Lucene search
K

3040 matches found

RedHat Linux
RedHat Linux
added 2025/07/07 6:10 a.m.7 views

kernel: x86/microcode/AMD: Fix out-of-bounds on systems with CPU-less NUMA nodes

In the Linux kernel, the following vulnerability has been resolved: x86/microcode/AMD: Fix out-of-bounds on systems with CPU-less NUMA nodes Currently, loadmicrocodeamd iterates over all NUMA nodes, retrieves their CPU masks and unconditionally accesses per-CPU data for the first CPU of each mask...

7.8CVSS6.8AI score0.00195EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/07/07 12:0 a.m.3 views

CodeAstro Simple Hospital Management System 安全漏洞

CodeAstro Simple Hospital Management System is a simple hospital management system from CodeAstro. A security vulnerability exists in CodeAstro Simple Hospital Management System version 1.0, which originates from a cross-site scripting attack due to an incorrect manipulation of the parameters Fir...

5.4CVSS4.4AI score0.00264EPSS
Exploits1References2
Circl
Circl
added 2025/07/03 3:43 p.m.20 views

CVE-2025-50258

creationtimestamp| type| source ---|---|--- 2025-07-03 15:43:15+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lt32y6nbdf2r...

8.1CVSS7.3AI score0.0039EPSS
Exploits1References1
OSV
OSV
added 2025/07/03 9:15 a.m.3 views

UBUNTU-CVE-2025-38167

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: handle hdrfirstde return value The hdrfirstde function returns a pointer to a struct NTFSDE. This pointer may be NULL. To handle the NULL error effectively, it is important to implement an error handler. This will help...

5.5CVSS6.2AI score0.00138EPSS
Exploits0References41
SUSE CVE
SUSE CVE
added 2025/07/02 11:21 p.m.1 views

SUSE CVE-2025-38092

In the Linux kernel, the following vulnerability has been resolved: ksmbd: use listfirstentryornull for opinfogetlist The listfirstentry macro never returns NULL. If the list is empty then it returns an invalid pointer. Use listfirstentryornull to check if the list is empty...

5.5CVSS6.6AI score0.00136EPSS
Exploits0References3
OSV
OSV
added 2025/07/02 3:15 p.m.2 views

DEBIAN-CVE-2025-38092

In the Linux kernel, the following vulnerability has been resolved: ksmbd: use listfirstentryornull for opinfogetlist The listfirstentry macro never returns NULL. If the list is empty then it returns an invalid pointer. Use listfirstentryornull to check if the list is empty...

5.5CVSS5.3AI score0.00136EPSS
Exploits0References1
Circl
Circl
added 2025/07/02 9:43 a.m.10 views

CVE-2025-5746

creationtimestamp| type| source ---|---|--- 2025-07-02 09:43:47+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lsxwgiyagv2r...

9.8CVSS7.3AI score0.00613EPSS
Exploits0References1
Wired Threat Level
Wired Threat Level
added 2025/06/27 3:36 p.m.1 views

US Supreme Court Upholds Texas Porn ID Law

In a 6-3 decision, the Supreme Court held that age verification for explicit sites is constitutional. In a dissent, Justice Elena Kagan warned it burdens adults and ignores First Amendment precedent...

7.3AI score
Exploits0
OSV
OSV
added 2025/06/25 3:15 p.m.2 views

CVE-2025-6610

A vulnerability was found in itsourcecode Employee Management System up to 1.0. It has been classified as critical. This affects an unknown part of the file /admin/editempprofile.php. The manipulation of the argument FirstName leads to sql injection. It is possible to initiate the attack remotely...

7.2CVSS5.7AI score
Exploits0References5
CNNVD
CNNVD
added 2025/06/25 12:0 a.m.5 views

itsourcecode Employee Management System 注入漏洞

itsourcecode Employee Management System is itsourcecode open source employee management system. An injection vulnerability exists in itsourcecode Employee Management System version 1.0, which stems from improper handling of the parameter FirstName in the file /admin/editempprofile.php, which can...

7.2CVSS5.7AI score0.0033EPSS
Exploits1References6
Circl
Circl
added 2025/06/21 8:45 p.m.12 views

CVE-2025-6417

creationtimestamp| type| source ---|---|--- 2025-06-21 20:45:38+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/19128 2025-06-21 23:59:19+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ls5r46aotd2a...

