Lucene search
K

22 matches found

RedHat Linux
RedHat Linux
added 2026/06/16 5:9 p.m.12 views

Important: Red Hat Security Advisory: Red Hat OpenShift Data Foundation 4.16.30 security, enhancement & bug fix update

Red Hat OpenShift Data Foundation 4.16.30 security, enhancement & bug fix update Red Hat OpenShift Data Foundation 4.16.30 security, enhancement & bug fix update FIXED BUGS: ========== DFBUGS-7345: RHODF 4.16.30 release DFBUGS-7105: Backport to 4.16.z CLONE - ODF Console is breaking DFBUGS-6743:...

9.1CVSS6.5AI score0.01557EPSS
Exploits1References4
OSV
OSV
added 2026/05/27 2:16 p.m.9 views

UBUNTU-CVE-2026-23679

libusb before version 1.0.30 contains a NULL pointer dereference vulnerability that allows attackers to crash applications by supplying a malformed USB configuration descriptor where an interface claims bNumEndpoints greater than zero but is followed by a class-specific descriptor whose bLength...

6.9CVSS5.9AI score0.00184EPSS
Exploits0References6
AlpineLinux
AlpineLinux
added 2026/05/27 1:21 p.m.15 views

CVE-2026-23679

libusb before version 1.0.30 contains a NULL pointer dereference vulnerability that allows attackers to crash applications by supplying a malformed USB configuration descriptor where an interface claims bNumEndpoints greater than zero but is followed by a class-specific descriptor whose bLength...

6.9CVSS5.9AI score0.00184EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.16 views

PT-2026-43696

Name of the Vulnerable Software and Affected Versions libusb versions prior to 1.0.30 Description A NULL pointer dereference occurs when a malformed USB configuration descriptor is supplied. Specifically, if an interface claims bNumEndpoints greater than zero but is followed by a class-specific...

6.9CVSS5.3AI score0.00184EPSS
Exploits0References13
Tenable Nessus
Tenable Nessus
added 2026/01/31 12:0 a.m.6 views

EulerOS Virtualization 2.10.1 : qemu (EulerOS-SA-2026-1144)

According to the versions of the qemu packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : A flaw was found in QEMU, in the virtio-scsi, virtio-blk, and virtio-crypto devices. The size for virtqueuepush as set in...

5.5CVSS5.8AI score0.00286EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/25 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-23009

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xhci: sideband: don't dereference freed ring when removing sideband endpoint xhcisidebandremoveendpoint incorrecly assumes that the endpoint is running and has ...

5.5CVSS6AI score0.00135EPSS
Exploits0References3
EUVD
EUVD
added 2025/12/23 12:30 a.m.6 views

EUVD-2021-34746

Hasura GraphQL 1.3.3 contains a denial of service vulnerability that allows attackers to overwhelm the service by crafting malicious GraphQL queries with excessive nested fields. Attackers can send repeated requests with extremely long query strings and multiple threads to consume server resource...

8.7CVSS6.3AI score0.00405EPSS
Exploits1References4
OSV
OSV
added 2025/11/28 12:51 p.m.4 views

OESA-2025-2757 qemu security update

QEMU is a FAST! processor emulator using dynamic translation to achieve good emulation speed. Security Fixes: A flaw was found in QEMU. An assertion failure was present in the usbepget function in hw/net/core.c when trying to get the USB endpoint from a USB device. This flaw may allow a malicious...

5.5CVSS6.4AI score0.00286EPSS
Exploits0References2
OSV
OSV
added 2025/10/31 2:13 p.m.3 views

OESA-2025-2599 qemu security update

QEMU is a FAST! processor emulator using dynamic translation to achieve good emulation speed. Security Fixes: A flaw was found in QEMU. An assertion failure was present in the usbepget function in hw/net/core.c when trying to get the USB endpoint from a USB device. This flaw may allow a malicious...

5.5CVSS6.5AI score0.00286EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/10/15 12:0 a.m.5 views

Amazon Linux 2 : qemu, --advisory ALAS2-2025-3031 (ALAS-2025-3031)

The version of qemu installed on the remote host is prior to 3.1.0-8. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-3031 advisory. A flaw was found in QEMU. An assertion failure was present in the usbepget function in hw/net/core.c when trying to get the USB endpoi...

