Lucene search
K

3789 matches found

CNNVD
CNNVD
added 2026/05/12 12:0 a.m.12 views

Adobe Commerce 授权问题漏洞

Adobe Commerce is a leading global digital business solution for businesses and brands offered by Adobe in the United States. There is an authorization issue vulnerability in Adobe Commerce; this vulnerability stems from improper authorization practices, which may allow security features to be...

4.3CVSS5.8AI score0.00393EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/05/10 12:0 a.m.7 views

openSUSE 16 Security Update : iproute2 (openSUSE-SU-2026:20696-1)

The remote openSUSE 16 host has packages installed that are affected by a vulnerability as referenced in the openSUSE- SU-2026:20696-1 advisory. Security issues fixed: - CVE-2024-58251: terminal lock up via ANSI terminal escape sequence set in argv0 bsc1254324. Other updates and bugfixes: - Fix...

2.5CVSS5.8AI score0.00238EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/05/09 2:21 a.m.7 views

CVE-2026-7413

A hidden, persistent backdoor was found in Yarbo firmware v2.3.9 that provides remote, unauthenticated or weakly authenticated access to privileged functionality. The backdoor is undocumented, cannot be disabled via user-facing settings, and survives factory reset and ordinary firmware updates...

9.8CVSS5.7AI score0.00577EPSS
Exploits1References1
EUVD
EUVD
added 2026/05/08 3:31 p.m.11 views

EUVD-2026-28606

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisync: Fix UAF in lereadfeaturescomplete This fixes the following backtrace caused by hciconn being freed before lereadfeaturescomplete but after hcilereadremotefeaturessync so hciconndel - hcicmdsyncdequeue is not...

5.8AI score0.00219EPSS
Exploits0References3
NVD
NVD
added 2026/05/08 2:16 p.m.33 views

CVE-2026-43322

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisync: Fix UAF in lereadfeaturescomplete This fixes the following backtrace caused by hciconn being freed before lereadfeaturescomplete but after hcilereadremotefeaturessync so hciconndel - hcicmdsyncdequeue is not...

8.8CVSS0.00219EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2026/05/08 2:16 p.m.9 views

CVE-2026-43322

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisync: Fix UAF in lereadfeaturescomplete This fixes the following backtrace caused by hciconn being freed before lereadfeaturescomplete but after hcilereadremotefeaturessync so hciconndel - hcicmdsyncdequeue is not...

8.8CVSS5.8AI score0.00219EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/05/08 1:31 p.m.51 views

CVE-2026-43322 Bluetooth: hci_sync: Fix UAF in le_read_features_complete

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisync: Fix UAF in lereadfeaturescomplete This fixes the following backtrace caused by hciconn being freed before lereadfeaturescomplete but after hcilereadremotefeaturessync so hciconndel - hcicmdsyncdequeue is not...

8.8CVSS0.00219EPSS
Exploits0References2
CVE
CVE
added 2026/05/08 1:31 p.m.19 views

CVE-2026-43322

CVE-2026-43322 is a Linux kernel vulnerability in Bluetooth HCI sync handling (le_read_features_complete). The issue is a use-after-free (UAF) caused by freeing hci_conn after le_read_features_complete has been initiated but before it completes, allowing hci_cmd_sync_dequeue to fail to prevent th...

8.8CVSS5.8AI score0.00219EPSS
Exploits0References2Affected Software1
Debian CVE
Debian CVE
added 2026/05/08 1:31 p.m.9 views

CVE-2026-43322

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisync: Fix UAF in lereadfeaturescomplete This fixes the following backtrace caused by hciconn being freed before lereadfeaturescomplete but after hcilereadremotefeaturessync so hciconndel - hcicmdsyncdequeue is not...

8.8CVSS5.7AI score0.00219EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/05/08 1:31 p.m.6 views

CVE-2026-43322

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hcisync: Fix UAF in lereadfeaturescomplete This fixes the following backtrace caused by hciconn being freed before lereadfeaturescomplete but after hcilereadremotefeaturessync so hciconndel - hcicmdsyncdequeue is not...

5.7AI score0.00219EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/08 12:0 a.m.14 views

PT-2026-38973

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free UAF issue exists in the Bluetooth component of the Linux kernel. The problem occurs in the le read features complete function when hci conn is freed after hci le read...

8.8CVSS7.6AI score0.00219EPSS
Exploits0References29
EUVD
EUVD
added 2026/05/07 6:30 p.m.17 views

EUVD-2026-28398

A hidden, persistent backdoor was found in Yarbo firmware v2.3.9 that provides remote, unauthenticated or weakly authenticated access to privileged functionality. The backdoor is undocumented, cannot be disabled via user-facing settings, and survives factory reset and ordinary firmware updates...

7.2CVSS5.7AI score0.00577EPSS
Exploits1References3
NVD
NVD
added 2026/05/07 5:15 p.m.17 views

CVE-2026-7413

A hidden, persistent backdoor was found in Yarbo firmware v2.3.9 that provides remote, unauthenticated or weakly authenticated access to privileged functionality. The backdoor is undocumented, cannot be disabled via user-facing settings, and survives factory reset and ordinary firmware updates...

9.8CVSS0.00577EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2026/05/07 4:9 p.m.7 views

CVE-2026-7413

A hidden, persistent backdoor was found in Yarbo firmware v2.3.9 that provides remote, unauthenticated or weakly authenticated access to privileged functionality. The backdoor is undocumented, cannot be disabled via user-facing settings, and survives factory reset and ordinary firmware updates...

7.2CVSS5.7AI score0.00577EPSS
Exploits1References3
Malwarebytes
Malwarebytes
added 2026/05/07 10:21 a.m.16 views

If a fake moustache can fool age checks, is the Online Safety Act working?

A report based on a survey by the UK’s Internet Matters shows that much of the responsibility for managing the online safety of children still falls on families. The Online Safety Act came into effect in July, 2025, and the report explores what has changed in the online lives of UK families since...

5.8AI score
Exploits0
SUSE CVE
SUSE CVE
added 2026/05/07 2:18 a.m.11 views

SUSE CVE-2026-43094

In the Linux kernel, the following vulnerability has been resolved: ixgbevf: add missing negotiatefeatures op to Hyper-V ops table Commit a7075f501bd3 "ixgbevf: fix mailbox API compatibility by negotiating supported features" added the .negotiatefeatures callback to ixgbemacoperations and populat...

5.5CVSS5.8AI score0.00123EPSS
Exploits0References3
Packet Storm News
Packet Storm News
added 2026/05/07 12:0 a.m.9 views

Beyond the Wrapper: Identifying Artifact Reliance in Static Malware Classifiers Using TRUSTEE

Modern cybersecurity relies heavily on static machine-learning-based malware classifiers. However, transformations such as packing and other non-semantic modifications applied to executable files limit their reliability. Malware classifiers often learn these unnecessary artifacts rather than the...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/05/07 12:0 a.m.9 views

TUANDROMD-X: Advanced Entropy and Visual Analytics Dataset for Enhanced Malware Detection and Classification

Malware and malware-based attacks are becoming more prevalent and complex. Attackers regularly come up with new techniques that have the ability to evade conventional and signature-based malware defense. In order to address such threats, there is an increasing demand for advanced and better defen...

5.8AI score
Exploits0
Microsoft KB
Microsoft KB
added 2026/05/07 12:0 a.m.63 views

Hotfix update for Exchange Server Subscription Edition RTM HU6: May 7, 2026 (KB5081755)

Hotfix update for Exchange Server Subscription Edition RTM HU6: May 7, 2026 KB5081755 Hotfix Update HU 6 for Microsoft Exchange Server SE RTM was released on May 7, 2026. It includes fixes for non-security issues, and might introduce new features. These fixes and features will also be included in...

5.8AI score
Exploits0
EUVD
EUVD
added 2026/05/06 12:30 p.m.7 views

EUVD-2026-27598

In the Linux kernel, the following vulnerability has been resolved: ixgbevf: add missing negotiatefeatures op to Hyper-V ops table Commit a7075f501bd3 "ixgbevf: fix mailbox API compatibility by negotiating supported features" added the .negotiatefeatures callback to ixgbemacoperations and populat...

5.8AI score0.00123EPSS
Exploits0References6
Rows per page
Query Builder