12 matches found
CVE-2026-31749 comedi: ni_atmio16d: Fix invalid clean-up after failed attach
In the Linux kernel, the following vulnerability has been resolved: comedi: niatmio16d: Fix invalid clean-up after failed attach If the driver's COMEDI "attach" handler function atmio16dattach returns an error, the COMEDI core will call the driver's "detach" handler function atmio16ddetach to cle...
CVE-2026-26185
Directus is a real-time API and App dashboard for managing SQL database content. Before 11.14.1, a timing-based user enumeration vulnerability exists in the password reset functionality. When an invalid reseturl parameter is provided, the response time differs by approximately 500ms between...
GHSA-JR94-GJ3H-C8RF Directus Vulnerable to User Enumeration via Password Reset Timing Attack
Summary A timing-based user enumeration vulnerability exists in the password reset functionality. When an invalid reseturl parameter is provided, the response time differs by approximately 500ms between existing and non-existing users, enabling reliable user enumeration. Details The password rese...
CVE-2026-26185
Directus before v11.14.1 is affected by a timing-based user enumeration vulnerability in the password reset flow. When an invalid reset_url is supplied, responses differ by about 500ms between existing and non-existing users, enabling enumeration of valid usernames. The issue is fixed in v11.14.1...
CVE-2022-50976
A local attacker could cause a full device reset by resetting the device passwords using an invalid reset file via USB...
CVE-2022-50976
A local attacker could cause a full device reset by resetting the device passwords using an invalid reset file via USB...
EUVD-2022-55953
A local attacker could cause a full device reset by resetting the device passwords using an invalid reset file via USB...
CVE-2022-50976 Innomic VibroLine Configurator and avibia Configurator allow unintended device reset via USB
A local attacker could cause a full device reset by resetting the device passwords using an invalid reset file via USB...
CVE-2022-50976
CVE-2022-50976 affects Innomic VibroLine Configurator and avibia Configurator. A local attacker can trigger a full device reset by resetting device passwords with an invalid reset file over USB, per Red Hat/NVD/CVE records. The vulnerability is local, requires no user interaction, and can impact ...
CVE-2022-50976
A local attacker could cause a full device reset by resetting the device passwords using an invalid reset file via USB...
Innomic VibroLine Series 安全漏洞
The Innomic VibroLine Series is a professional vibration measurement and analysis system developed by the German company Innomic. The Innomic VibroLine Series has a security vulnerability: local attackers can reset the device’s password using an invalid reset file via USB, resulting in the comple...
PT-2026-5663
A local attacker could cause a full device reset by resetting the device passwords using an invalid reset file via USB...