Lucene search
K

412 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: clk: rs9: Fix for suspend/resume behavior. Disabling the cache in commit 2ff4ba9e3702 “clk: rs9: Fix for I2C accessors” without removing cache synchronization in the resume path results in a kernel panic, as map-cacheops is unset...

5.5CVSS5.2AI score0.00134EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.1 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1, Linux, Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: binfmtflat: Fixed an integer overflow bug on 32-bit systems. Most of these sizes and counts are capped at 256MB, so the calculations do not result in integer overflows. The “relocs” count also needs to be checked. Otherwise, o...

5.5CVSS6.4AI score0.00211EPSS
Exploits0References2
OSV
OSV
added 2026/06/08 12:4 p.m.6 views

ROOT-APP-NPM-CVE-2020-36632 CVE-2020-36632 in @rootio/flat - Patched by Root

Root has patched CVE-2020-36632 in the @rootio/flat package for Root:npm. Multiple fixed versions available...

9.8CVSS5.4AI score0.01107EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/06/05 7:12 p.m.6 views

CVE-2026-39387

BoidCMS is an open-source, PHP-based flat-file CMS for building simple websites and blogs, using JSON as its database. Versions prior to 2.1.3 are vulnerable to a critical Local File Inclusion LFI attack via the tpl parameter, which can lead to Remote Code Execution RCE.The application fails to...

7.2CVSS5.8AI score0.00731EPSS
Exploits2References1
CNNVD
CNNVD
added 2026/05/29 12:0 a.m.9 views

Statamic 代码问题漏洞

Statamic is a powerful flat-file CMS built using Laravel by Statamic Inc. It allows all content, templates, assets, and settings to be stored in files rather than in a database. There were code vulnerabilities in versions prior to Statamic 5.73.22 and 6.18.1. These vulnerabilities stemmed from UR...

5.4CVSS5.9AI score0.00151EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/18 1:58 p.m.9 views

CVE-2026-46728

Das U-Boot before 2026.04 allows FIT Flat Image Tree signature verification bypass because hashed-nodes is omitted from a hash...

8.2CVSS5.8AI score0.00126EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/17 12:31 a.m.24 views

EUVD-2026-30673

Das U-Boot before 2026.04 allows FIT Flat Image Tree signature verification bypass because hashed-nodes is omitted from a hash...

8.2CVSS5.8AI score0.00126EPSS
Exploits0References3
OSV
OSV
added 2026/05/16 10:16 p.m.6 views

UBUNTU-CVE-2026-46728

Das U-Boot before 2026.04 allows FIT Flat Image Tree signature verification bypass because hashed-nodes is omitted from a hash...

8.2CVSS5.8AI score0.00126EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2026/05/16 10:16 p.m.10 views

CVE-2026-46728

Das U-Boot before 2026.04 allows FIT Flat Image Tree signature verification bypass because hashed-nodes is omitted from a hash...

8.2CVSS5.8AI score0.00126EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2026/05/16 9:26 p.m.6 views

CVE-2026-46728

Das U-Boot before 2026.04 allows FIT Flat Image Tree signature verification bypass because hashed-nodes is omitted from a hash...

8.2CVSS5.8AI score0.00126EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/05/16 9:26 p.m.7 views

CVE-2026-46728

Das U-Boot before 2026.04 allows FIT Flat Image Tree signature verification bypass because hashed-nodes is omitted from a hash...

8.2CVSS5.8AI score0.00126EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/05/16 9:26 p.m.9 views

CVE-2026-46728

Das U-Boot before 2026.04 allows FIT Flat Image Tree signature verification bypass because hashed-nodes is omitted from a hash...

8.2CVSS5.8AI score0.00126EPSS
Exploits0References2
CVE
CVE
added 2026/05/16 9:26 p.m.17 views

CVE-2026-46728

The CVE-2026-46728 entry concerns U-Boot (before 2026.04) where FIT (Flat Image Tree) signature verification can bypass trust because hashed-nodes are omitted from a hash. Affected software: U-Boot (pre-2026.04). Vulnerable component: FIT signature verification process. Root cause: omission of ha...

8.2CVSS5.8AI score0.00126EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/16 9:26 p.m.40 views

CVE-2026-46728

Das U-Boot before 2026.04 allows FIT Flat Image Tree signature verification bypass because hashed-nodes is omitted from a hash...

8.2CVSS0.00126EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/16 12:0 a.m.16 views

PT-2026-41468

Name of the Vulnerable Software and Affected Versions Das U-Boot versions prior to 2026.04 Description Das U-Boot allows a Flat Image Tree FIT signature verification bypass. This occurs because hashed-nodes are omitted from a hash, which can lead to the acceptance of unsigned or modified images...

8.2CVSS5.8AI score0.00126EPSS
Exploits0References5
CVE
CVE
added 2026/05/12 11:59 p.m.39 views

CVE-2026-8053

MongoDB Server’s time-series collection implementation is affected by an issue in the time-series bucket catalog where an inconsistency in the internal field-name-to-index mapping can cause an out-of-bounds memory write in mongod. The vulnerability requires an authenticated user with database wri...

8.8CVSS6.1AI score0.0057EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2026/05/11 9:47 a.m.4 views

MINI-P8JR-4QFP-H77H

Bulletin has no description...

7.5CVSS5.7AI score0.00813EPSS
Exploits0
EUVD
EUVD
added 2026/03/28 12:30 p.m.7 views

EUVD-2017-18949

Flat Assembler 1.71.21 contains a stack-based buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying oversized input to the application. Attackers can craft malicious assembly input exceeding 5895 bytes to overwrite the instruction pointer and execute...

8.6CVSS6.6AI score0.00219EPSS
Exploits1References4
NVD
NVD
added 2026/03/28 12:16 p.m.8 views

CVE-2017-20228

Flat Assembler 1.71.21 contains a stack-based buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying oversized input to the application. Attackers can craft malicious assembly input exceeding 5895 bytes to overwrite the instruction pointer and execute...

8.6CVSS0.00219EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/03/28 12:0 p.m.28 views

CVE-2017-20228 Flat Assembler 1.71.21 Stack-Based Buffer Overflow ROP

Flat Assembler 1.71.21 contains a stack-based buffer overflow vulnerability that allows local attackers to execute arbitrary code by supplying oversized input to the application. Attackers can craft malicious assembly input exceeding 5895 bytes to overwrite the instruction pointer and execute...

8.6CVSS0.00219EPSS
Exploits1References3
Rows per page
Query Builder