Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that originates from a deadlock issue with the statelock spinlock between ks8851startxmitspi and ks8851irq with SMP enabled...

TOTOLINK A3100R 命令注入漏洞

The TOTOLINK A3100R is a wireless router. The TOTOLINK A3100R suffers from a command injection vulnerability that stems from improper handling of the telnetenabled parameter. An attacker can exploit this vulnerability to obtain sensitive information...

PT-2024-37725

Name of the Vulnerable Software and Affected Versions Campaign Monitor for WordPress plugin for WordPress versions up to, and including, 2.8.15 Description The issue is due to the plugin not properly restricting direct access to "/forms/views/admin/create.php" and display errors being enabled. Th...

AdTran SRG 834-5 HDC17600021F1 安全漏洞

The AdTran SRG 834-5 HDC17600021F1 is a Gigabit Ethernet gateway from Adtran USA. A security vulnerability exists in the AdTran SRG 834-5 HDC17600021F1 SmartOS version 11.1.1.1, which stems from the device having SSH enabled by default, which allows an attacker to gain unauthorized root access by...

PT-2024-5386 · Totolink · Totolink Cp900L

Name of the Vulnerable Software and Affected Versions: TOTOLINK CP900 version 6.3c.566 Description: A critical issue has been found in the Telnet Service component, specifically affecting the setTelnetCfg function. The manipulation of the telnet enabled argument leads to command injection. This...

CVE-2024-6535

A flaw was found in Skupper. When Skupper is initialized with the console-enabled and with console-auth set to Openshift, it configures the openshift oauth-proxy with a static cookie-secret. In certain circumstances, this may allow an attacker to bypass authentication to the Skupper console via a...

UBUNTU-CVE-2022-48848

In the Linux kernel, the following vulnerability has been resolved: tracing/osnoise: Do not unregister events twice Nicolas reported that using: trace-cmd record -e all -M 10 -p osnoise --poll Resulted in the following kernel warning: ------------ cut here ------------ WARNING: CPU: 0 PID: 1217 a...

Recovering Virtual Machines from Failed Pool Member

In the event of a XenServer host power failure, any Virtual Machines VMs running on that host might not be displayed in XenCenter. This is the expected behavior without High Availability HA enabled. The following is a XenCenter screen shot of the pool prior to the failure of the host named...

CVE-2024-40954

In the Linux kernel, the following vulnerability has been resolved: net: do not leave a dangling sk pointer, when socket creation fails It is possible to trigger a use-after-free by: attaching an fentry probe to sockrelease and the probe calling the bpfgetsocketcookie helper running traceroute -I...

CVE-2024-40954

The CVE-2024-40954 entry concerns a Linux kernel UAF: a dangling sk pointer may be created on socket creation failure when an fentry probe hits __sock_release() and bpf_get_socket_cookie() is invoked, enabling a use-after-free in __sock_gen_cookie. Reproducing scenario described via traceroute -I...

CVE-2024-40954 net: do not leave a dangling sk pointer, when socket creation fails

In the Linux kernel, the following vulnerability has been resolved: net: do not leave a dangling sk pointer, when socket creation fails It is possible to trigger a use-after-free by: attaching an fentry probe to sockrelease and the probe calling the bpfgetsocketcookie helper running traceroute -I...

CVE-2024-6501

A flaw was found in NetworkManager. When a system running NetworkManager with DEBUG logs enabled and an interface eth1 configured with LLDP enabled, a malicious user could inject a malformed LLDP packet. NetworkManager would crash, leading to a denial of service...

CVE-2024-6222

In Docker Desktop before v4.29.0, an attacker who has gained access to the Docker Desktop VM through a container breakout can further escape to the host by passing extensions and dashboard related IPC messages. Docker Desktop v4.29.0 https://docs.docker.com/desktop/release-notes/4290 fixes the...

CVE-2024-37180 [CVE-2024-37180] Information Disclosure vulnerability in SAP NetWeaver Application Server for ABAP and ABAP Platform

Under certain conditions SAP NetWeaver Application Server for ABAP and ABAP Platform allows an attacker to access remote-enabled function module with no further authorization which would otherwise be restricted, the function can be used to read non-sensitive information with low impact on...

AI-Powered Super Soldiers Are More Than Just a Pipe Dream

The US military has abandoned its half-century dream of a suit of powered armor in favor of a “hyper enabled operator,” a tactical AI assistant for special operations forces...

PT-2024-29217

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A deadlock vulnerability has been resolved in the Linux kernel, specifically in the net: ks8851 module. The issue occurs when SMP is enabled and spinlocks are functional, causing a...

PT-2024-10116

Name of the Vulnerable Software and Affected Versions NetworkManager affected versions not specified Description A flaw was found in NetworkManager, allowing a malicious user to inject a malformed LLDP packet when the system is running NetworkManager with DEBUG logs enabled and an interface...

Exploit for Unrestricted Upload of File with Dangerous Type in Git

CVE-2024-32002 PoC 1. You must set up the git's symbolic link...

PT-2024-28055 · Nptd-Rs · Nptd-Rs

Name of the Vulnerable Software and Affected Versions: nptd-rs versions prior to 1.1.3 Description: The issue is related to a missing limit for accepted NTS-KE connections in nptd-rs, a tool for synchronizing computer clocks that implements the NTP and NTS protocols. This allows an unauthenticate...

PT-2024-7396 · Juniper Networks · Junos Evolved +1

Name of the Vulnerable Software and Affected Versions: Junos OS versions prior to 21.4R3-S8 Junos OS versions 22.2 prior to 22.2R3-S5 Junos OS versions 22.3 prior to 22.3R3-S4 Junos OS versions 22.4 prior to 22.4R3-S3 Junos OS versions 23.2 prior to 23.2R2-S2 Junos OS versions 23.4 prior to 23.4R...