Lucene search
K

209 matches found

Cvelist
Cvelist
added 2025/12/04 3:31 p.m.23 views

CVE-2025-40231 vsock: fix lock inversion in vsock_assign_transport()

In the Linux kernel, the following vulnerability has been resolved: vsock: fix lock inversion in vsockassigntransport Syzbot reported a potential lock inversion deadlock between vsockregistermutex and sklock-AFVSOCK when vsocklinger is called. The issue was introduced by commit 687aa0c5581b "vsoc...

0.00179EPSS
Exploits0References7
OSV
OSV
added 2025/12/04 3:31 p.m.5 views

CVE-2025-40231 vsock: fix lock inversion in vsock_assign_transport()

In the Linux kernel, the following vulnerability has been resolved: vsock: fix lock inversion in vsockassigntransport Syzbot reported a potential lock inversion deadlock between vsockregistermutex and sklock-AFVSOCK when vsocklinger is called. The issue was introduced by commit 687aa0c5581b "vsoc...

6.3AI score0.00179EPSS
Exploits0References10
RedhatCVE
RedhatCVE
added 2025/11/07 1:46 p.m.5 views

CVE-2025-61945

Radiometrics VizAir is vulnerable to any remote attacker via access to the admin panel of the VizAir system without authentication. Once inside, the attacker can modify critical weather parameters such as wind shear alerts, inversion depth, and CAPE values, which are essential for accurate weathe...

10CVSS7AI score0.00751EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2025/11/06 1:1 a.m.7 views

drm/amdgpu: Replace Mutex with Spinlock for RLCG register access to avoid Priority Inversion in SRIOV

...

4.7CVSS8.8AI score0.00161EPSS
Exploits0
NVD
NVD
added 2025/11/04 5:16 p.m.6 views

CVE-2025-61945

Radiometrics VizAir is vulnerable to any remote attacker via access to the admin panel of the VizAir system without authentication. Once inside, the attacker can modify critical weather parameters such as wind shear alerts, inversion depth, and CAPE values, which are essential for accurate weathe...

10CVSS0.00751EPSS
Exploits0References2
OSV
OSV
added 2025/11/04 5:16 p.m.5 views

CVE-2025-61945

Radiometrics VizAir is vulnerable to any remote attacker via access to the admin panel of the VizAir system without authentication. Once inside, the attacker can modify critical weather parameters such as wind shear alerts, inversion depth, and CAPE values, which are essential for accurate weathe...

9.8CVSS5.9AI score0.00751EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/11/04 4:10 p.m.10 views

CVE-2025-61945 Missing Authentication for Critical Function in Radiometrics VizAir

Radiometrics VizAir is vulnerable to any remote attacker via access to the admin panel of the VizAir system without authentication. Once inside, the attacker can modify critical weather parameters such as wind shear alerts, inversion depth, and CAPE values, which are essential for accurate weathe...

10CVSS0.00751EPSS
Exploits0References2
CVE
CVE
added 2025/11/04 4:10 p.m.23 views

CVE-2025-61945

Radiometrics VizAir is affected by a missing authentication for critical functions vulnerability: an unauthenticated remote attacker can access the admin panel and modify key weather parameters (wind shear alerts, inversion depth, CAPE) and potentially disable alerts or alter runway settings. Mul...

10CVSS6.6AI score0.00751EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/11/04 4:10 p.m.2 views

CVE-2025-61945 Missing Authentication for Critical Function in Radiometrics VizAir

Radiometrics VizAir is vulnerable to any remote attacker via access to the admin panel of the VizAir system without authentication. Once inside, the attacker can modify critical weather parameters such as wind shear alerts, inversion depth, and CAPE values, which are essential for accurate weathe...

10CVSS6.6AI score0.00751EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/11/04 12:0 a.m.4 views

PT-2025-45017

Name of the Vulnerable Software and Affected Versions Radiometrics VizAir affected versions not specified Description Radiometrics VizAir is susceptible to unauthorized access to the admin panel, allowing remote attackers to modify critical weather parameters. These parameters include wind shear...

10CVSS6.5AI score0.00751EPSS
Exploits0References7
Packet Storm News
Packet Storm News
added 2025/10/29 12:0 a.m.6 views

Model Inversion Attacks Meet Cryptographic Fuzzy Extractors

Model inversion attacks pose an open challenge to privacy-sensitive applications that use machine learning ML models. For example, face authentication systems use modern ML models to compute embedding vectors from face images of the enrolled users and store them. If leaked, inversion attacks can...

6.8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/10/27 12:0 a.m.2 views

Siemens SIMATIC Devices Improper Locking (CVE-2024-35895)

"In the Linux kernel, the following vulnerability has been resolved: bpf, sockmap: Prevent lock inversion deadlock in map delete elem syzkaller started using corpuses where a BPF tracing program deletes elements from a sockmap/sockhash map. Because BPF tracing programs can be invoked from any...

5.5CVSS6.2AI score0.0018EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/10/27 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2023-53731

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - netlink: fix potential deadlock in netlinkseterr syzbot reported a possible deadlock in netlinkseterr 1 A similar issue was fixed in commit 1d482e666b8e netlin...

6.2AI score0.00211EPSS
Exploits0References3
OSV
OSV
added 2025/10/22 2:15 p.m.4 views

DEBIAN-CVE-2023-53731

In the Linux kernel, the following vulnerability has been resolved: netlink: fix potential deadlock in netlinkseterr syzbot reported a possible deadlock in netlinkseterr 1 A similar issue was fixed in commit 1d482e666b8e "netlink: disable IRQs for netlinklocktable" in netlinklocktable This patch...

5.4AI score0.00211EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/10/22 12:0 a.m.9 views

PT-2025-43132

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.4.0-rc6-syzkaller-00240-g4e9f0ec38852 Description The Linux kernel contained a potential deadlock issue within the netlink set err function. The syzbot fuzzer identified a possible lock inversion dependency,...

7.8CVSS7.3AI score0.08942EPSS
Exploits4References988
Positive Technologies
Positive Technologies
added 2025/10/21 12:0 a.m.5 views

PT-2025-49058

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw related to a lock inversion deadlock between vsock register mutex and sk lock-AF VSOCK when the vsock linger function is called. This issue stemmed from ...

4.4CVSS7.4AI score0.00179EPSS
Exploits0
EUVD
EUVD
added 2025/10/08 5:2 a.m.4 views

EUVD-2025-31846

A weakness has been identified in itsourcecode Student Transcript Processing System 1.0. Affected is an unknown function of the file /login.php. Executing manipulation of the argument uname can lead to sql injection. It is possible to launch the attack remotely. The exploit has been made availabl...

7.5CVSS7.3AI score0.00387EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-6521

Malware in sbrugna...

6.8CVSS9AI score0.00893EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/03 8:7 p.m.11 views

EUVD-2025-11826

Malicious code in bioql PyPI...

7.3AI score0.00161EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-48057

Malicious code in bioql PyPI...

7.5CVSS6.8AI score0.00491EPSS
Exploits0References5
Rows per page
Query Builder