Lucene search
K

1255 matches found

Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.13 views

PT-2026-37563

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the pvrusb2 media component where the pvr2 send request ex function fails to handle a scenario where a write USB Request Block URB—a data structure used for USB...

5.5CVSS5.8AI score0.00128EPSS
Exploits0
CNNVD
CNNVD
added 2026/05/06 12:0 a.m.14 views

Oracle Macaron Tool 输入验证错误漏洞

Oracle Macaron Tool is an application configuration and migration assistance tool developed by Oracle, a company in the United States. Version 0.22.0 of Oracle Macaron Tool contains a vulnerability related to input validation. This vulnerability arises from failed host address verification, which...

4.7CVSS5.8AI score0.00147EPSS
Exploits0References2
NVD
NVD
added 2026/05/05 4:16 p.m.14 views

CVE-2026-43063

In the Linux kernel, the following vulnerability has been resolved: xfs: don't irele after failing to iget in xfsattrirecoverwork xlogrecoveryiget never set @ip to a valid pointer if they return an error, so this irele will walk off a dangling pointer. Fix that...

7.8CVSS0.00126EPSS
Exploits0References4
NVD
NVD
added 2026/05/01 3:16 p.m.4 views

CVE-2026-31749

In the Linux kernel, the following vulnerability has been resolved: comedi: niatmio16d: Fix invalid clean-up after failed attach If the driver's COMEDI "attach" handler function atmio16dattach returns an error, the COMEDI core will call the driver's "detach" handler function atmio16ddetach to cle...

5.5CVSS0.00123EPSS
Exploits0References8
EUVD
EUVD
added 2026/05/01 2:14 p.m.11 views

EUVD-2026-26562

In the Linux kernel, the following vulnerability has been resolved: comedi: niatmio16d: Fix invalid clean-up after failed attach If the driver's COMEDI "attach" handler function atmio16dattach returns an error, the COMEDI core will call the driver's "detach" handler function atmio16ddetach to cle...

5.7AI score0.00123EPSS
Exploits0References8
Cvelist
Cvelist
added 2026/05/01 2:14 p.m.30 views

CVE-2026-31749 comedi: ni_atmio16d: Fix invalid clean-up after failed attach

In the Linux kernel, the following vulnerability has been resolved: comedi: niatmio16d: Fix invalid clean-up after failed attach If the driver's COMEDI "attach" handler function atmio16dattach returns an error, the COMEDI core will call the driver's "detach" handler function atmio16ddetach to cle...

0.00123EPSS
Exploits0References8
Debian CVE
Debian CVE
added 2026/05/01 2:14 p.m.5 views

CVE-2026-31749

In the Linux kernel, the following vulnerability has been resolved: comedi: niatmio16d: Fix invalid clean-up after failed attach If the driver's COMEDI "attach" handler function atmio16dattach returns an error, the COMEDI core will call the driver's "detach" handler function atmio16ddetach to cle...

5.5CVSS5.7AI score0.00123EPSS
Exploits0
CVE
CVE
added 2026/05/01 1:55 p.m.24 views

CVE-2026-31699

Technical details about CVE-2026-31699 are not publicly available in the provided documents. Monitor for updates from OSV, Red Hat, SUSE, Debian and other trackers for affected products and fixes.

7.1CVSS6AI score0.00126EPSS
Exploits0References8Affected Software1
CNNVD
CNNVD
added 2026/05/01 12:0 a.m.8 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from ineffective cleanup after failed attachments. This vulnerability may lead to writes to low-I/O...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.6 views

PT-2026-36384

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the comedi ni atmio16d driver where the atmio16d detach handler function calls reset atmio16d unconditionally during a failed attach process. If the atmio16d attach...

5.5CVSS5.4AI score0.00123EPSS
Exploits0References18
OSV
OSV
added 2026/04/25 8:41 a.m.7 views

CLSA-2026-1776934758 screen: Fix of CVE-2023-24626

CVE-2023-24626: fix missing signal sending permission check on failed query messages...

6.5CVSS6.6AI score0.0054EPSS
Exploits3References1
EUVD
EUVD
added 2026/04/24 7:45 a.m.8 views

EUVD-2026-25406

The Liaison Site Prober plugin for WordPress is vulnerable to Information Exposure in all versions up to and including 1.2.1 via the /wp-json/site-prober/v1/logs REST API endpoint. The permissionsread permission callback unconditionally returns true via returntrue instead of checking for...

5.3CVSS5.2AI score0.00372EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/04/24 12:0 a.m.18 views

PT-2026-34864

The Liaison Site Prober plugin for WordPress is vulnerable to Information Exposure in all versions up to and including 1.2.1 via the /wp-json/site-prober/v1/logs REST API endpoint. The permissions read permission callback unconditionally returns true via return true instead of checking for...

5.3CVSS5.2AI score0.00372EPSS
Exploits0References10
ATTACKERKB
ATTACKERKB
added 2026/04/23 5:51 p.m.3 views

CVE-2026-40182

OpenTelemetry dotnet is a dotnet telemetry framework. From 1.13.1 to before 1.15.2, When exporting telemetry to a back-end/collector over gRPC or HTTP using OpenTelemetry Protocol format OTLP, if the request results in a unsuccessful request i.e. HTTP 4xx or 5xx, the response is read into memory...

5.3CVSS5.8AI score0.00304EPSS
Exploits0References5Affected Software1
CVE
CVE
added 2026/04/23 5:51 p.m.22 views

CVE-2026-40182

OpenTelemetry dotnet OTLP exporter (versions 1.13.1–1.15.1) is affected. When exporting via gRPC/HTTP and the response status is 4xx/5xx, the client reads the entire HTTP response body into memory without an upper bound. This can cause memory exhaustion in the consuming application if the back-en...

5.9CVSS5.8AI score0.00304EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2026/04/23 10:41 a.m.17 views

CLSA-2026-1776940861 screen: Fix of CVE-2023-24626

CVE-2023-24626: fix missing signal sending permission check on failed query messages...

6.5CVSS6.6AI score0.0054EPSS
Exploits3References1
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.3 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013648)

"The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013648 advisory. In the Linux kernel, the following vulnerability has been resolved: net: fix UAF issue in nfqnlnfhookdrop when opsinit failed When the opsinit interface is invoked ...

5.6AI score0.0018EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/22 12:0 a.m.4 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-013475)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-013475 advisory. In the Linux kernel, the following vulnerability has been resolved: ext4: fix timer use-after-free on failed mount Syzbot has found an ODEBUG bug in ext4fillsuper Th...

7.8CVSS6.7AI score0.00271EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/04/21 10:21 p.m.4 views

CVE-2026-40935 WWBN/AVideo has CAPTCHA Bypass via Attacker-Controlled Length Parameter and Missing Token Invalidation on Failure

WWBN AVideo is an open source video platform. In versions 29.0 and prior, objects/getCaptcha.php accepts the CAPTCHA length ql directly from the query string with no clamping or sanitization, letting any unauthenticated client force the server to generate a 1-character CAPTCHA word. Combined with...

5.3CVSS5.8AI score0.00218EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/04/21 8:30 p.m.2 views

CVE-2026-6796

A vulnerability was determined in Sanluan PublicCMS up to 6.202506.d. Affected is the function loglogin of the file core/src/main/java/com/publiccms/controller/admin/LoginAdminController.java of the component Failed Login Handler. This manipulation of the argument errorPassword causes cleartext...

5.3CVSS5.5AI score0.00147EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder