Lucene search
+L

68 matches found

Positive Technologies
Positive Technologies
added 2025/06/18 12:0 a.m.6 views

PT-2025-25989

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A vulnerability in the Linux kernel has been identified, related to the dsa tree change tag proto function. This function may cause unexpected behavior when dsa tree notify fails,...

5.5CVSS6.2AI score0.0014EPSS
Exploits0References13
Positive Technologies
Positive Technologies
added 2025/06/18 12:0 a.m.6 views

PT-2025-25879 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue concerns an error handling path in the cm3605 probe function. A commit introduced a new error handling path that should redirect to the existing error handling path to preven...

5.9AI score0.00179EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2025/06/02 12:0 a.m.5 views

PT-2025-23454 · Mediatek · Mediatek Chip Ims Service

Name of the Vulnerable Software and Affected Versions: MediaTek chip IMS service affected versions not specified Description: The issue is related to incorrect error handling in the ims service, which could lead to a system crash and result in a remote denial of service. This can occur if a UE...

7.5CVSS6.3AI score0.00325EPSS
Exploits0References9
OSV
OSV
added 2025/05/27 1:15 p.m.10 views

CVE-2025-5263

Error handling for script execution was incorrectly isolated from web content, which could have allowed cross-origin leak attacks. This vulnerability affects Firefox 139, Firefox ESR 115.24, Firefox ESR 128.11, Thunderbird 139, and Thunderbird 128.11...

4.3CVSS5.1AI score
Exploits0References8
Vulnrichment
Vulnrichment
added 2025/05/27 12:29 p.m.15 views

CVE-2025-5263 Error handling for script execution was incorrectly isolated from web content

Error handling for script execution was incorrectly isolated from web content, which could have allowed cross-origin leak attacks. This vulnerability was fixed in Firefox 139, Firefox ESR 115.24, Firefox ESR 128.11, Thunderbird 139, and Thunderbird 128.11...

6.7AI score0.00213EPSS
Exploits0References6
Debian CVE
Debian CVE
added 2025/05/27 12:29 p.m.11 views

CVE-2025-5263

Error handling for script execution was incorrectly isolated from web content, which could have allowed cross-origin leak attacks. This vulnerability was fixed in Firefox 139, Firefox ESR 115.24, Firefox ESR 128.11, Thunderbird 139, and Thunderbird 128.11...

4.3CVSS6.4AI score0.00213EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 7:5 p.m.13 views

CVE-2021-20068

Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to conduct cross-site scripting attacks via the error handling functionality of web pages...

4.8CVSS6.3AI score0.00468EPSS
Exploits0References1
FreeBSD
FreeBSD
added 2025/05/15 12:0 a.m.12 views

cpython -- Use-after-free in "unicode_escape" decoder with error handler

[email protected] reports: There is an issue in CPython when using bytes.decode"unicodeescape", error="ignore|replace". If you are not using the "unicodeescape" encoding or an error handler your usage is not affected. To work-around this issue you may stop using the error= handler and instead wrap t...

5.9CVSS5.4AI score0.00177EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/05/05 12:0 a.m.6 views

PT-2025-19331 · Modem · Modem

Name of the Vulnerable Software and Affected Versions: Modem affected versions not specified Description: In Modem, there is a possible information disclosure due to incorrect error handling. This could lead to remote information disclosure if a UE has connected to a rogue base station controlled...

7.5CVSS6.1AI score0.00375EPSS
Exploits0References10
RedhatCVE
RedhatCVE
added 2025/05/04 4:28 p.m.10 views

CVE-2023-53058

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: E-Switch, Fix an Oops in error handling code The error handling dereferences "vport". There is nothing we can do if it is an error pointer except returning the error code...

5.5CVSS7.1AI score0.00183EPSS
Exploits0References4
NVD
NVD
added 2025/05/02 4:15 p.m.8 views

CVE-2023-53058

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: E-Switch, Fix an Oops in error handling code The error handling dereferences "vport". There is nothing we can do if it is an error pointer except returning the error code...

5.5CVSS0.00183EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/04/16 12:0 a.m.5 views

PT-2025-16732

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A NULL pointer dereference issue has been resolved in the Linux kernel. The issue occurred due to incorrect error handling flow when pci setup device fails, leading to a kernel oops duri...

7.8CVSS7.2AI score0.37115EPSS
Exploits0References909
CVE
CVE
added 2025/03/11 12:31 a.m.60 views

CVE-2025-23185

Vulnerability summary: SAP Business Objects Business Intelligence Platform exposes internal technical details due to improper error handling. What is affected: SAP Business Objects BI Platform (information disclosure vulnerability). Root cause: Exceptions and stack traces reveal application inter...

4.1CVSS7.1AI score0.00269EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/06 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2024-56769

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - media: dvb-frontends: dib3000mb: fix uninit-value in dib3000writereg Syzbot reports 1 an uninitialized value issue found by KMSAN in dib3000readreg. Local u8 rb...

5.5CVSS6.9AI score0.00219EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2021-47337

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: scsi: core: Fix bad pointer dereference when ehandler kthread is invalid Commit 66a834d09293...

5.5CVSS5.2AI score0.0024EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2022-49524

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: media: pci: cx23885: Fix the error handling in cx23885initdev When the driver fails to call...

7.8CVSS5.6AI score0.00253EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2022-49527

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - media: venus: hfi: avoid null dereference in deinit If venusprobe fails at pmruntimeputsync the error handling first calls hfidestroy and afterwards...

5.5CVSS6.4AI score0.0025EPSS
Exploits0References2
CVE
CVE
added 2025/02/11 10:27 a.m.73 views

CVE-2025-0513

CVE-2025-0513 affects Octopus Server; root cause is unsafe handling of error page messages. If an attacker can influence any part of an error message, they may embed code, potentially affecting the user viewing the error. Documents provide CVSS v3.1 (Base 5.4, Network, Low privileges, User intera...

5.4CVSS6.8AI score0.00234EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2025/02/05 5:15 p.m.13 views

CVE-2025-20172

A vulnerability in the SNMP subsystem of Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS XR Software could allow an authenticated, remote attacker to cause a DoS condition on an affected device. This vulnerability is due to improper error handling when parsing SNMP requests. An attacker...

7.7CVSS0.00736EPSS
Exploits0References1
OSV
OSV
added 2025/02/05 7:25 a.m.9 views

BIT-SUPERSET-2024-27315 Apache Superset: Improper error handling on alerts

An authenticated user with privileges to create Alerts on Alerts & Reports has the capability to generate a specially crafted SQL statement that triggers an error on the database. This error is not properly handled by Apache Superset and may inadvertently surface in the error log of the Alert...

4.3CVSS4.8AI score0.00969EPSS
Exploits0References3
Rows per page
Query Builder