Security Bulletin: IBM Maximo Application Suite - Visual Inspection component uses logback-core which is vulnerable to CVE-2025-11226

Summary IBM Maximo Application Suite - Visual Inspection component uses logback-core which is vulnerable to CVE-2025-11226. This bulletin contains information regarding the vulnerability and its remediation. Vulnerability Details CVEID:CVE-2025-11226 DESCRIPTION: ACE vulnerability in conditional...

Siemens SCALANCE and RUGGEDCOM Improper Input Validation (CVE-2025-38084)

"In the Linux kernel, the following vulnerability has been resolved: mm/hugetlb: unshare page tables during VMA split, not before Currently, splitvma triggers hugetlb page table unsharing through vmops-maysplit. This happens before the VMA lock and rmap locks are taken - which is too early, it...

PT-2026-7351

Improper input validation in Windows Hyper-V allows an authorized attacker to execute code locally...

Siemens SCALANCE and RUGGEDCOM Improper Input Validation (CVE-2025-39853)

In the Linux kernel, the following vulnerability has been resolved: i40e: Fix potential invalid access when MAC list is empty listfirstentry never returns NULL - if the list is empty, it still returns a pointer to an invalid object, leading to potential invalid memory access when dereferenced. Fi...

PT-2026-7441

Name of the Vulnerable Software and Affected Versions affected versions not specified Description A flaw exists in input validation within the System Management Mode SMM communications buffer. This could allow a user with elevated privileges to read from or write to memory outside of designated...

Siemens SCALANCE and RUGGEDCOM Improper Input Validation (CVE-2025-38086)

"In the Linux kernel, the following vulnerability has been resolved: net: ch9200: fix uninitialised access during miinwayrestart In miinwayrestart the code attempts to call mii-mdioread which is ch9200mdioread. ch9200mdioread utilises a local buffer called buff, which is initialised with...

PT-2026-7442

Name of the Vulnerable Software and Affected Versions versions prior to 2.3 Description A flaw exists in the System Management Mode SMM handler due to improper input validation. This could allow an attacker with Ring0 access to write to System Management RAM SMRAM and alter the execution flow...

Siemens SCALANCE and RUGGEDCOM Improper Input Validation (CVE-2025-39860)

"In the Linux kernel, the following vulnerability has been resolved: Bluetooth: Fix use-after-free in l2capsockcleanuplisten syzbot reported the splat below without a repro. In the splat, a single thread calling btacceptdequeue freed sk and touched it after that. The root cause would be the racy...

Siemens SCALANCE and RUGGEDCOM Improper Input Validation (CVE-2025-38345)

In the Linux kernel, the following vulnerability has been resolved: ACPICA: fix acpi operand cache leak in dswstate.c ACPICA commit 987a3b5cf7175916e2a4b6ea5b8e70f830dfe732 I found an ACPI cache leak in ACPI early termination and boot continuing case. When early termination occurs due to maliciou...

CVE-2025-15330

Tanium addressed an improper input validation vulnerability in Deploy...

CVE-2025-15325

Tanium addressed an improper input validation vulnerability in Discover...

CVE-2025-15321

Tanium addressed an improper input validation vulnerability in Tanium Appliance...

CVE-2025-15321

Tanium addressed an improper input validation vulnerability in Tanium Appliance...

CVE-2025-15325 Tanium addressed an improper input validation vulnerability in Discover.

Tanium addressed an improper input validation vulnerability in Discover...

CVE-2025-15325 Tanium addressed an improper input validation vulnerability in Discover.

Tanium addressed an improper input validation vulnerability in Discover...

CVE-2025-15325

Tanium Discover contains an improper input validation vulnerability (CVE-2025-15325). The issue is described across multiple sources as affecting Tanium Discover, with a CVSS 3.1 base score of 6.3 (Network attack vector, Low privileges required, No user interaction). The vulnerability is characte...

CVE-2025-15325

Tanium addressed an improper input validation vulnerability in Discover...

EUVD-2025-206832

Tanium addressed an improper input validation vulnerability in Discover...

CVE-2025-15330

Tanium addressed an improper input validation vulnerability in Deploy...

CVE-2025-15330 Tanium addressed an improper input validation vulnerability in Deploy.

Tanium addressed an improper input validation vulnerability in Deploy...