The vulnerability of the kernel component of the Linux operating system, which allows a hacker to cause a service failure

The vulnerability of the kernel component of the Linux operating system is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

Directus's S3 assets become unavailable after a burst of HEAD requests

Summary There's some tools that use Directus to sync content and assets. Some of those tools use HEAD method, like Shopify, to check the existence of files. Although, when making many HEAD requests at once, at some point, all assets are being served as 403. Details When I was investigating this...

The vulnerability of Adobe InDesign’s computer layout automation tool, related to pointer naming errors, allows attackers to trigger a service failure.

The vulnerability of Adobe InDesign’s computer layout automation tool is related to errors in pointer assignment. Exploiting this vulnerability can allow an attacker to trigger a service failure using a specially created malicious file...

The vulnerability of Adobe Illustrator’s graphic editor, related to pointer naming errors, allows a hacker to trigger a service failure.

The vulnerability of Adobe Illustrator’s graphic editor is related to pointer assignment errors. Exploiting this vulnerability can allow attackers to trigger a service failure using a specially created malicious file...

The vulnerability of the client for remote desktop clients on Windows operating systems allows a hacker to execute arbitrary code.

The vulnerability of the Remote Desktop Client for Windows operating systems in handling relative pathnames to directories involves errors in processing those paths. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

CVE-2025-27810

Mbed TLS before 2.28.10 and 3.x before 3.6.3, in some cases of failed memory allocation or hardware errors, uses uninitialized stack memory to compose the TLS Finished message, potentially leading to authentication bypasses such as replays...

CVE-2025-27810

CVE-2025-27810 affects Mbed TLS prior to 2.28.10 and 3.x prior to 3.6.3. In some failed memory allocation or hardware error scenarios, the library may use uninitialized stack memory to compose the TLS Finished message, potentially enabling authentication bypasses such as replays. Impact is descri...

CVE-2025-27810

Mbed TLS before 2.28.10 and 3.x before 3.6.3, in some cases of failed memory allocation or hardware errors, uses uninitialized stack memory to compose the TLS Finished message, potentially leading to authentication bypasses such as replays...

CVE-2025-27810

Mbed TLS before 2.28.10 and 3.x before 3.6.3, in some cases of failed memory allocation or hardware errors, uses uninitialized stack memory to compose the TLS Finished message, potentially leading to authentication bypasses such as replays...

The vulnerability of the `bnxt_qplib_alloc_init_hwq()` function in the drivers/infiniband/hw/bnxt_re/qplib_res.c module of the Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the bnxtqpliballocinithwq function in the drivers/infiniband/hw/bnxtre/qplibres.c module of the Linux kernel is related to code errors. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of protected informati...

The vulnerability of the osnoise_hotplug_workfn() function (kernel/trace/trace_osnoise.c) in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the osnoisehotplugworkfn function kernel/trace/traceosnoise.c in the Linux operating system is related to resource management errors. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the `tcp_can_coalesce_send_queue_head()` function in the `net/ipv4/tcp_output.c` module of the Linux kernel allows a attacker to cause a service failure.

The vulnerability of the tcpcancoalescesendqueuehead function in the net/ipv4/tcpoutput.c module of the Linux kernel is associated with code errors. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

NetScaler -13.1 56.18 - Non-recoverable : potential damage: system hardware in jeopardy or damaged

The Citrix NetScaler SDX 16000 appliance may exhibit the following symptoms: The appliance reports critical voltage errors in the ns.log and system message logs, indicating potential hardware damage. Specific Log Entries: The following log entries, or similar variations, are observed: Mar 9...

The vulnerability of the fiemap_process_hole() function in the fs/btrfs/extent_io.c module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the fiemapprocesshole function in the fs/btrfs/extentio.c module of the Linux operating system is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the geneve_xmit_skb() function in the drivers/net/geneve.c module of the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the genevexmitskb function in the drivers/net/geneve.c module of the Linux kernel is related to code errors. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the ufshcd_mcq_req_to_hwq() function in the drivers/ufs/core/ufs-mcq.c module of the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the ufshcdmcqreqtohwq function in the drivers/ufs/core/ufs-mcq.c module of the Linux kernel is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to cause service failures...

The vulnerability of the uniphier_sdremove() function in the drivers/mmc/host/uniphier-sd.c module of the Linux kernel allows a hacker to gain access to protected information.

The vulnerability of the uniphiersdremove function in the drivers/mmc/host/uniphier-sd.c module of the Linux kernel is related to security configuration errors. Exploiting this vulnerability could allow an attacker to access protected information...

The vulnerability of the freeep_fback() function in the drivers/usb/gadget/function/u_audio.c module of the Linux kernel driver allows a hacker to cause a service failure.

The vulnerability of the freeepfback function in the drivers/usb/gadget/function/uaudio.c file of the Linux kernel’s USB driver is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

CVE-2025-26485

A vulnerability in Beta80 Life 1st enables the retrieval of different error messages for failed authentication attempts in case of the usage of a wrong password or a non existent user. The difference in the returned error messages could be used by attackers to understand whether a certain user is...

The vulnerability of the notify_handler() function in the drivers/platform/x86/intel/vbtn.c module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the notifyhandler function in the drivers/platform/x86/intel/vbtn.c module of the Linux kernel is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to cause a service failure...