Lucene search
K

23 matches found

Tenable Nessus
Tenable Nessus
added 4 days ago7 views

Linux Distros Unpatched Vulnerability : CVE-2026-53232

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net: phy: clean the sfp upstream if phy probing fails Sashiko reported that we don't call sfpbusdelupstream in the probe failure path, so let's add it, otherwis...

8.8CVSS5.8AI score0.00221EPSS
Exploits0References4
CVE
CVE
added last week8 views

CVE-2026-55667

File Browser CVE-2026-55667 allows a scoped, non-admin user with only Create permission to delete files outside their scope during failed-upload cleanup. The issue stems from ScopedFs.RemoveAll bypassing the symlink guard that other methods enforce, with the direct-upload cleanup path invoking Re...

8.2CVSS6AI score0.00359EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/25 12:0 a.m.10 views

PT-2026-52539

Name of the Vulnerable Software and Affected Versions File Browser versions prior to 2.63.16 Description A scoped, non-admin user with only Create permission can delete arbitrary files outside their assigned scope, including other tenants' data and the application database. This occurs during the...

8.2CVSS6AI score0.00359EPSS
Exploits0References3
CVE
CVE
added 2026/05/01 2:15 p.m.12 views

CVE-2026-31783

The CVE-2026-31783 entry refers to a Linux kernel issue in spi: amlogic: spifc-a4 where the on-host NAND ECC engine teardown was missing in probe unwind and remove-time cleanup. The fix adds a devm cleanup action so nand_ecc_unregister_on_host_hw_engine() runs automatically on probe failures and ...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/04/21 12:0 a.m.6 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-011018)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-011018 advisory. In the Linux kernel, the following vulnerability has been resolved: net: netsec: fix error handling in netsecregistermdio If phydeviceregister fails, phydevicefree...

5.8AI score0.00173EPSS
Exploits0References4
NVD
NVD
added 2026/02/04 4:16 p.m.6 views

CVE-2025-71192

In the Linux kernel, the following vulnerability has been resolved: ALSA: ac97: fix a double free in sndac97controllerregister If ac97addadapter fails, putdevice is the correct way to drop the device reference. kfree is not required. Add kfree if idralloc fails and in ac97adapterrelease to do the...

0.00156EPSS
Exploits0References5
EUVD
EUVD
added 2025/12/24 3:30 p.m.5 views

EUVD-2022-55813

In the Linux kernel, the following vulnerability has been resolved: ipc: mqueue: fix possible memory leak in initmqueuefs commit db7cfc380900 "ipc: Free mqsysctls if ipc namespace creation failed" Here's a similar memory leak to the one fixed by the patch above. retiremqsysctls need to be called...

5.9AI score0.00198EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/12/24 1:16 p.m.6 views

CVE-2023-54126

In the Linux kernel, the following vulnerability has been resolved: crypto: safexcel - Cleanup ring IRQ workqueues on load failure A failure loading the safexcel driver results in the following warning on boot, because the IRQ affinity has not been correctly cleaned up. Ensure we clean up the...

5.9AI score0.0018EPSS
Exploits0References8
OSV
OSV
added 2025/12/24 1:16 p.m.9 views

UBUNTU-CVE-2023-54126

In the Linux kernel, the following vulnerability has been resolved: crypto: safexcel - Cleanup ring IRQ workqueues on load failure A failure loading the safexcel driver results in the following warning on boot, because the IRQ affinity has not been correctly cleaned up. Ensure we clean up the...

5.7AI score0.0018EPSS
Exploits0References9
NVD
NVD
added 2025/12/24 1:15 p.m.3 views

CVE-2022-50729

In the Linux kernel, the following vulnerability has been resolved: ksmbd: Fix resource leak in ksmbdsessionrpcopen When ksmbdrpcopen fails then it must call ksmbdrpcidfree to undo the result of ksmbdipcidalloc...

0.002EPSS
Exploits0References4
CVE
CVE
added 2025/12/09 1:30 a.m.22 views

CVE-2023-53849

Technical details about CVE-2023-53849 are not publicly provided in the supplied documents. Monitor for updates from official advisories; no concrete impact, affected products, or fixes are described here.

6AI score0.00186EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2025/09/29 5:35 a.m.5 views

kernel: io_uring/futex: ensure io_futex_wait() cleans up properly on failure

In the Linux kernel, the following vulnerability has been resolved: iouring/futex: ensure iofutexwait cleans up properly on failure The iofutexdata is allocated upfront and assigned to the iokiocb asyncdata field, but the request isn't marked with REQFASYNCDATA at that point. Those two should...

8.8CVSS6.8AI score0.00179EPSS
Exploits0References5
OSV
OSV
added 2025/09/05 6:15 p.m.1 views

DEBIAN-CVE-2025-39698

In the Linux kernel, the following vulnerability has been resolved: iouring/futex: ensure iofutexwait cleans up properly on failure The iofutexdata is allocated upfront and assigned to the iokiocb asyncdata field, but the request isn't marked with REQFASYNCDATA at that point. Those two should...

5.5CVSS5.8AI score0.00179EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/05 5:21 p.m.3 views

CVE-2025-39698 io_uring/futex: ensure io_futex_wait() cleans up properly on failure

In the Linux kernel, the following vulnerability has been resolved: iouring/futex: ensure iofutexwait cleans up properly on failure The iofutexdata is allocated upfront and assigned to the iokiocb asyncdata field, but the request isn't marked with REQFASYNCDATA at that point. Those two should...

6.1AI score0.00179EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/08/07 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2025-38400

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - nfs: Clean up /proc/net/rpc/nfs when nfsfsprocnetinit fails. syzbot reported a warning below 1 following a fault injection in nfsfsprocnetinit. 0 When...

5.5CVSS6.6AI score0.00183EPSS
Exploits0References3
OSV
OSV
added 2025/04/01 4:15 p.m.3 views

DEBIAN-CVE-2025-21906

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: clean up ROC on failure If the firmware fails to start the session protection, then we do call iwlmvmrocfinished here, but that won't do anything at all because IWLMVMSTATUSROCP2PRUNNING was never set. Set...

5.5CVSS5.5AI score0.00174EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2025/02/27 2:7 a.m.7 views

CVE-2024-57985

In the Linux kernel, the following vulnerability has been resolved: firmware: qcom: scm: Cleanup global 'scm' on probe failures If SCM driver fails the probe, it should not leave global 'scm' variable assigned, because external users of this driver will assume the probe finished successfully. For...

5.5CVSS5.6AI score0.00187EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2025/01/21 12:18 p.m.4 views

CVE-2025-21661 gpio: virtuser: fix missing lookup table cleanups

In the Linux kernel, the following vulnerability has been resolved: gpio: virtuser: fix missing lookup table cleanups When a virtuser device is created via configfs and the probe fails due to an incorrect lookup table, the table is not removed. This prevents subsequent probe attempts from...

6AI score0.00172EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2024/12/28 3:48 a.m.9 views

SUSE CVE-2024-56573

In the Linux kernel, the following vulnerability has been resolved: efi/libstub: Free correct pointer on failure cmdlineptr is an out parameter, which is not allocated by the function itself, and likely points into the caller's stack. cmdline refers to the pool allocation that should be freed whe...

5.5CVSS7.6AI score0.00225EPSS
Exploits0References13
RedHat Linux
RedHat Linux
added 2023/11/21 2:47 p.m.6 views

kernel: net/sched: cls_fw component can be exploited as result of failure in tcf_change_indev function

A use-after-free vulnerability was found in fwsetparms in net/sched/clsfw.c in network scheduler sub-component in the Linux Kernel. This issue occurs due to a missing sanity check during cleanup at the time of failure, leading to a misleading reference. This may allow a local attacker to gain loc...

7.8CVSS6.6AI score0.00521EPSS
Exploits0References5
Rows per page
Query Builder