Lucene search
+L

78 matches found

Cvelist
Cvelist
added 2025/06/19 3:10 p.m.15 views

CVE-2025-52464 Meshtastic Repeated Public and Private Keypairs

Meshtastic is an open source mesh networking solution. In versions from 2.5.0 to before 2.6.11, the flashing procedure of several hardware vendors was resulting in duplicated public/private keys. Additionally, the Meshtastic was failing to properly initialize the internal randomness pool on some...

9.5CVSS0.00418EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/22 5:33 p.m.9 views

CVE-2020-27507

The Kamailio SIP before 5.5.0 server mishandles INVITE requests with duplicated fields and overlength tag, leading to a buffer overflow that crashes the server or possibly have unspecified other impact...

9.8CVSS7.9AI score0.01176EPSS
Exploits1
Ubuntu
Ubuntu
added 2025/04/07 1:35 a.m.15 views

USN-7416-1: Kamailio vulnerabilities

Stelios Tsampas discovered that Kamailio did not correctly handle certain memory operations, which could lead to a buffer overflow. A remote attacker could possibly use this issue to cause a denial of service or execute arbitrary code. This issue only affected Ubuntu 16.04 LTS. CVE-2016-2385...

10CVSS7.9AI score0.30518EPSS
Exploits6
OSV
OSV
added 2024/11/06 5:52 p.m.6 views

CLSA-2024-1730915558 Update of ca-certificates

update to CKBI 2.69 from NSS 3.103 - updated certificates: - Certificate "GLOBALTRUST 2020" - Certificate "OISTE WISeKey Global Root GC CA" - removed certificates: - Certificate "Security Communication Root CA" - Certificate "Camerfirma Chambers of Commerce Root" - Certificate "Chambers of...

5.8AI score
Exploits0References1
OSV
OSV
added 2024/10/21 6:15 p.m.5 views

UBUNTU-CVE-2024-49952

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: prevent nfskbduplicated corruption syzbot found that nfdupipv4 or nfdupipv6 could write per-cpu variable nfskbduplicated in an unsafe way 1. Disabling preemption as hinted by the splat is not enough, we have ...

5.5CVSS6.1AI score0.00277EPSS
Exploits0References47
SUSE CVE
SUSE CVE
added 2024/07/16 2:34 a.m.11 views

SUSE CVE-2024-40932

In the Linux kernel, the following vulnerability has been resolved: drm/exynos/vidi: fix memory leak in .getmodes The duplicated EDID is never freed. Fix it...

4.4CVSS6.5AI score0.00258EPSS
Exploits0References16
OSV
OSV
added 2024/06/04 5:18 p.m.20 views

GHSA-277C-5VVJ-9PWX Flooding Server with Thumbnail files

Details 1. All Imagick supported Fileformats are served without filtering The Thumbnail endpoint does not check against any filters what file formats should be served. We can transcode the image in all formats imagemagick supports. With that we can create Files that are much larger in filesize th...

7.5CVSS7.5AI score0.00763EPSS
Exploits1References5
NVD
NVD
added 2024/02/27 7:4 p.m.15 views

CVE-2021-46956

In the Linux kernel, the following vulnerability has been resolved: virtiofs: fix memory leak in virtiofsprobe When accidentally passing twice the same tag to qemu, kmemleak ended up reporting a memory leak in virtiofs. Also, looking at the log I saw the following error that's when I realised the...

5.5CVSS7.6AI score0.00232EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2024/02/27 7:4 p.m.6 views

CVE-2021-46956

In the Linux kernel, the following vulnerability has been resolved: virtiofs: fix memory leak in virtiofsprobe When accidentally passing twice the same tag to qemu, kmemleak ended up reporting a memory leak in virtiofs. Also, looking at the log I saw the following error that's when I realised the...

5.5CVSS6.2AI score0.00232EPSS
Exploits0References6Affected Software1
SUSE CVE
SUSE CVE
added 2024/02/27 3:56 a.m.4 views

SUSE CVE-2023-52459

In the Linux kernel, the following vulnerability has been resolved: media: v4l: async: Fix duplicated list deletion The list deletion call dropped here is already called from the helper function in the line before. Having a second listdel call results in either a warning with CONFIGDEBUGLIST=y:...