8.8CVSS6.2AI score0.00361EPSS
Exploits1References2
Packet Storm News
Packet Storm News
added 2025/06/21 12:0 a.m.2 views

Optimistic MEV in Ethereum Layer 2s: Why Blockspace Is Always in Demand

Layer 2 rollups are rapidly absorbing DeFi activity, securing over $40 billion and accounting for nearly half of Ethereum's DEX volume by Q1 2025, yet their MEV dynamics remain understudied. We address this gap by defining and quantifying optimistic MEV, a form of speculative, on-chain cyclic...

7.5AI score
Exploits0
SUSE CVE
SUSE CVE
added 2025/06/19 3:15 a.m.3 views

SUSE CVE-2025-38042

In the Linux kernel, the following vulnerability has been resolved: dmaengine: ti: k3-udma-glue: Drop skipfdq argument from k3udmaglueresetrxchn The user of k3udmaglueresetrxchn e.g. tiam65cpswnuss can run on multiple platforms having different DMA architectures. On some platforms there can be on...

5.5CVSS6.5AI score0.00138EPSS
Exploits0References3
OSV
OSV
added 2025/06/18 10:15 a.m.1 views

UBUNTU-CVE-2025-38071

In the Linux kernel, the following vulnerability has been resolved: x86/mm: Check return value from memblockphysallocrange At least with CONFIGPHYSICALSTART=0x100000, if there is 4 MiB of contiguous free memory available at this point, the kernel will crash and burn because memblockphysallocrange...

5.5CVSS6.2AI score0.00152EPSS
Exploits0References31
OSV
OSV
added 2025/06/16 12:15 p.m.8 views

CVE-2025-5689

A flaw was found in the temporary user record that authd uses in the pre-auth NSS. As a result, a user login for the first time will be considered to be part of the root group in the context of that SSH session...

8.5CVSS6.9AI score
Exploits0References1
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.4 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: dm thin: Make getfirstthin use rcu-safe list first function. The documentation in rculist.h explains the absence of listemptyrcu and warns programmers against relying on a sequence of listempty - listfirst in RCU-safe code. This ...

5.5CVSS6.2AI score0.0021EPSS
Exploits0References3
Packet Storm News
Packet Storm News
added 2025/06/11 12:0 a.m.3 views

Oracle-Based Multistep Strategy for Solving Polynomial Systems over Finite Fields and Algebraic Cryptanalysis of the Aradi Cipher

The multistep solving strategy consists in a divide-and-conquer approach: when a multivariate polynomial system is computationally infeasible to solve directly, one variable is assigned over the elements of the base finite field, and the procedure is recursively applied to the resulting simplifie...

6.8AI score
Exploits0
Github Security Blog
Github Security Blog
added 2025/06/10 9:31 p.m.6 views

@nx/azure-cache Vulnerable to Build Cache Poisoning via Untrusted Pull Requests

A critical security vulnerability exists in remote cache extensions for common build systems utilizing bucket-based remote cache such as those using Amazon S3, Google Cloud Storage, or similar object storage that allows any contributor with pull request privileges to inject compromised artifacts...

9.4CVSS7AI score0.00192EPSS
Exploits0References5Affected Software1
CNVD
CNVD
added 2025/06/06 12:0 a.m.4 views

FreeScout Cross-Site Scripting Vulnerability (CNVD-2025-20795)

FreeScout is an ultra-lightweight free open source helpdesk and shared inbox built using PHP Laravel framework by FreeScout. FreeScout suffers from a cross-site scripting vulnerability that is caused by improper validation of user-supplied input by the lastname and firstname profile data. No...

5.4CVSS6.3AI score0.00214EPSS
Exploits1References1
Microsoft Secure
Microsoft Secure
added 2025/06/05 5:0 p.m.9 views

Connect with us at the Gartner Security & Risk Management Summit

Security professionals visiting booths scattered around a hall, eager for solutions to today’s top cybersecurity challenges to protect their resources and people. The hum of hundreds of conversations. Presenters in packed sessions sharing expertise, trends, and stories to energize attendees. Few...

7.1AI score
Exploits0
Rows per page
Query Builder