Lucene search
K

392 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.3 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: phy: marvell: a3700-comphy: Fix out-of-bounds read issue There is an out-of-bounds read access to gbePhyInitfixfixidx.addr during each iteration after fixidx reaches ARRAYSIZEgbePhyInitfix. Ensure that gbePhyInitaddr is used when...

5.5CVSS5.7AI score0.00211EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/19 5:13 a.m.32 views

CVE-2025-7737 DoS Vulnerability in 10G iSCSI Interface of Hitachi Virtual Storage Platform

DoS Vulnerability in 10G iSCSI Interface of Hitachi Virtual Storage Platform. This issue affects Hitachi Virtual Storage Platform E990, E1090, E1090H: before DKCMAIN Ver.93-07-21-80/00-05, CHBiSCSI Ver.88-01-02-04, before DKCMAIN Ver.93-07-01-80/00-07, CHBiSCSI Ver.88-01-02-04, before DKCMAIN...

8.6CVSS0.00268EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/19 5:13 a.m.11 views

EUVD-2025-210286

DoS Vulnerability in 10G iSCSI Interface of Hitachi Virtual Storage Platform. This issue affects Hitachi Virtual Storage Platform E990, E1090, E1090H: before DKCMAIN Ver.93-07-21-80/00-05, CHBiSCSI Ver.88-01-02-04, before DKCMAIN Ver.93-07-01-80/00-07, CHBiSCSI Ver.88-01-02-04, before DKCMAIN...

8.6CVSS5.8AI score0.00268EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/19 12:0 a.m.11 views

PT-2026-50833

Name of the Vulnerable Software and Affected Versions Hitachi Virtual Storage Platform E990, E1090, E1090H versions prior to DKCMAIN Ver.93-07-21-80/00-05, CHBiSCSI Ver.88-01-02-04 Hitachi Virtual Storage Platform E390, E590, E790, E390H, E590H, E790H versions prior to DKCMAIN...

8.6CVSS5.9AI score0.00268EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/02/25 4:7 a.m.13 views

CVE-2025-63409

Privilege escalation and improper access control in GCOM EPON 1GE C00R371V00B01 allows remote authenticated users to modify administrator only settings and extract administrator credentials...

8.8CVSS5.4AI score0.00293EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/24 3:8 p.m.3 views

CVE-2026-27521 Binardat 10G08-0800GSM Network Switch Missing Login Rate Limiting

Binardat 10G08-0800GSM network switch firmware version V300SP10260209 and prior do not implement rate limiting or account lockout on failed login attempts, enabling brute-force attacks against user credentials...

7.5CVSS5.3AI score0.00246EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/02/24 3:6 p.m.23 views

CVE-2026-27517 Binardat 10G08-0800GSM Network Switch XSS

Binardat 10G08-0800GSM network switch firmware version V300SP10260209 and prior reflect unsanitized user input in the web interface, allowing an attacker to inject and execute arbitrary JavaScript in the context of an authenticated user...

6.1CVSS0.00139EPSS
Exploits0References2
CVE
CVE
added 2026/02/24 3:4 p.m.14 views

CVE-2026-27515

Binardat 10G08-0800GSM network switch firmware versions prior to V300SP10260209 expose predictable numeric session identifiers in the web management interface, allowing an attacker to guess valid session IDs and hijack authenticated sessions. The issue is located in the web management session han...

9.3CVSS5.4AI score0.00321EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/02/24 3:4 p.m.3 views

CVE-2026-27515 Binardat 10G08-0800GSM Network Switch Predictable Session Identifiers

Binardat 10G08-0800GSM network switch firmware versions prior to V300SP10260209 generate predictable numeric session identifiers in the web management interface. An attacker can guess valid session IDs and hijack authenticated sessions...

9.3CVSS5.9AI score0.00321EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/02/24 12:0 a.m.8 views

PT-2026-21758

Binardat 10G08-0800GSM network switch firmware versions prior to V300SP10260209 store a user password in a client-side cookie as a Base64-encoded value accessible via the web interface. Because Base64 is reversible and provides no confidentiality, an attacker who can access the cookie value can...

8.7CVSS5.3AI score0.00196EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/02/10 4:25 p.m.4 views

CVE-2025-24851

Uncaught exception in the firmware for some 100GbE IntelR Ethernet Controller E810 before version cvl fw 1.7.8.x within Ring 0: Bare Metal OS may allow a denial of service. System software adversary with a privileged user combined with a low complexity attack may enable denial of service. This...

6.7CVSS5.5AI score0.00113EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/10 4:25 p.m.28 views

CVE-2025-24851

Uncaught exception in the firmware for some 100GbE IntelR Ethernet Controller E810 before version cvl fw 1.7.8.x within Ring 0: Bare Metal OS may allow a denial of service. System software adversary with a privileged user combined with a low complexity attack may enable denial of service. This...

6.7CVSS0.00113EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/11/12 12:0 a.m.7 views

CVE-2025-63353

A vulnerability in FiberHome GPON ONU HG6145F1 RP4423 allows the device's factory default Wi-Fi password WPA/WPA2 pre-shared key to be predicted from the SSID. The device generates default passwords using a deterministic algorithm that derives the router passphrase from the SSID, enabling an...

0.01194EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2025/11/05 12:0 a.m.2 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989426)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989426 advisory. In the Linux kernel, the following vulnerability has been resolved: usb: fix various gadget panics on 10gbps cabling usbassigndescriptors is called with 5 parameters...

6.3CVSS6.1AI score0.00684EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/10/09 11:23 p.m.4 views

SUSE CVE-2025-39957

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: increase scanieslen for S1G Currently the S1G capability element is not taken into account for the scanieslen, which leads to a buffer length validation failure in ieee80211prephwscan and subsequent WARN in...

3.3CVSS6.5AI score0.0014EPSS
Exploits0References21
CVE
CVE
added 2025/10/09 9:47 a.m.28 views

CVE-2025-39957

CVE-2025-39957 affects the Linux kernel wireless stack (wifi: mac80211) where S1G capability length was not accounted for in scan_ies_len, causing a buffer length validation failure in ieee80211_prep_hw_scan() and a WARN in __ieee80211_start_scan(). The fix adds S1G length to the calculation to e...

7.8CVSS6.2AI score0.0014EPSS
Exploits0References4Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2000-0696

Malware in sbrugna...

5CVSS6.4AI score0.0167EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2010-4236

Malware in sbrugna...

7.9CVSS4.5AI score0.02939EPSS
Exploits1References19
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2002-1578

Malware in sbrugna...

5CVSS6.4AI score0.03191EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2008-3795

Malware in sbrugna...

7.1CVSS6.2AI score0.02757EPSS
Exploits1References8
Rows per page
Query Builder