5.5CVSS7.6AI score0.00224EPSS
Exploits0References4
Prion
Prion
added 2024/02/23 3:15 p.m.16 views

Null pointer dereference

In the Linux kernel, the following vulnerability has been resolved: media: v4l: async: Fix duplicated list deletion The list deletion call dropped here is already called from the helper function in the line before. Having a second listdel call results in either a warning with CONFIGDEBUGLIST=y:...

7.3AI score0.00224EPSS
Exploits0References3
OSV
OSV
added 2024/02/23 2:46 p.m.8 views

CVE-2023-52459 media: v4l: async: Fix duplicated list deletion

In the Linux kernel, the following vulnerability has been resolved: media: v4l: async: Fix duplicated list deletion The list deletion call dropped here is already called from the helper function in the line before. Having a second listdel call results in either a warning with CONFIGDEBUGLIST=y:...

5.5CVSS6AI score0.00224EPSS
Exploits0References6
OSV
OSV
added 2023/10/11 3:17 p.m.4 views

USN-6429-2 curl vulnerability

USN-6429-1 fixed a vulnerability in curl. This update provides the corresponding update for Ubuntu 14.04 LTS, Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. Original advisory details: It was discovered that curl incorrectly handled cookies when an application duplicated certain handles. A local attacker...

3.7CVSS6.8AI score0.06208EPSS
Exploits0References2
Prion
Prion
added 2023/08/15 7:15 p.m.7 views

Authentication flaw

Rejected reason: Broadcom were unable to duplicate the attack as described by Intel DCG Team...

6.8AI score
Exploits0
Prion
Prion
added 2023/06/13 10:15 p.m.21 views

Design/Logic Flaw

Discourse is an open source discussion platform. Prior to version 3.0.4 of the stable branch and version 3.1.0.beta5 of the beta and tests-passed branches, multiple duplicate topics could be created if topic embedding is enabled. This issue is patched in version 3.0.4 of the stable branch and...

5CVSS5.2AI score0.00423EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2023/03/15 8:15 p.m.23 views

Buffer overflow

The Kamailio SIP before 5.5.0 server mishandles INVITE requests with duplicated fields and overlength tag, leading to a buffer overflow that crashes the server or possibly have unspecified other impact...

7.5CVSS10AI score0.01176EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2023/03/15 8:15 p.m.15 views

UBUNTU-CVE-2020-27507

The Kamailio SIP before 5.5.0 server mishandles INVITE requests with duplicated fields and overlength tag, leading to a buffer overflow that crashes the server or possibly have unspecified other impact...

9.8CVSS7.6AI score0.01176EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2023/03/15 12:0 a.m.3 views

PT-2023-11761 · Unknown +2 · Kamailio Sip +2

Name of the Vulnerable Software and Affected Versions: Kamailio SIP versions prior to 5.5.0 Description: The issue is related to the mishandling of INVITE requests with duplicated fields and overlength tags by the Kamailio SIP server, leading to a buffer overflow. This can cause the server to cra...

9.8CVSS9.6AI score0.03581EPSS
Exploits2References24
Code423n4
Code423n4
added 2023/03/09 12:0 a.m.11 views

Upgraded Q -> 2 from #17 [1678363178694]

Judge has assessed an item in Issue 17 as 2 risk. The relevant finding follows: 5. Duplicated swingTrader addresses can be added which make sellMalt/buyMalt working incorrectly Details In function addSwingTrader, there is no check to ensure swingTrader address is not existed. So admin can make a...

6.8AI score
Exploits0
CNNVD
CNNVD
added 2023/02/20 12:0 a.m.4 views

WordPress Plugin Post Duplicator 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. WordPress Plugin Post Duplicator version 2....

6.1CVSS4.7AI score0.00633EPSS
Exploits0References6
Rows per page
Query Builder