Lucene search
K

188 matches found

EUVD
EUVD
added 2026/06/26 7:40 p.m.7 views

EUVD-2026-39835

In the Linux kernel, the following vulnerability has been resolved: net: enetc: fix NTMP DMA use-after-free issue The AI-generated review reported a potential DMA use-after-free issue 1. If netcxmitntmpcmd times out and returns an error, the pending command is not explicitly aborted, while...

6AI score0.00124EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/06/19 2:31 a.m.10 views

CVE-2026-8806

Expected Behavior Violation vulnerability in Mitsubishi Electric MELSEC iQ-F Series FX5-ENET/IP Ethernet Module FX5-ENET/IP all versions allows a remote attacker to cause a denial-of-service DoS condition in the affected product by continuously sending a large number of communication packets to t...

8.7CVSS5.3AI score0.00367EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/06/19 2:31 a.m.50 views

CVE-2026-8806 Denial-of-service (DoS) vulnerability in MELSEC iQ-F Series FX5-ENET/IP Ethernet module

Expected Behavior Violation vulnerability in Mitsubishi Electric MELSEC iQ-F Series FX5-ENET/IP Ethernet Module FX5-ENET/IP all versions allows a remote attacker to cause a denial-of-service DoS condition in the affected product by continuously sending a large number of communication packets to t...

8.7CVSS0.00367EPSS
Exploits0References3
CVE
CVE
added 2026/06/19 2:31 a.m.32 views

CVE-2026-8806

The CVE-2026-8806 entry concerns Mitsubishi Electric MELSEC iQ-F Series FX5-ENET/IP Ethernet Module (FX5-ENET/IP), with all versions affected. The vulnerability is described as an Expected Behavior Violation that could allow a remote attacker to cause a DoS by flooding the Ethernet port with a hi...

8.7CVSS5.3AI score0.00367EPSS
Exploits0References3
OSV
OSV
added 2026/05/22 9:5 a.m.31 views

CLSA-2026-1779375889 kernel: Fix of 95 CVEs

perf/x86/intel/uncore: Fix die ID init and look up bugs CVE-2026-43344 - x86/apic: Disable x2apic on resume if the kernel expects so CVE-2026-43363 - drm/amdgpu: Fix use-after-free race in VM acquire CVE-2026-43370 - dm: remove fake timeout to avoid leak request CVE-2026-43314 - md/bitmap: fix...

7.8CVSS5.9AI score0.00283EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.9 views

Astra Linux – Vulnerability in Linux

In the Linux kernel, the following vulnerability has been resolved: net: fec: fixed the potential memory leak in fecenetinit. If the memory allocated for cbdbase fails, it should free the memory allocated for the queues; otherwise, a memory leak will occur. And if the memory allocated for the...

5.5CVSS6.1AI score0.00225EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: net: Broadcom – bcm4908enet: Updates TX statistics after actual transmission. Queuing packets does not guarantee their transmission. Updates TX statistics after the hardware confirms that it is consuming the submitted data. This...

5.8AI score0.00166EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/04/23 1:25 a.m.7 views

SUSE CVE-2026-31509

In the Linux kernel, the following vulnerability has been resolved: nfc: nci: fix circular locking dependency in nciclosedevice nciclosedevice flushes rxwq and txwq while holding reqlock. This causes a circular locking dependency because ncirxwork running on rxwq can end up taking reqlock too:...

5.5CVSS5.6AI score0.00095EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/03/04 7:37 a.m.8 views

CVE-2026-1874

Always-Incorrect Control Flow Implementation vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series FX5-ENET/IP Ethernet Module FX5-ENET/IP versions 1.106 and prior and Mitsubishi Electric Corporation MELSEC iQ-F Series FX5-EIP EtherNet/IP Module FX5-EIP versions 1.000 and prior allo...

8.7CVSS5.4AI score0.00421EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/04 7:37 a.m.6 views

CVE-2026-1876

Improper Resource Shutdown or Release vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series FX5-ENET/IP Ethernet Module FX5-ENET/IP all versions allows a remote attacker to cause a denial-of-service DoS condition on the products by continuously sending UDP packets to the products. A...

