SUSE CVE-2026-43477

In the Linux kernel, the following vulnerability has been resolved: drm/i915/vrr: Configure VRR timings after enabling TRANSDDIFUNCCTL Apparently ICL may hang with an MCE if we write TRANSVRRVMAX/FLIPLINE before enabling TRANSDDIFUNCCTL. Personally I was only able to reproduce a hang on an Dell X...

CVE-2025-69443

The CVE-2025-69443 entry describes Remote Code Execution in coleam00 Archon 0.1.0 due to a web-to-client attack. A crafted HTML page accessed by a victim can execute commands, run prompts on behalf of the user, control Archon UI features, and exfiltrate information including API keys. Reported by...

Archon 安全漏洞

Archon is a content management system CMS specifically designed for archival information management. Version 0.1.0 of Archon contains a security vulnerability. This vulnerability stems from a specially crafted HTML page, which may allow victims to execute commands when accessing the system, run...

CVE-2025-69443

Remote Code Execution in coleam00 Archon 0.1.0. A crafted HTML page, when accessed by a victim, can execute commands, run prompts on behalf of the user, control the Archon UI features, and steal all Archon information available on the UI including API keys...

EUVD-2025-209844

Remote Code Execution in coleam00 Archon 0.1.0. A crafted HTML page, when accessed by a victim, can execute commands, run prompts on behalf of the user, control the Archon UI features, and steal all Archon information available on the UI including API keys...

CVE-2026-43477

In the Linux kernel, the following vulnerability has been resolved: drm/i915/vrr: Configure VRR timings after enabling TRANSDDIFUNCCTL Apparently ICL may hang with an MCE if we write TRANSVRRVMAX/FLIPLINE before enabling TRANSDDIFUNCCTL. Personally I was only able to reproduce a hang on an Dell X...

CVE-2026-43477

CVE-2026-43477 affects the Linux kernel’s DRM/i915 driver, specifically the VRR path. The issue arises when VRR timings (TRANS_VRR_VMAX/FLIPLINE) are configured before enabling TRANS_DDI_FUNC_CTL, which can cause an MCE hang in some setups (e.g., certain external displays via a dock). The documen...

PT-2026-40684

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the drm/i915/vrr component where writing to TRANS VRR VMAX or FLIPLINE before enabling TRANS DDI FUNC CTL can cause a system hang with a Machine Check Exception MCE on...

CVE-2026-22541 DENIAL OF SERVICE VIA ICMP PACKETS

The massive sending of ICMP requests causes a denial of service on one of the boards from the EVCharger that allows control the EV interfaces. Since the board must be operating correctly for the charger to also function correctly...

Mautic 安全漏洞

Mautic is an open source marketing automation software from Mautic Open Source. The software monitors and manages websites, sends emails and manages customer resources. A security vulnerability exists in Mautic version 1.1.3 and prior versions, which stems from a lack of access control in the use...

CVE-2024-2383

ZenML (zenml-io/zenml)

[SECURITY] Fedora 35 Update: wgctrl-0-0.11.20210811git4253848.fc35

Package Wgctrl enables control of WireGuard interfaces on multiple platforms...

CVE-2021-37911

The management interface of BenQ smart wireless conference projector does not properly control user's privilege. Attackers can access any system directory of this device through the interface and execute arbitrary commands if he enters the local subnetwork...

McAfee Web Gateway Elevation of Privilege Vulnerability (CNVD-2020-52201)

McAfee Web Gateway is a high-performance secure Web gateway with best-in-class threat protection in a unified appliance software architecture. An elevation of privilege vulnerability exists in McAfee Web Gateway versions prior to 9.2.1. The vulnerability stems from improper user interface access...

Cisco Identity Services Engine Privilege Escalation Vulnerability (cisco-sa-20190123-ise-privilege)

According to its self-reported version, Cisco Identity Services Engine Software is affected by a privilege escalation vulnerability. The vulnerability is due to improper controls on certain pages in the web interface. An attacker could exploit this vulnerability by authenticating to the device wi...

FibeAir IP-10 Authentication Bypass

Credits: Ian Ling + Website: iancaling.com Vendor: ================= www.ceragon.com Product: ====================== -FibeAir IP-10 Vulnerability Type: =================== Default Root Account CVE Reference: ============== N/A Vulnerability Details: ===================== Ceragon FibeAir IP-10...

CVE-2009-2208

FreeBSD 6.3, 6.4, 7.1, and 7.2 does not enforce permissions on the SIOCSIFINFOIN6 IOCTL, which allows local users to modify or disable IPv6 network interfaces, as demonstrated by modifying the MTU...

Video Cam Server 1.0 - Administrative Interface Authentication Bypass

Video Cam Server 1.0 - Administrative Interface Authentication Bypass source: https://www.securityfocus.com/bid/13459/info Video Cam Server is prone to an authentication bypass vulnerability. This vulnerability exists because Video Cam Server fails to control access to the administrative interfac...