Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

AstraLinux
AstraLinuxadded 2026/05/20 5:53 a.m.3 views

Astra Linux - уязвимость в u-boot

An integer overflow occurs in the ext4fsreadsymlink function in Das U-Boot before version 2025.01-rc1. This issue arises due to the use of the zalloc function, which adds one to a le32 variable. This occurs through a crafted ext4 file system with an inode size of 0xffffffff. As a result, the mall...

7.1CVSS7.2AI score0.00365EPSS
Exploits0References2
OSV
OSVadded 2025/10/01 11:46 a.m.4 views

CVE-2023-53513 nbd: fix incomplete validation of ioctl arg

In the Linux kernel, the following vulnerability has been resolved: nbd: fix incomplete validation of ioctl arg We tested and found an alarm caused by nbdioctl arg without verification. The UBSAN warning calltrace like below: UBSAN: Undefined behaviour in fs/buffer.c:1709:35 signed integer...

5.5CVSS6.4AI score0.00136EPSS
Exploits0References7
BDU FSTEC
BDU FSTECadded 2025/03/12 12:0 a.m.6 views

The vulnerability of the sqfs inode_size function in the U-Boot loader allows a attacker to influence the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the sqfs inodesize function in the U-Boot loader is related to integer overflow. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

7.1CVSS7.5AI score0.00359EPSS
Exploits0References5Affected Software1
OSV
OSVadded 2025/02/18 11:15 p.m.1 views

DEBIAN-CVE-2024-57254

An integer overflow in sqfsinodesize in Das U-Boot before 2025.01-rc1 occurs in the symlink size calculation via a crafted squashfs filesystem...

6.8CVSS7.9AI score0.00359EPSS
Exploits0References1
OSV
OSVadded 2025/02/18 11:15 p.m.3 views

UBUNTU-CVE-2024-57256

An integer overflow in ext4fsreadsymlink in Das U-Boot before 2025.01-rc1 occurs for zalloc adding one to an le32 variable via a crafted ext4 filesystem with an inode size of 0xffffffff, resulting in a malloc of zero and resultant memory overwrite...

7.1CVSS7.3AI score0.00365EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2024/12/13 12:0 a.m.8 views

CBL Mariner 2.0 Security Update: kernel (CVE-2024-50015)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-50015 advisory. - In the Linux kernel, the following vulnerability has been resolved: ext4: dax: fix overflowing extents beyon...

5.5CVSS6AI score0.00232EPSS
Exploits0References2
SUSE CVE
SUSE CVEadded 2024/10/22 2:50 a.m.7 views

SUSE CVE-2024-50015

In the Linux kernel, the following vulnerability has been resolved: ext4: dax: fix overflowing extents beyond inode size when partially writing The daxiomaprw does two things in each iteration: map written blocks and copy user data to blocks. If the process is killed by userSee signal handling in...

5.5CVSS6.4AI score0.00232EPSS
Exploits0References16
RedHat Linux
RedHat Linuxadded 2020/08/03 12:15 p.m.2 views

grub2: Integer overflow in grub_ext2_read_link leads to heap-based buffer overflow

A flaw was found in grub2 while handling symlink on ext filesystems. A filesystem containing a symbolic link with an inode size of UINT32MAX causes an arithmetic overflow, leading to a zero-sized memory allocation with a subsequent heap-based buffer overflow. The highest threat from this...

6CVSS7.6AI score0.00465EPSS
Exploits0References4
Rows per page
Query Builder