Lucene search
K

5465 matches found

OSV
OSV
added 2025/07/04 2:15 p.m.4 views

UBUNTU-CVE-2025-38223

In the Linux kernel, the following vulnerability has been resolved: ceph: avoid kernel BUG for encrypted inode with unaligned file size The generic/397 test hits a BUGON for the case of encrypted inode with unaligned file size for example, 33K or 1K: 877.737811 run fstests generic/397 at 2025-01-...

6.8CVSS5.7AI score0.00088EPSS
Exploits0References12
Cvelist
Cvelist
added 2025/07/04 1:37 p.m.6 views

CVE-2025-38223 ceph: avoid kernel BUG for encrypted inode with unaligned file size

In the Linux kernel, the following vulnerability has been resolved: ceph: avoid kernel BUG for encrypted inode with unaligned file size The generic/397 test hits a BUGON for the case of encrypted inode with unaligned file size for example, 33K or 1K: 877.737811 run fstests generic/397 at 2025-01-...

0.00088EPSS
Exploits0References3
CVE
CVE
added 2025/07/04 1:37 p.m.45 views

CVE-2025-38223

CVE-2025-38223 : Linux kernel fix for a kernel BUG triggered by an encrypted inode with an unaligned file size (e.g., 33K or 1K) in Ceph-related code paths. The issue manifests as a kernel OOPS/crash via a bug in ceph_msg_data_cursor_init in net/ceph/messenger.c during ceph_con_workfn processing,...

5.5CVSS6.2AI score0.00088EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2025/07/04 1:37 p.m.5 views

CVE-2025-38223 ceph: avoid kernel BUG for encrypted inode with unaligned file size

In the Linux kernel, the following vulnerability has been resolved: ceph: avoid kernel BUG for encrypted inode with unaligned file size The generic/397 test hits a BUGON for the case of encrypted inode with unaligned file size for example, 33K or 1K: 877.737811 run fstests generic/397 at 2025-01-...

5.5CVSS6AI score0.00088EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/07/04 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from a kernel bug triggered when encrypted inode file sizes are not aligned...

5.5CVSS8AI score0.00088EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/07/01 12:0 a.m.17 views

CVE-2025-52101

linjiashop =0.9 is vulnerable to Incorrect Access Control. When using the default-generated JWT authentication, attackers can bypass the authentication and retrieve the encrypted "password" and "salt". The password can then be obtained through brute-force cracking...

0.00421EPSS
Exploits0References2
OSV
OSV
added 2025/06/30 8:10 a.m.3 views

USN-7582-2 samba regression

USN-7582-1 fixed vulnerabilities in Samba. The update introduced a regression. This update fixes the problem. We apologize for the inconvenience. Original advisory details: Evgeny Legerov discovered that Samba incorrectly handled buffers in certain GSSAPI routines of Heimdal. A remote attacker...

6AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/06/30 12:0 a.m.6 views

PT-2025-33551

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The Linux kernel contains a flaw related to Secure TSC frequency calculation in SEV-SNP VMs. The GUEST TSC FREQ MSR reports a frequency based on the nominal P0 frequency, which deviate...

8.5CVSS6.2AI score0.07142EPSS
Exploits3References533
Packet Storm News
Packet Storm News
added 2025/06/27 12:0 a.m.5 views

Under the Hood of BlotchyQuasar: DLL-Based RAT Campaigns against Latin America

A sophisticated malspam campaign was recently uncovered targeting Latin American countries, with a particular focus on Brazil. This operation utilizes a highly deceptive phishing email to trick users into executing a malicious MSI file, initiating a multi-stage infection. The core of the attack...

7AI score
Exploits0
Fedora
Fedora
added 2025/06/25 1:19 a.m.7 views

[SECURITY] Fedora 42 Update: atuin-18.3.0-4.fc42

Atuin replaces your existing shell history with a SQLite database, and records additional context for your commands. Additionally, it provides optional and fully encrypted synchronization of your history between machines, via an Atuin server...

