Lucene search
K

73991 matches found

SUSE CVE
SUSE CVE
added 2026/03/28 6:19 p.m.7 views

SUSE CVE-2026-23399

In the Linux kernel, the following vulnerability has been resolved: nftables: nftdynset: fix possible stateful expression memleak in error path If cloning the second stateful expression in the element via GFPATOMIC fails, then the first stateful expression remains in place without being released...

4.7CVSS5.8AI score0.00121EPSS
Exploits0References16
EUVD
EUVD
added 2026/03/28 9:31 a.m.4 views

EUVD-2026-16909

In the Linux kernel, the following vulnerability has been resolved: nftables: nftdynset: fix possible stateful expression memleak in error path If cloning the second stateful expression in the element via GFPATOMIC fails, then the first stateful expression remains in place without being released....

5.8AI score0.00121EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/03/28 9:15 a.m.39 views

CVE-2026-4994 wandb OpenUI APIStatusError server.py generic_exception_handler information exposure

A vulnerability was found in wandb OpenUI up to 1.0/3.5-turb. Affected is the function genericexceptionhandler of the file backend/openui/server.py of the component APIStatusError Handler. The manipulation of the argument key results in information exposure through error message. Access to the...

5.1CVSS0.00198EPSS
Exploits0References4
CVE
CVE
added 2026/03/28 9:15 a.m.14 views

CVE-2026-4994

CVE-2026-4994 affects wandb OpenUI up to 1.0/3.5-turb. The vulnerable component is generic_exception_handler in backend/openui/server.py of the APIStatusError Handler. The issue arises from manipulation of the argument key, leading to information exposure through error messages. Access to the loc...

5.1CVSS5.4AI score0.00198EPSS
Exploits0References4
NVD
NVD
added 2026/03/28 8:15 a.m.2 views

CVE-2026-23399

In the Linux kernel, the following vulnerability has been resolved: nftables: nftdynset: fix possible stateful expression memleak in error path If cloning the second stateful expression in the element via GFPATOMIC fails, then the first stateful expression remains in place without being released....

5.5CVSS0.00121EPSS
Exploits0References7
UbuntuCve
UbuntuCve
added 2026/03/28 8:15 a.m.5 views

CVE-2026-23399

In the Linux kernel, the following vulnerability has been resolved: nftables: nftdynset: fix possible stateful expression memleak in error path If cloning the second stateful expression in the element via GFPATOMIC fails, then the first stateful expression remains in place without being released....

5.5CVSS5.7AI score0.00121EPSS
Exploits0References6
OSV
OSV
added 2026/03/28 7:26 a.m.10 views

MGASA-2026-0071 Updated nodejs packages fix security vulnerabilities

Incomplete fix for CVE-2026-21637: loadSNI in tlswrap.js lacks try/catch leading to Remote DoS. CVE-2026-21637 Denial of Service via proto header name in req.headersDistinct Uncaught TypeError crashes Node.js process. CVE-2026-21710 Timing side-channel in HMAC verification via memcmp in...

7.5CVSS5.9AI score0.26356EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/03/28 7:16 a.m.35 views

CVE-2026-23399 nf_tables: nft_dynset: fix possible stateful expression memleak in error path

In the Linux kernel, the following vulnerability has been resolved: nftables: nftdynset: fix possible stateful expression memleak in error path If cloning the second stateful expression in the element via GFPATOMIC fails, then the first stateful expression remains in place without being released....

0.00121EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/03/28 7:16 a.m.3 views

CVE-2026-23399

In the Linux kernel, the following vulnerability has been resolved: nftables: nftdynset: fix possible stateful expression memleak in error path If cloning the second stateful expression in the element via GFPATOMIC fails, then the first stateful expression remains in place without being released....

