CVE-2025-38224 can: kvaser_pciefd: refine error prone echo_skb_max handling logic

In the Linux kernel, the following vulnerability has been resolved: can: kvaserpciefd: refine error prone echoskbmax handling logic echoskbmax should define the supported upper limit of echoskb allocated inside the netdevice's priv. The corresponding size value provided by this driver to...

CVE-2024-35818

CVE-2024-35818 : In the Linux kernel, LoongArch-specific fix defines the __io_aw() hook as mmiowb() to address issues from removing explicit mmiowb() invocations in drivers. The patch relocates the mmiowb tracking to handle mutex-protected MMIO, since some MMIO regions (e.g., in radeon) are guard...

The vulnerability of the software used for creating, monitoring, and orchestrating data processing scripts in Airflow lies in the ability to disclose information in the error-prone data area, allowing an intruder to gain unauthorized access to the database.

The vulnerability of the software used for creating, monitoring, and orchestrating data processing scripts in Airflow is related to the disclosure of information in the error-prone data area. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized acces...

The vulnerability of the software used for creating, monitoring, and orchestrating data processing scripts in Airflow lies in the ability to disclose information in error-prone areas of the data. This allows attackers to compromise the integrity of the data.

The vulnerability of the software used for creating, monitoring, and orchestrating data processing scripts in Airflow is related to the disclosure of information in error-prone areas of the data. Exploiting this vulnerability can allow a malicious actor to influence the integrity of the data...

The vulnerability of the distributed Git version control system, related to the exposure of information in the error-prone data area, allows a perpetrator to gain access to confidential data.

The vulnerability of the distributed Git version control system is related to the exposure of information in the error-prone data area. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain access to confidential data...

Hard coding ChainID is error prone

Lines of code Vulnerability details Impact Detailed description of the impact of this finding. Proof of Concept Provide direct links to all referenced code in GitHub. Add screenshots, logs, or any other relevant proof that illustrates the concept. Tools Used Recommended Mitigation Steps --- The...

The vulnerability of the `nodeIntegrationInSubFrames` parameter in the software platform for creating Electron applications allows a hacker to disclose protected information.

The vulnerability of the “nodeIntegrationInSubFrames” parameter in the software platform for creating Electron applications relates to the disclosure of information in error-prone data areas. Exploiting this vulnerability can allow a remote attacker to disclose the protected information...

Input validation

Shescape is a simple shell escape package for JavaScript. Affected versions were found to have insufficient escaping of white space when interpolating output. This issue only impacts users that use the escape or escapeAll functions with the interpolation option set to true. The result is that if ...

Vulnerability of software for configuring, testing, and deploying Schneider Electric EcoStruxure Power Commission devices—related to the disclosure of information in error-prone areas—allows a perpetrator to disclose protected information.

The vulnerability of the software for configuring, testing, and deploying Schneider Electric EcoStruxure Power Commission involves exposing information in the error-prone data area. Exploiting this vulnerability could allow a malicious actor to disclose sensitive information through a specially...

The vulnerability of the Microsoft Visual Basic development environment and the Microsoft Office suite relates to the disclosure of information in the error-prone data area, allowing the disclosure of protected information.

The vulnerability of the Microsoft Visual Basic development environment and the Microsoft Office suite is related to the disclosure of sensitive information in error-prone data areas. Exploiting this vulnerability can allow attackers to disclose protected information...

PHP application of Common Vulnerability analysis-vulnerability warning-the black bar safety net

Transfer from: WhyTT Not impregnable, as PHP is widely used, some hackers also at no time not looking for a PHP trouble, by the PHP application vulnerability to attack is one of them. In the section, we will from a global variable, remote file, file upload, library files, Session files, data type...