Lucene search
K

89 matches found

NVD
NVD
added 2026/06/24 5:17 p.m.10 views

CVE-2026-53126

In the Linux kernel, the following vulnerability has been resolved: blk-cgroup: fix disk reference leak in blkcgmaybethrottlecurrent Add the missing putdisk on the error path in blkcgmaybethrottlecurrent. When blkcg lookup, blkg lookup, or blkgtryget fails, the function jumps to the out label whi...

0.00157EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/06/05 7:14 p.m.10 views

CVE-2026-40832

An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the getDevicegroups function due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality...

7.1CVSS5.8AI score0.00262EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:13 p.m.9 views

CVE-2026-40838

An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the getDeviceScalings function due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality...

7.1CVSS5.8AI score0.00262EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/05/29 1:16 a.m.18 views

SUSE CVE-2026-46151

In the Linux kernel, the following vulnerability has been resolved: usb: usblp: fix heap leak in IEEE 1284 device ID via short response usblpctrlmsg collapses the usbcontrolmsg return value to 0/-errno, discarding the actual number of bytes transferred. A broken printer can complete the GETDEVICE...

6.3CVSS5.8AI score0.00123EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/28 9:36 a.m.13 views

CVE-2026-46151

In the Linux kernel, the following vulnerability has been resolved: usb: usblp: fix heap leak in IEEE 1284 device ID via short response usblpctrlmsg collapses the usbcontrolmsg return value to 0/-errno, discarding the actual number of bytes transferred. A broken printer can complete the GETDEVICE...

5.8AI score0.00123EPSS
Exploits0References9Affected Software1
EUVD
EUVD
added 2026/05/27 7:56 a.m.12 views

EUVD-2026-32137

An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the getDeviceScalings function due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality...

7.1CVSS5.9AI score0.00262EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/27 7:54 a.m.13 views

EUVD-2026-32161

An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the getDevicegroups function due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality...

7.1CVSS5.9AI score0.00262EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/03 6:31 p.m.5 views

EUVD-2026-18673

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: serialize lock/unlock against other NAND operations nandlock and nandunlock call into chip-ops.lockarea/unlockarea without holding the NAND device lock. On controllers that implement SETFEATURES via multiple low-lev...

5.8AI score0.00126EPSS
Exploits0References7
NVD
NVD
added 2026/04/03 4:16 p.m.5 views

CVE-2026-23434

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: serialize lock/unlock against other NAND operations nandlock and nandunlock call into chip-ops.lockarea/unlockarea without holding the NAND device lock. On controllers that implement SETFEATURES via multiple low-lev...

7.1CVSS0.00126EPSS
Exploits0References10
OSV
OSV
added 2026/04/03 4:16 p.m.8 views

UBUNTU-CVE-2026-23434

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: serialize lock/unlock against other NAND operations nandlock and nandunlock call into chip-ops.lockarea/unlockarea without holding the NAND device lock. On controllers that implement SETFEATURES via multiple low-lev...

7.1CVSS5.7AI score0.00126EPSS
Exploits0References9
ATTACKERKB
ATTACKERKB
added 2026/04/03 3:15 p.m.4 views

CVE-2026-23434

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: serialize lock/unlock against other NAND operations nandlock and nandunlock call into chip-ops.lockarea/unlockarea without holding the NAND device lock. On controllers that implement SETFEATURES via multiple low-lev...

5.7AI score0.00126EPSS
Exploits0References9Affected Software1
Cvelist
Cvelist
added 2026/04/03 3:15 p.m.27 views

CVE-2026-23434 mtd: rawnand: serialize lock/unlock against other NAND operations

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: serialize lock/unlock against other NAND operations nandlock and nandunlock call into chip-ops.lockarea/unlockarea without holding the NAND device lock. On controllers that implement SETFEATURES via multiple low-lev...

7.1CVSS0.00126EPSS
Exploits0References8
OSV
OSV
added 2026/04/03 3:15 p.m.1 views

CVE-2026-23434 mtd: rawnand: serialize lock/unlock against other NAND operations

In the Linux kernel, the following vulnerability has been resolved: mtd: rawnand: serialize lock/unlock against other NAND operations nandlock and nandunlock call into chip-ops.lockarea/unlockarea without holding the NAND device lock. On controllers that implement SETFEATURES via multiple low-lev...

7.1CVSS5.8AI score0.00126EPSS
Exploits0References13
Positive Technologies
Positive Technologies
added 2026/04/03 12:0 a.m.12 views

PT-2026-30129

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contained a flaw where nand lock and nand unlock functions did not hold the NAND device lock when calling chip-ops.lock area/unlock area. This could lead to race...

7.1CVSS5.4AI score0.00126EPSS
Exploits0References470
RedhatCVE
RedhatCVE
added 2026/01/29 3:26 a.m.8 views

CVE-2025-70999

A GPU device-ID validation flaw in the flow.cuda.getdevicecapability component of OneFlow v0.9.0 allows attackers to cause a Denial of Service DoS via a crafted device ID...

7.5CVSS5.9AI score0.00382EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/29 3:26 a.m.18 views

CVE-2025-65891

A GPU device-ID validation flaw in OneFlow v0.9.0 allows attackers to trigger a Denial of Dervice DoS by invoking flow.cuda.getdeviceproperties with an invalid or negative device index...

7.5CVSS5.9AI score0.00543EPSS
Exploits1References1
NVD
NVD
added 2026/01/28 6:16 p.m.8 views

CVE-2025-65891

A GPU device-ID validation flaw in OneFlow v0.9.0 allows attackers to trigger a Denial of Dervice DoS by invoking flow.cuda.getdeviceproperties with an invalid or negative device index...

7.5CVSS0.00543EPSS
Exploits1References3
Snyk
Snyk
added 2026/01/28 5:47 p.m.4 views

Improper Validation of Array Index

Overview Affected versions of this package are vulnerable to Improper Validation of Array Index via the flow.cuda.getdeviceproperties function. An attacker can cause the application to crash or become unresponsive by supplying an invalid or negative device index. Remediation There is no fixed...

8.7CVSS5.5AI score0.00543EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/01/28 12:0 a.m.8 views

Oneflow security vulnerabilities

Oneflow is an open-source deep learning framework developed by Oneflow. Version 0.9.0 of Oneflow contains a security vulnerability. This vulnerability stems from a flaw in the flow.cuda.getdevicecapability component, which lacks proper verification of GPU device IDs. This could lead to...

7.5CVSS5.8AI score0.00382EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2026/01/28 12:0 a.m.6 views

CVE-2025-70999

A GPU device-ID validation flaw in the flow.cuda.getdevicecapability component of OneFlow v0.9.0 allows attackers to cause a Denial of Service DoS via a crafted device ID...

5.9AI score0.00382EPSS
Exploits1References3
Rows per page
Query Builder