 2026/04/03 2:21 a.m.122 views

CVE-2026-35535

CVE-2026-35535 affects Sudo up to 1.9.17p2, before the patch identified as 3e474c2. A failure in a setuid/setgid/setgroups call during privilege drop prior to invoking the mailer is not fatal and can lead to local privilege escalation. The vulnerability is restricted to local attackers with exist...

7.8CVSS5.9AI score0.00173EPSS
Exploits0References33Affected Software1
RedHat Linux
RedHat Linux
added 2024/06/25 12:33 a.m.19 views

kernel: nf_tables: use-after-free vulnerability in the nft_verdict_init() function

A flaw was found in the Netfilter subsystem in the Linux kernel. This issue occurs in the nftverdictinit function, allowing positive values as a drop error within the hook verdict, therefore, the nfhookslow function can cause a double-free vulnerability when NFDROP is issued with a drop error tha...

7.8CVSS6.7AI score0.28058EPSS
Exploits16References7
RedHat Linux
RedHat Linux
added 2024/06/25 12:21 a.m.4 views

kernel: nf_tables: use-after-free vulnerability in the nft_verdict_init() function

A flaw was found in the Netfilter subsystem in the Linux kernel. This issue occurs in the nftverdictinit function, allowing positive values as a drop error within the hook verdict, therefore, the nfhookslow function can cause a double-free vulnerability when NFDROP is issued with a drop error tha...

7.8CVSS6.7AI score0.28058EPSS
Exploits16References7
RedHat Linux
RedHat Linux
added 2024/05/28 2:8 p.m.4 views

kernel: nf_tables: use-after-free vulnerability in the nft_verdict_init() function

A flaw was found in the Netfilter subsystem in the Linux kernel. This issue occurs in the nftverdictinit function, allowing positive values as a drop error within the hook verdict, therefore, the nfhookslow function can cause a double-free vulnerability when NFDROP is issued with a drop error tha...

7.8CVSS6.7AI score0.28058EPSS
Exploits16References7
RedHat Linux
RedHat Linux
added 2024/04/30 9:57 a.m.3 views

kernel: nf_tables: use-after-free vulnerability in the nft_verdict_init() function

A flaw was found in the Netfilter subsystem in the Linux kernel. This issue occurs in the nftverdictinit function, allowing positive values as a drop error within the hook verdict, therefore, the nfhookslow function can cause a double-free vulnerability when NFDROP is issued with a drop error tha...

7.8CVSS6.7AI score0.28058EPSS
Exploits16References7
RedHat Linux
RedHat Linux
added 2024/04/02 4:4 p.m.2 views

kernel: nf_tables: use-after-free vulnerability in the nft_verdict_init() function

A flaw was found in the Netfilter subsystem in the Linux kernel. This issue occurs in the nftverdictinit function, allowing positive values as a drop error within the hook verdict, therefore, the nfhookslow function can cause a double-free vulnerability when NFDROP is issued with a drop error tha...

7.8CVSS6.7AI score0.28058EPSS
Exploits16References7
Tenable Nessus
Tenable Nessus
added 2024/03/21 12:0 a.m.58 views

Ubuntu 23.10 : Linux kernel (ARM laptop) vulnerabilities (USN-6707-2)

The remote Ubuntu 23.10 host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-6707-2 advisory. Lonial Con discovered that the netfilter subsystem in the Linux kernel did not properly handle element deactivation in certain cases, leading to a...

7.8CVSS8AI score0.28058EPSS
Exploits16References5
RedHat Linux
RedHat Linux
added 2024/03/12 12:56 a.m.10 views

kernel: nf_tables: use-after-free vulnerability in the nft_verdict_init() function

A flaw was found in the Netfilter subsystem in the Linux kernel. This issue occurs in the nftverdictinit function, allowing positive values as a drop error within the hook verdict, therefore, the nfhookslow function can cause a double-free vulnerability when NFDROP is issued with a drop error tha...

7.8CVSS6.7AI score0.28058EPSS
Exploits16References7
RedHat Linux
RedHat Linux
added 2024/02/28 12:48 p.m.4 views

kernel: nf_tables: use-after-free vulnerability in the nft_verdict_init() function

A flaw was found in the Netfilter subsystem in the Linux kernel. This issue occurs in the nftverdictinit function, allowing positive values as a drop error within the hook verdict, therefore, the nfhookslow function can cause a double-free vulnerability when NFDROP is issued with a drop error tha...

7.8CVSS6.7AI score0.28058EPSS
Exploits16References7
RedHat Linux
RedHat Linux
added 2024/02/21 12:33 a.m.3 views

kernel: nf_tables: use-after-free vulnerability in the nft_verdict_init() function

A flaw was found in the Netfilter subsystem in the Linux kernel. This issue occurs in the nftverdictinit function, allowing positive values as a drop error within the hook verdict, therefore, the nfhookslow function can cause a double-free vulnerability when NFDROP is issued with a drop error tha...

7.8CVSS6.7AI score0.28058EPSS
Exploits16References7
OSV
OSV
added 2024/01/31 1:15 p.m.15 views

UBUNTU-CVE-2024-1086

A use-after-free vulnerability in the Linux kernel's netfilter: nftables component can be exploited to achieve local privilege escalation. The nftverdictinit function allows positive values as drop error within the hook verdict, and hence the nfhookslow function can cause a double free...

7.8CVSS6.7AI score0.28058EPSS
Exploits16References25
Rows per page
Query Builder