5.5CVSS6.2AI score0.00286EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-51824

Malicious code in bioql PyPI...

7.6AI score0.00272EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/10/01 9:9 p.m.11 views

CVE-2025-59538 Argo CD is Vulnerable to Unauthenticated Remote DoS via malformed Azure DevOps git.push webhook

Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes. For versions 2.9.0-rc1 through 2.14.19, 3.0.0-rc1 through 3.2.0-rc1, 3.1.6 and 3.0.17, when the webhook.azuredevops.username and webhook.azuredevops.password are not set in the default configuration, the /api/webhook endpoi...

7.5CVSS0.00549EPSS
Exploits1References2
Github Security Blog
Github Security Blog
added 2025/08/11 9:31 p.m.6 views

Mattermost Confluence Plugin has Improper Check for Unusual or Exceptional Conditions

Mattermost Confluence Plugin versions 1.5.0 fails to handle unexpected request bodies, allowing attackers to crash the plugin via constant hits to the update channel subscription endpoint with an invalid request body...

7.5CVSS7AI score0.00312EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2025/08/11 7:15 p.m.5 views

CVE-2025-54463

Mattermost Confluence Plugin version 1.5.0 fails to handle unexpected request body which allows attackers to crash the plugin via constant hit to server webhook endpoint with an invalid request body...

7.5CVSS0.00275EPSS
Exploits0References1
CVE
CVE
added 2025/08/11 6:57 p.m.130 views

CVE-2025-54463

Mattermost Confluence Plugin (github.com/mattermost/mattermost-plugin-confluence) versions

7.5CVSS7.1AI score0.00275EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2025/05/28 12:0 a.m.4 views

PT-2025-23226 · Vllm · Vllm

Name of the Vulnerable Software and Affected Versions: vLLM versions 0.8.0 through 0.9.0 Description: The issue arises when the /v1/completions API endpoint is hit with an invalid json schema as a Guided Param, causing the vLLM server to crash. This is similar to a previously known issue but...

6.5CVSS6.2AI score0.00453EPSS
Exploits1References16
RedhatCVE
RedhatCVE
added 2024/12/24 2:58 p.m.13 views

CVE-2024-53152

In the Linux kernel, the following vulnerability has been resolved: PCI: tegra194: Move controller cleanups to pexepeventpexrstdeassert Currently, the endpoint cleanup function dwpcieepcleanup and EPF deinit notify function pciepcdeinitnotify are called during the execution of...

6.4CVSS7.2AI score0.00272EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/12/24 11:28 a.m.20 views

CVE-2024-53153 PCI: qcom-ep: Move controller cleanups to qcom_pcie_perst_deassert()

In the Linux kernel, the following vulnerability has been resolved: PCI: qcom-ep: Move controller cleanups to qcompcieperstdeassert Currently, the endpoint cleanup function dwpcieepcleanup and EPF deinit notify function pciepcdeinitnotify are called during the execution of qcompcieperstassert i.e...

0.0028EPSS
Exploits0References3
CVE
CVE
added 2024/12/24 11:28 a.m.2278 views

CVE-2024-53152

CVE-2024-53152 is a Linux kernel vulnerability affecting Tegra194 PCIe endpoints. The issue: when PERST# is asserted and refclk is disabled, endpoint cleanup paths (dw_pcie_ep_cleanup and pci_epc_deinit_notify) access hardware registers, crashing the endpoint due to host-required refclk. The fix ...

5.5CVSS6.9AI score0.00272EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2024/12/24 11:28 a.m.34 views

CVE-2024-53152 PCI: tegra194: Move controller cleanups to pex_ep_event_pex_rst_deassert()

In the Linux kernel, the following vulnerability has been resolved: PCI: tegra194: Move controller cleanups to pexepeventpexrstdeassert Currently, the endpoint cleanup function dwpcieepcleanup and EPF deinit notify function pciepcdeinitnotify are called during the execution of...

0.00272EPSS
Exploits0References3
Rows per page
Query Builder