8.8CVSS7.4AI score0.00443EPSS
Exploits1
BDU FSTEC
BDU FSTEC
added 2025/06/25 12:0 a.m.5 views

The vulnerability of the SSH protocol implementation in the Cisco Nexus Dashboard Fabric Controller (NDFC) and the Cisco Nexus Dashboard platform for analyzing and automating cloud-based data center operations allows attackers to impersonate other users and obtain encrypted user credentials.

The vulnerability of the SSH protocol implementation in the Cisco Nexus Dashboard Fabric Controller NDFC and the Cisco Nexus Dashboard cloud network analytics and automation platform is related to insufficient security checks for the protected connection. Exploiting this vulnerability allows a...

8.7CVSS5.5AI score0.00365EPSS
Exploits0References2Affected Software1
Packet Storm News
Packet Storm News
added 2025/06/22 12:0 a.m.6 views

HE-LRM: Encrypted Deep Learning Recommendation Models Using Fully Homomorphic Encryption

Fully Homomorphic Encryption FHE is an encryption scheme that not only encrypts data but also allows for computations to be applied directly on the encrypted data. While computationally expensive, FHE can enable privacy-preserving neural inference in the client-server setting: a client encrypts...

6.9AI score
Exploits0
HackRead
HackRead
added 2025/06/21 12:30 p.m.5 views

Violence-as-a-Service: Encrypted Apps Used in Recruiting Teens as Hitmen

European police, led by Denmark and Sweden, are arresting individuals in a crackdown on violence-as-a-service, where criminal groups recruit teenagers online for contract killings. Learn about Europol's OTF GRIMM task force and how they're fighting this disturbing trend...

7.3AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/06/19 12:0 a.m.4 views

Privacy-Preserving LLM Interaction with Socratic Chain-Of-Thought Reasoning and Homomorphically Encrypted Vector Databases

Large language models LLMs are increasingly used as personal agents, accessing sensitive user data such as calendars, emails, and medical records. Users currently face a trade-off: They can send private records, many of which are stored in remote databases, to powerful but untrusted LLM providers...

6.5AI score
Exploits0
OSV
OSV
added 2025/06/18 11:15 a.m.6 views

UBUNTU-CVE-2022-50226

In the Linux kernel, the following vulnerability has been resolved: crypto: ccp - Use kzalloc for sev ioctl interfaces to prevent kernel memory leak For some sev ioctl interfaces, input may be passed that is less than or equal to SEVFWBLOBMAXSIZE, but larger than the data that PSP firmware return...

5.5CVSS6.2AI score0.00189EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2025/06/14 3:4 a.m.2 views

SUSE CVE-2024-38823

Salt's request server is vulnerable to replay attacks when not using a TLS encrypted transport...

5.9CVSS7AI score0.00214EPSS
Exploits0References23
Fedora
Fedora
added 2025/06/14 1:52 a.m.6 views

[SECURITY] Fedora 41 Update: rust-sev-6.1.0-2.fc41

Library for AMD SEV...

6.5CVSS7.4AI score0.00443EPSS
Exploits0
Fedora
Fedora
added 2025/06/14 1:10 a.m.9 views

[SECURITY] Fedora 42 Update: rust-sev-6.1.0-2.fc42

Library for AMD SEV...

6.5CVSS7.4AI score0.00443EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/06/12 12:21 p.m.4 views

CVE-2025-43700

Improper Preservation of Permissions vulnerability in Salesforce OmniStudio FlexCards allows exposure of encrypted data. This impacts OmniStudio: before Spring 2025...

7.5CVSS7.7AI score0.00392EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/06/12 12:21 p.m.7 views

CVE-2025-43697

Improper Preservation of Permissions vulnerability in Salesforce OmniStudio DataMapper allows exposure of encrypted data. This impacts OmniStudio: before Spring 2025...

7.5CVSS7.7AI score0.0041EPSS
Exploits0References1
Rows per page
Query Builder