Lucene search
K

4730 matches found

Tenable Nessus
Tenable Nessus
added 2025/08/09 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2024-26965

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - clk: qcom: mmcc-msm8974: fix terminating of frequency table arrays The frequency table arrays are supposed to be terminated with an empty element. Add such entr...

7.8CVSS6.6AI score0.0026EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/09 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2025-37749

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: ppp: Add bound checking for skb data on pppsynctxmung Ensure we have enough data in linear buffer from skb before accessing initial bytes. This prevents...

7.1CVSS6.9AI score0.00167EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/08 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2025-37956

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ksmbd: prevent rename with empty string Client can send empty newname string to ksmbd server. It will cause a kernel oops from dalloc. This patch return the err...

5.5CVSS6.6AI score0.00149EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/08 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2017-2618

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the Linux kernel's handling of clearing SELinux attributes on /proc/pid/attr files before 4.9.10. An empty null write to this file can crash...

5.5CVSS6.4AI score0.00459EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2025/08/07 7:0 a.m.3 views

fs/nfs/read: fix double-unlock bug in nfs_return_empty_folio()

...

7.8CVSS7AI score0.00153EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2025-38077

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: platform/x86: dell-wmi-sysman: Avoid buffer overflow in currentpasswordstore If the 'buf'...

7.8CVSS6.6AI score0.00183EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2025-38283

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - hisiaccvfiopci: bugfix live migration function without VF device driver If the VF device driver is not loaded in the Guest OS and we attempt to perform device...

5.5CVSS6.4AI score0.00155EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2025-38400

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - nfs: Clean up /proc/net/rpc/nfs when nfsfsprocnetinit fails. syzbot reported a warning below 1 following a fault injection in nfsfsprocnetinit. 0 When...

5.5CVSS6.6AI score0.00183EPSS
Exploits0References3
OSV
OSV
added 2025/08/06 9:15 p.m.3 views

CVE-2025-51054

Vedo Suite 2024.17 is vulnerable to Incorrect Access Control, which allows remote attackers to obtain a valid high privilege JWT token without prior authentication via sending an empty HTTP POST request to the /autologin/ API endpoint...

6.5CVSS5.9AI score
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/07/28 11:22 p.m.3 views

SUSE CVE-2025-38468

In the Linux kernel, the following vulnerability has been resolved: net/sched: Return NULL when htblookupleaf encounters an empty rbtree htblookupleaf has a BUGON that can trigger with the following: tc qdisc del dev lo root tc qdisc add dev lo root handle 1: htb default 1 tc class add dev lo...

5.5CVSS6.5AI score0.00162EPSS
Exploits0References30
SUSE CVE
SUSE CVE
added 2025/07/28 11:22 p.m.2 views

SUSE CVE-2025-38497

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: configfs: Fix OOB read on empty string write When writing an empty string to either 'qwsign' or 'landingPage' sysfs attributes, the store functions attempt to access pagel - 1 before validating that the length 'l' is...

5.3CVSS6.5AI score0.00153EPSS
Exploits0References28
OSV
OSV
added 2025/07/28 2:0 p.m.1 views

MINI-QMW3-5P36-W7WR

Bulletin has no description...

6.5CVSS7.2AI score0.0045EPSS
Exploits0
OSV
OSV
added 2025/07/28 12:15 p.m.1 views

DEBIAN-CVE-2025-38497

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: configfs: Fix OOB read on empty string write When writing an empty string to either 'qwsign' or 'landingPage' sysfs attributes, the store functions attempt to access pagel - 1 before validating that the length 'l' is...

7.1CVSS5.8AI score0.00153EPSS
Exploits0References1
OSV
OSV
added 2025/07/28 12:15 p.m.5 views

AZL-72965 CVE-2025-38468 affecting package kernel for versions less than 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: net/sched: Return NULL when htblookupleaf encounters an empty rbtree htblookupleaf has a BUGON that can trigger with the following: tc qdisc del dev lo root tc qdisc add dev lo root handle 1: htb default 1 tc class add dev lo...

5.5CVSS5.8AI score0.00162EPSS
Exploits0References1
OSV
OSV
added 2025/07/28 12:15 p.m.4 views

DEBIAN-CVE-2025-38468

In the Linux kernel, the following vulnerability has been resolved: net/sched: Return NULL when htblookupleaf encounters an empty rbtree htblookupleaf has a BUGON that can trigger with the following: tc qdisc del dev lo root tc qdisc add dev lo root handle 1: htb default 1 tc class add dev lo...

5.5CVSS5.6AI score0.00162EPSS
Exploits0References1
OSV
OSV
added 2025/07/28 12:15 p.m.7 views

AZL-65910 CVE-2025-38468 affecting package kernel for versions less than 6.6.104.2-1

In the Linux kernel, the following vulnerability has been resolved: net/sched: Return NULL when htblookupleaf encounters an empty rbtree htblookupleaf has a BUGON that can trigger with the following: tc qdisc del dev lo root tc qdisc add dev lo root handle 1: htb default 1 tc class add dev lo...

5.5CVSS6.3AI score0.00162EPSS
Exploits0References1
OSV
OSV
added 2025/07/28 12:15 p.m.2 views

UBUNTU-CVE-2025-38468

In the Linux kernel, the following vulnerability has been resolved: net/sched: Return NULL when htblookupleaf encounters an empty rbtree htblookupleaf has a BUGON that can trigger with the following: tc qdisc del dev lo root tc qdisc add dev lo root handle 1: htb default 1 tc class add dev lo...

5.5CVSS6.2AI score0.00162EPSS
Exploits0References39
OSV
OSV
added 2025/07/28 11:22 a.m.4 views

CVE-2025-38497 usb: gadget: configfs: Fix OOB read on empty string write

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: configfs: Fix OOB read on empty string write When writing an empty string to either 'qwsign' or 'landingPage' sysfs attributes, the store functions attempt to access pagel - 1 before validating that the length 'l' is...

7.1CVSS6.4AI score0.00153EPSS
Exploits0References13
CVE
CVE
added 2025/07/28 11:22 a.m.86 views

CVE-2025-38497

CVE-2025-38497 (Linux kernel) affects usb gadget configfs: writing an empty string to the qw_sign or landingPage sysfs attributes can dereference page[l-1] before length validation, causing an OOB read. The fix adds an early length check in os_desc_qw_sign_store() and webusb_landingPage_store() t...

7.1CVSS6.3AI score0.00153EPSS
Exploits0References10Affected Software1
Debian CVE
Debian CVE
added 2025/07/28 11:22 a.m.4 views

CVE-2025-38497

In the Linux kernel, the following vulnerability has been resolved: usb: gadget: configfs: Fix OOB read on empty string write When writing an empty string to either 'qwsign' or 'landingPage' sysfs attributes, the store functions attempt to access pagel - 1 before validating that the length 'l' is...

7.1CVSS5.8AI score0.00153EPSS
Exploits0
Rows per page
Query Builder