Lucene search
K

27 matches found

Debian CVE
Debian CVE
added 2026/04/27 8:59 a.m.7 views

CVE-2026-41635

Apache MINA's AbstractIoBuffer.resolveClass contains two branches, one of them for static classes or primitive types does not check the class at all, bypassing the classname allowlist and allowing arbitrary code to be executed. The fix checks if the class is present in the accepted class...

9.8CVSS5.7AI score0.0064EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/04/27 12:0 a.m.14 views

PT-2026-35373

Name of the Vulnerable Software and Affected Versions Apache MINA versions 2.0.0 through 2.0.27 Apache MINA versions 2.1.0 through 2.1.10 Apache MINA versions 2.2.0 through 2.2.5 Description A flaw in the resolveClass function of AbstractIoBuffer allows a bypass of the classname allowlist for...

9.8CVSS6.2AI score0.0064EPSS
Exploits0References281
Cvelist
Cvelist
added 2025/12/24 10:56 a.m.30 views

CVE-2023-54041 io_uring: fix memory leak when removing provided buffers

In the Linux kernel, the following vulnerability has been resolved: iouring: fix memory leak when removing provided buffers When removing provided buffers, iobuffer structs are not being disposed of, leading to a memory leak. They can't be freed individually, because they are allocated in...

0.00162EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-2306

Malware in sbrugna...

7.8CVSS7.7AI score0.00188EPSS
Exploits0References2
NVD
NVD
added 2025/09/04 4:15 p.m.9 views

CVE-2025-38695

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Check for hdwq null ptr when cleaning up lpfcvport structure If a call to lpfcsli4readrev from lpfcsli4hbasetup fails, the resultant cleanup routine lpfcsli4vportdeletefcpxriaborted may occur before sli4hba.hdwqs are...

5.5CVSS0.00159EPSS
Exploits0References12
Vulnrichment
Vulnrichment
added 2025/09/04 4:58 a.m.2 views

CVE-2025-36903

In lwisiobufferwrite, there is a possible OOB read/write due to improper input validation. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...

6.3AI score0.00078EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2023/02/15 5:25 a.m.5 views

SUSE CVE-2014-8181

The kernel in Red Hat Enterprise Linux 7 and MRG-2 does not clear garbage data for SGIO buffer, which may leaking sensitive information to userspace...

5.5CVSS6.2AI score0.00359EPSS
Exploits0References3
Rows per page
Query Builder