Lucene search
K

135 matches found

Positive Technologies
Positive Technologies
added 2025/11/05 12:0 a.m.6 views

PT-2025-45134

A vulnerability in the API subsystem of Cisco Unified Intelligence Center could allow an authenticated, remote attacker to obtain sensitive information from an affected system. This vulnerability is due to improper validation of requests to certain API endpoints. An attacker could exploit this...

4.3CVSS6.2AI score0.0025EPSS
Exploits0References3
Veracode
Veracode
added 2025/10/15 10:6 a.m.8 views

Authentication Bypass

Apache Kylin is vulnerable to Authentication Bypass. The vulnerability is due to improper validation of alternate endpoints that bypass normal authentication checks, allowing an attacker to gain unauthorized access to protected functionality...

7.5CVSS7AI score0.01224EPSS
Exploits0References7Affected Software4
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2015-4339

Malware in sbrugna...

5.5CVSS6.3AI score0.01889EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/10/07 12:0 a.m.5 views

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-986942)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-986942 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: xhci: Check endpoint is valid before dereferencing it When the host controller is not...

5.5CVSS6.1AI score0.0024EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/10/05 2:56 a.m.8 views

SUSE CVE-2023-53548

In the Linux kernel, the following vulnerability has been resolved: net: usbnet: Fix WARNING in usbnetstartxmit/usbsubmiturb The syzbot fuzzer identified a problem in the usbnet driver: usb 1-1: BOGUS urb xfer, pipe 3 != type 1 WARNING: CPU: 0 PID: 754 at drivers/usb/core/urb.c:504...

5.5CVSS6.5AI score0.00147EPSS
Exploits0References20
NVD
NVD
added 2025/10/04 4:15 p.m.9 views

CVE-2023-53548

In the Linux kernel, the following vulnerability has been resolved: net: usbnet: Fix WARNING in usbnetstartxmit/usbsubmiturb The syzbot fuzzer identified a problem in the usbnet driver: usb 1-1: BOGUS urb xfer, pipe 3 != type 1 WARNING: CPU: 0 PID: 754 at drivers/usb/core/urb.c:504...

5.5CVSS0.00147EPSS
Exploits0References8
OSV
OSV
added 2025/10/04 4:15 p.m.8 views

UBUNTU-CVE-2023-53548

In the Linux kernel, the following vulnerability has been resolved: net: usbnet: Fix WARNING in usbnetstartxmit/usbsubmiturb The syzbot fuzzer identified a problem in the usbnet driver: usb 1-1: BOGUS urb xfer, pipe 3 != type 1 WARNING: CPU: 0 PID: 754 at drivers/usb/core/urb.c:504...

5.5CVSS5.9AI score0.00147EPSS
Exploits0References11
Cvelist
Cvelist
added 2025/10/04 3:16 p.m.9 views

CVE-2023-53548 net: usbnet: Fix WARNING in usbnet_start_xmit/usb_submit_urb

In the Linux kernel, the following vulnerability has been resolved: net: usbnet: Fix WARNING in usbnetstartxmit/usbsubmiturb The syzbot fuzzer identified a problem in the usbnet driver: usb 1-1: BOGUS urb xfer, pipe 3 != type 1 WARNING: CPU: 0 PID: 754 at drivers/usb/core/urb.c:504...

0.00147EPSS
Exploits0References8
CVE
CVE
added 2025/10/04 3:16 p.m.21 views

CVE-2023-53548

CVE-2023-53548 affects the Linux kernel USB networking stack, specifically the usbnet driver. The issue arises when usbnet trusts the bulk endpoint addresses reported by the probe routine in the driver_info structure and does not verify that the endpoints exist and have the correct type/direction...

5.5CVSS6.1AI score0.00147EPSS
Exploits0References8Affected Software1
OSV
OSV
added 2025/10/04 3:16 p.m.11 views

CVE-2023-53548 net: usbnet: Fix WARNING in usbnet_start_xmit/usb_submit_urb

In the Linux kernel, the following vulnerability has been resolved: net: usbnet: Fix WARNING in usbnetstartxmit/usbsubmiturb The syzbot fuzzer identified a problem in the usbnet driver: usb 1-1: BOGUS urb xfer, pipe 3 != type 1 WARNING: CPU: 0 PID: 754 at drivers/usb/core/urb.c:504...

5.5CVSS6.4AI score0.00147EPSS
Exploits0References11
Positive Technologies
Positive Technologies
added 2025/10/04 12:0 a.m.12 views

PT-2025-40690

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.4.0-rc7-syzkaller-00014-g692b7dc87ca6 Description The usbnet driver in the Linux kernel has an issue where it trusts the bulk endpoint addresses received during the probe routine without verifying their...

7.8CVSS6.4AI score0.08942EPSS
Exploits4References999
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-3003

Malicious code in bioql PyPI...

4.3CVSS4.7AI score0.00506EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/09/15 12:0 a.m.6 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from failure to properly validate the target endpoint in a service connection response message, which could resul...

5.5CVSS5.9AI score0.00149EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2025/09/05 6:18 p.m.10 views

CVE-2025-20270

A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager EPNM and Cisco Prime Infrastructure could allow an authenticated, remote attacker to obtain sensitive information from an affected system. This vulnerability is due to improper validation of reques...

6.5CVSS6.4AI score0.00287EPSS
Exploits0References1
OSV
OSV
added 2025/09/03 6:15 p.m.3 views

CVE-2025-20270

A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager EPNM and Cisco Prime Infrastructure could allow an authenticated, remote attacker to obtain sensitive information from an affected system. This vulnerability is due to improper validation of reques...

6.5CVSS5.8AI score0.00287EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/15 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2016-20022

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel before 4.8, usbparseendpoint in drivers/usb/core/config.c does not validate the wMaxPacketSize field of an endpoint descriptor. NOTE: This...

8.4CVSS6.4AI score0.00238EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2025/07/28 11:22 p.m.2 views

SUSE CVE-2025-38474

In the Linux kernel, the following vulnerability has been resolved: usb: net: sierra: check for no status endpoint The driver checks for having three endpoints and having bulk in and out endpoints, but not that the third endpoint is interrupt input. Rectify the omission...

5.5CVSS6.5AI score0.00156EPSS
Exploits0References23
OSV
OSV
added 2025/07/28 12:15 p.m.5 views

UBUNTU-CVE-2025-38474

In the Linux kernel, the following vulnerability has been resolved: usb: net: sierra: check for no status endpoint The driver checks for having three endpoints and having bulk in and out endpoints, but not that the third endpoint is interrupt input. Rectify the omission...

5.5CVSS6AI score0.00156EPSS
Exploits0References39
SUSE CVE
SUSE CVE
added 2025/07/09 11:23 p.m.6 views

SUSE CVE-2025-38252

In the Linux kernel, the following vulnerability has been resolved: cxl/ras: Fix CPER handler device confusion By inspection, cxlcperhandleproterr is making a series of fragile assumptions that can lead to crashes: 1/ It assumes that endpoints identified in the record are a CXL-type-3 device,...

5.5CVSS6.3AI score0.0012EPSS
Exploits0References3
OSV
OSV
added 2025/07/09 11:15 a.m.2 views

UBUNTU-CVE-2025-38252

In the Linux kernel, the following vulnerability has been resolved: cxl/ras: Fix CPER handler device confusion By inspection, cxlcperhandleproterr is making a series of fragile assumptions that can lead to crashes: 1/ It assumes that endpoints identified in the record are a CXL-type-3 device,...

5.5CVSS5.7AI score0.0012EPSS
Exploits0References5
Rows per page
Query Builder