8.7CVSS6AI score0.00426EPSS
Exploits0References1
NVD
NVD
added 2026/03/03 8:16 a.m.10 views

CVE-2026-1876

Improper Resource Shutdown or Release vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series FX5-ENET/IP Ethernet Module FX5-ENET/IP all versions allows a remote attacker to cause a denial-of-service DoS condition on the products by continuously sending UDP packets to the products. A...

8.7CVSS0.00426EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/03/03 7:3 a.m.5 views

CVE-2026-1876

Improper Resource Shutdown or Release vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series FX5-ENET/IP Ethernet Module FX5-ENET/IP all versions allows a remote attacker to cause a denial-of-service DoS condition on the products by continuously sending UDP packets to the products. A...

8.7CVSS6AI score0.00426EPSS
Exploits0References4
CVE
CVE
added 2026/03/03 7:3 a.m.36 views

CVE-2026-1876

The CVE-2026-1876 affects Mitsubishi Electric MELSEC iQ-F Series FX5-ENET/IP Ethernet Module (FX5-ENET/IP) across all versions. The issue is an Improper Resource Shutdown or Release vulnerability that allows a remote attacker to trigger a DoS by continuously sending UDP packets to the device, wit...

8.7CVSS6AI score0.00426EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2026/03/03 7:3 a.m.9 views

EUVD-2026-9282

Improper Resource Shutdown or Release vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series FX5-ENET/IP Ethernet Module FX5-ENET/IP all versions allows a remote attacker to cause a denial-of-service DoS condition on the products by continuously sending UDP packets to the products. A...

8.7CVSS6AI score0.00426EPSS
Exploits0References2
CVE
CVE
added 2026/03/03 6:46 a.m.22 views

CVE-2026-1874

CVE-2026-1874 concerns a denial-of-service vulnerability in Mitsubishi Electric MELSEC iQ-F Series Ethernet modules. The affected components are FX5-ENET/IP (versions 1.106 and earlier) and FX5-EIP Ethernet module (all versions). The issue is described as an Always-Incorrect Control Flow Implemen...

8.7CVSS5.4AI score0.00421EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2026/03/03 12:0 a.m.13 views

Mitsubishi Electric MELSEC iQ-F Series 安全漏洞

Mitsubishi Electric MELSEC iQ-F Series are a series of simple motion controllers produced by Mitsubishi Electric, a Japanese company. The Mitsubishi Electric MELSEC iQ-F Series contain security vulnerabilities. These vulnerabilities stem from incorrect implementation of control flows in the...

8.7CVSS5.8AI score0.00421EPSS
Exploits0References3
Packet Storm
Packet Storm
added 2026/02/18 12:0 a.m.144 views

📄 eNet SMART HOME 2.3.1 Privilege Escalation

The eNet Smart Home device firmware versions 2.3.1 build 46841 and 2.2.1 build 46056 exposes JSON‑RPC management methods that may allow authenticated low‑privileged users to perform unauthorized administrative actions. Improper server‑side authorization controls on the /jsonrpc/management endpoin...

5.5AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/02/16 7:30 p.m.8 views

CVE-2026-26369

eNet SMART HOME server 2.2.1 and 2.3.1 contains a privilege escalation vulnerability due to insufficient authorization checks in the setUserGroup JSON-RPC method. A low-privileged user UGUSER can send a crafted POST request to /jsonrpc/management specifying their own username to elevate their...

9.8CVSS5.5AI score0.00637EPSS
Exploits2References1
Packet Storm
Packet Storm
added 2026/02/16 12:0 a.m.151 views

📄 eNet SMART HOME Server 2.3.1 Arbitrary User Deletion

The eNet Smart Home system contains an authorization weakness in the deleteUserAccount JSON-RPC method that permits any authenticated low-privileged user UGUSER to delete arbitrary user accounts, except for the built-in admin account. The application does not enforce proper role-based access...

5.9AI score
Exploits0
Packet Storm
Packet Storm
added 2026/02/16 12:0 a.m.143 views

📄 eNet SMART HOME Server 2.3.1 Default Credentials

The eNet Smart Home system ships with default credentials that remain active after installation and commissioning without enforcing a mandatory password change. Version 2.3.1 is affected. eNet SMART HOME server 2.3.1 Use of Default Credentials Vendor: Gira Giersiepen GmbH & Co. KG | ALBRECHT JUNG...

5.5AI score
Exploits0
Rows per page
Query Builder