Lucene search
K

173 matches found

OSV
OSV
added 2025/10/24 10:11 a.m.1 views

SUSE-SU-2025:20881-1 Security update for kernel-livepatch-MICRO-6-0_Update_5

This update for kernel-livepatch-MICRO-6-0Update5 fixes the following issues: - CVE-2025-21971: netsched: Prevent creation of classes with TCHROOT bsc1245794 - CVE-2025-38206: exfat: fix double free in delayedfree bsc1246075 - CVE-2025-38396: fs: export anoninodemakesecureinode and fix secretmem...

7.8CVSS6.7AI score0.00528EPSS
Exploits1References19
OSV
OSV
added 2025/10/24 10:10 a.m.4 views

SUSE-SU-2025:20919-1 Security update for kernel-livepatch-MICRO-6-0-RT_Update_11

This update for kernel-livepatch-MICRO-6-0-RTUpdate11 fixes the following issues: - CVE-2025-38566: sunrpc: fix handling of server side tls alerts bsc1248376 - CVE-2025-38499: cloneprivatemnt: make sure that caller has CAPSYSADMIN in the right userns bsc1248673 - CVE-2025-38678: netfilter:...

7.5CVSS5.8AI score0.00528EPSS
Exploits1References8
OSV
OSV
added 2025/10/24 10:10 a.m.3 views

SUSE-SU-2025:20880-1 Security update for kernel-livepatch-MICRO-6-0-RT_Update_11

This update for kernel-livepatch-MICRO-6-0-RTUpdate11 fixes the following issues: - CVE-2025-38566: sunrpc: fix handling of server side tls alerts bsc1248376 - CVE-2025-38499: cloneprivatemnt: make sure that caller has CAPSYSADMIN in the right userns bsc1248673 - CVE-2025-38678: netfilter:...

7.5CVSS7.3AI score0.00528EPSS
Exploits1References8
SUSE Linux
SUSE Linux
added 2025/10/24 10:10 a.m.4 views

Security update for kernel-livepatch-MICRO-6-0-RT_Update_10

This update for kernel-livepatch-MICRO-6-0-RTUpdate10 fixes the following issues: CVE-2025-38206: exfat: fix double free in delayedfree bsc1246075 CVE-2025-38396: fs: export anoninodemakesecureinode and fix secretmem LSM bypass bsc1247158 CVE-2025-38471: kernel: tls: always refresh the queue when...

9.2CVSS9.1AI score0.00528EPSS
Exploits1References28
OSV
OSV
added 2025/10/24 10:10 a.m.2 views

SUSE-SU-2025:20877-1 Security update for kernel-livepatch-MICRO-6-0-RT_Update_8

This update for kernel-livepatch-MICRO-6-0-RTUpdate8 fixes the following issues: - CVE-2025-38206: exfat: fix double free in delayedfree bsc1246075 - CVE-2025-38396: fs: export anoninodemakesecureinode and fix secretmem LSM bypass bsc1247158 - CVE-2025-38471: kernel: tls: always refresh the queue...

7.8CVSS5.8AI score0.00528EPSS
Exploits1References17
SUSE Linux
SUSE Linux
added 2025/10/24 10:10 a.m.2 views

Security update for kernel-livepatch-MICRO-6-0_Update_5

This update for kernel-livepatch-MICRO-6-0Update5 fixes the following issues: CVE-2025-21971: netsched: Prevent creation of classes with TCHROOT bsc1245794 CVE-2025-38206: exfat: fix double free in delayedfree bsc1246075 CVE-2025-38396: fs: export anoninodemakesecureinode and fix secretmem LSM...

9.2CVSS9.3AI score0.00528EPSS
Exploits1References36
OSV
OSV
added 2025/10/24 10:10 a.m.3 views

SUSE-SU-2025:20914-1 Security update for kernel-livepatch-MICRO-6-0-RT_Update_6

This update for kernel-livepatch-MICRO-6-0-RTUpdate6 fixes the following issues: - CVE-2025-38206: exfat: fix double free in delayedfree bsc1246075 - CVE-2025-38396: fs: export anoninodemakesecureinode and fix secretmem LSM bypass bsc1247158 - CVE-2025-38471: kernel: tls: always refresh the queue...