5.5CVSS5.8AI score0.00121EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2026/03/28 7:16 a.m.26 views

CVE-2026-23399

CVE-2026-23399 concerns the Linux kernel nf_tables code: when cloning the second stateful expression in a dynset element, the first expression could remain unfreed on error, causing a stateful memleak in error paths. The provided CVE description confirms a resolution in the kernel, with backtrace...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2026/03/28 7:16 a.m.2 views

CVE-2026-23399 nf_tables: nft_dynset: fix possible stateful expression memleak in error path

In the Linux kernel, the following vulnerability has been resolved: nftables: nftdynset: fix possible stateful expression memleak in error path If cloning the second stateful expression in the element via GFPATOMIC fails, then the first stateful expression remains in place without being released....

5.5CVSS5.7AI score0.00121EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2026/03/28 12:26 a.m.4 views

SUSE CVE-2026-32953

Tillitis TKey Client package is a Go package for a TKey client. Versions 1.2.0 and below contain a critical bug in the tkeyclient Go module which causes 1 out of every 256 User Supplied Secrets USS to be silently ignored, producing the same Compound Device Identifier CDI-and thus the same key...

4.7CVSS5.9AI score0.00246EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2026/03/28 12:26 a.m.5 views

SUSE CVE-2026-33065

Free5GC is an open-source Linux Foundation project for 5th generation 5G mobile core networks. In versions prior to 1.4.2, the UDM incorrectly converts a downstream 400 Bad Request from UDR into a 500 Internal Server Error when handling DELETE requests with an empty supi path parameter. This leak...

6.9CVSS5.8AI score0.00282EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2026/03/28 12:25 a.m.4 views

SUSE CVE-2026-33192

Free5GC is an open-source Linux Foundation project for 5th generation 5G mobile core networks. In versions prior to 1.4.2, the UDM incorrectly converts a downstream 400 Bad Request from UDR into a 500 Internal Server Error when handling PATCH requests with an empty supi path parameter...

8.7CVSS5.8AI score0.00321EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2026/03/28 12:25 a.m.2 views

SUSE CVE-2026-33312

Vikunja is an open-source self-hosted task management platform. Starting in version 0.20.2 and prior to version 2.2.0, the DELETE /api/v1/projects/:project/background endpoint checks CanRead permission instead of CanUpdate, allowing any user with read-only access to a project to permanently delet...

5.4CVSS5.9AI score0.00211EPSS
Exploits1References3
SUSE CVE
SUSE CVE
added 2026/03/28 12:25 a.m.4 views

SUSE CVE-2026-33481

Syft is a a CLI tool and Go library for generating a Software Bill of Materials SBOM from container images and filesystems. Syft versions before v1.42.3 would not properly cleanup temporary storage if the temporary storage was exhausted during a scan. When scanning archives Syft will unpack those...

5.3CVSS5.8AI score0.00408EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/03/28 12:0 a.m.7 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from a memory leak that can occur in the nftdynset error path, involving state expression memory leaks...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/03/28 12:0 a.m.4 views

PT-2026-28712

Name of the Vulnerable Software and Affected Versions wandb OpenUI versions up to 1.0/3.5-turb Description A flaw exists in wandb OpenUI that allows information disclosure through error messages. The issue is located in the generic exception handler function within the backend/openui/server.py...

5.1CVSS5.5AI score0.00198EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/03/28 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2026-23322

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: ipmi: Fix use-after-free and list corruption on sender error The analysis from Breno: When t...

7.8CVSS5.5AI score0.00124EPSS
Exploits0References2
Packet Storm News
Packet Storm News
added 2026/03/28 12:0 a.m.8 views

Quantum Bit Error Rate Analysis in BB84 Quantum Key Distribution: Measurement, Statistical Estimation, and Eavesdropping Detection

Quantum Key Distribution QKD provides information-theoretic security by exploiting the principles of quantum mechanics. Among QKD protocols, the BB84 scheme remains the most widely adopted for both theoretical research and practical implementation. A critical parameter determining the reliability...

6AI score
Exploits0
Rows per page
Query Builder