CVE-2026-46414

Microsoft UFO open-source framework for intelligent automation across devices and platforms. In 3.0.1-4-ge2626659, Microsoft UFO's WebSocket control plane trusts client-supplied identity and role fields in task messages. A client connection can register as a normal device, but later send a TASK...

PT-2026-44119

Name of the Vulnerable Software and Affected Versions Microsoft UFO version 3.0.1-4-ge2626659 Description The WebSocket control plane trusts client-supplied identity and role fields in task messages. An authenticated WebSocket client with a shared server token can register as a normal device and...

CVE-2026-43454

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: Fix for duplicate device in netdev hooks When handling NETDEVREGISTER notification, duplicate device registration must be avoided since the device may have been added by nftnetdevhookalloc already when creati...

Important: Red Hat Security Advisory: keylime security update

An update for keylime is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

keylime: Keylime: Registrar allows identity takeover via duplicate UUID registration

A vulnerability has been identified in keylime where an attacker can exploit this flaw by registering a new agent using a different Trusted Platform Module TPM device but claiming an existing agent's unique identifier UUID. This action overwrites the legitimate agent's identity, enabling the...

CVE-2022-50304

CVE-2022-50304 affects the Linux kernel mtd/core with a resource leak in init_mtd() that could impact systems registering MTD devices. The issue was fixed in the kernel code (references include commits such as 26c304a3f136009c5a2a04e2bf3ac6aa25aabcb4 and 1aadf01e5076b9ab6bf294b9622335c651314895)....

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from an incorrect setting of funcgraph-args in the fgraph tracker, which could lead to double registration...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a duplicate registration issue caused by the felix driver performing operations even when the labeling...

kernel: Bluetooth: ISO: Fix multiple init when debugfs is disabled

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: ISO: Fix multiple init when debugfs is disabled If btdebugfs is not created successfully, which happens if either CONFIGDEBUGFS or CONFIGDEBUGFSALLOWALL is unset, then isoinit returns early and does not set isoinited t...

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: Bluetooth: ISO: Fixed multiple calls to isoinit when debugfs is disabled. If bt DebugFS is not created successfully—which occurs if CONFIGDEBUGFS or CONFIGDEBUGFSALLOWALL is not set—then isoinit returns early without setting...

Vikingboard 0.2 Beta - SQL Column Truncation

Vikingboard 0.2 Beta - SQL Column Truncation --------------------------------------------------------------------- Vikingboard = 0.2 Beta SQL Column Truncation --------------------------------------------------------------------- Discovered By: StAkeR - StAkeRathotmaildotit Discovered On:...