7.8CVSS6.5AI score0.00528EPSS
Exploits1References17
SUSE Linux
SUSE Linux
added 2025/10/24 9:55 a.m.2 views

Security update for kernel-livepatch-MICRO-6-0-RT_Update_4

This update for kernel-livepatch-MICRO-6-0-RTUpdate4 fixes the following issues: CVE-2025-21971: netsched: Prevent creation of classes with TCHROOT bsc1245794 CVE-2025-38206: exfat: fix double free in delayedfree bsc1246075 CVE-2025-38396: fs: export anoninodemakesecureinode and fix secretmem LSM...

9.2CVSS7.2AI score0.00528EPSS
Exploits1References36
Vulnrichment
Vulnrichment
added 2025/10/23 3:9 p.m.3 views

CVE-2025-59048 OpenBao AWS Plugin Vulnerable to Cross-Account IAM Role Impersonation in AWS Auth Method

OpenBao's AWS Plugin generates AWS access credentials based on IAM policies. Prior to version 0.1.1, the AWS Plugin is vulnerable to cross-account IAM role Impersonation in the AWS auth method. The vulnerability allows an IAM role from an untrusted AWS account to authenticate by impersonating a...

8.1CVSS6.4AI score0.00242EPSS
Exploits0References2
CVE
CVE
added 2025/10/23 3:9 p.m.30 views

CVE-2025-59048

OpenBao's AWS Plugin (auth-aws) is affected by CVE-2025-59048: prior to v0.1.1, cross-account IAM role impersonation is possible when an untrusted account has a role with the same name as a trusted account, enabling unauthorized access in multi-account AWS setups. The issue has a patch in v0.1.1;...

8.1CVSS6.4AI score0.00242EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2025/10/23 6:6 a.m.13 views

SUSE-SU-2025:3742-1 Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP6)

This update for the Linux Kernel 6.4.0-1506002322 fixes several issues. The following security issues were fixed: - CVE-2025-38678: netfilter: nftables: reject duplicate device on updates bsc1249534. - CVE-2025-38499: cloneprivatemnt: make sure that caller has CAPSYSADMIN in the right userns...

7.8CVSS8.6AI score0.00528EPSS
Exploits1References21
GithubExploit
GithubExploit
added 2025/10/10 1:53 a.m.241 views

Exploit for CVE-2021-4191

Nuclei POC Duplicate Detection Tool This tool is written in G...

5.3CVSS7AI score0.80004EPSS
Exploits4
GitLab Advisory Database
GitLab Advisory Database
added 2025/10/10 12:0 a.m.24 views

Alt Redirect: Potential Authentication Bypass by Spoofing through query-string stripping logic flaw

The Alt Redirect 1.6.3 addon for Statamic fails to consistently strip query string parameters when the "Query String Strip" feature is enabled. Case variations, encoded keys, and duplicates are not removed, allowing attackers to bypass sanitization. This may lead to cache poisoning, parameter...

6.5CVSS6.9AI score0.00213EPSS
Exploits0References7Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-59828

Malicious code in bioql PyPI...

6.3AI score0.00136EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-7039

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00535EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-30412

Malicious code in bioql PyPI...

9.8CVSS9.2AI score0.02384EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-29948

Malicious code in bioql PyPI...

8.8CVSS6.4AI score0.00577EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/09/26 12:0 a.m.5 views

PT-2025-46555

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a use-after-free issue within the drm/vmwgfx component, specifically in the validation process. Nodes stored in the validation duplicates hashtable, originating...

5CVSS6AI score0.00193EPSS
Exploits0
Cvelist
Cvelist
added 2025/09/15 2:46 p.m.8 views

CVE-2023-53256 firmware: arm_ffa: Fix FFA device names for logical partitions

In the Linux kernel, the following vulnerability has been resolved: firmware: armffa: Fix FFA device names for logical partitions Each physical partition can provide multiple services each with UUID. Each such service can be presented as logical partition with a unique combination of VM ID and...

0.00136EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/09/15 2:46 p.m.3 views

CVE-2023-53256 firmware: arm_ffa: Fix FFA device names for logical partitions

In the Linux kernel, the following vulnerability has been resolved: firmware: armffa: Fix FFA device names for logical partitions Each physical partition can provide multiple services each with UUID. Each such service can be presented as logical partition with a unique combination of VM ID and...

5.7AI score0.00136EPSS
Exploits0References4
Rows per page
Query Builder