CVE-2025-54651

Race condition vulnerability in the kernel hufs module. Impact: Successful exploitation of this vulnerability may affect service confidentiality...

CVE-2025-54636

Issue of buffer overflow caused by insufficient data verification in the kernel drop detection module. Impact: Successful exploitation of this vulnerability may affect availability...

CVE-2025-54644

The CVE-2025-54644 issue is an out-of-bounds array access caused by insufficient data verification in the kernel ambient light module. Affected component: kernel ambient light handling (Huawei HarmonyOS-related context across multiple feeds). Potential impact listed is confidentiality loss if exp...

CVE-2025-54644

Out-of-bounds array access issue due to insufficient data verification in the kernel ambient light module. Impact: Successful exploitation of this vulnerability may affect service confidentiality...

CVE-2025-54643

Out-of-bounds array access issue due to insufficient data verification in the kernel ambient light module. Impact: Successful exploitation of this vulnerability may affect service confidentiality...

CVE-2025-54643

The CVE-2025-54643 entry describes an out-of-bounds array access in the kernel ambient light module, caused by insufficient data verification. Affected software is Huawei’s HarmonyOS/kernel ambient light component (per the CVE description and related CNVD/Red Hat/NVD echoes). Impact is limited to...

CVE-2025-54642

Issue of buffer overflow caused by insufficient data verification in the kernel gyroscope module. Impact: Successful exploitation of this vulnerability may affect availability...

CVE-2025-54642

CVE-2025-54642 concerns a buffer overflow caused by insufficient data verification in the kernel gyroscope module. The issue is tied to the kernel gyroscope component, with impact described as availability loss if exploited. Concrete details such as affected products/versions or a confirmed fix a...

CVE-2025-54637

CVE-2025-54637 is an out-of-bounds array access vulnerability in the kernel ambient light module, caused by insufficient data validation. The issue affects Huawei’s HarmonyOS and EMUI kernel components, with a confidentiality impact as per reported metrics. The available sources do not specify ex...

CVE-2025-54637

Out-of-bounds array access issue due to insufficient data verification in the kernel ambient light module. Impact: Successful exploitation of this vulnerability may affect service confidentiality...

CVE-2025-54636

Issue of buffer overflow caused by insufficient data verification in the kernel drop detection module. Impact: Successful exploitation of this vulnerability may affect availability...

CVE-2025-54625

Race condition vulnerability in the kernel file system module. Impact: Successful exploitation of this vulnerability may affect availability...

PT-2025-32088 · Kernel · Kernel

Name of the Vulnerable Software and Affected Versions: kernel affected versions not specified Description: An out-of-bounds array access issue exists due to insufficient data verification in the kernel ambient light module. Successful exploitation of this issue may affect service confidentiality...

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A competitive condition vulnerability exists in the Huawei HarmonyOS kernel hufs module, which can be exploited by an attacker to compromise confidentiality...

PT-2025-32095 · Unknown · Kernel Hufs Module

Name of the Vulnerable Software and Affected Versions: kernel hufs module affected versions not specified Description: A race condition exists in the kernel hufs module. Successful exploitation of this issue may affect service confidentiality. Recommendations: At the moment, there is no informati...

The vulnerability in the kernel modules driver/gpu/drm/amd/amdgpu/amdgpu_ras_eeprom.c of the Linux operating system allows a hacker to cause a service failure.

The vulnerability in the kernel modules such as drivers/gpu/drm/amd/amdgpu/amdgpuraseeprom.c of the Linux operating system is related to unlimited resource allocation. Exploiting this vulnerability can allow an attacker to cause service failures...

CVE-2025-38471

In the Linux kernel, the following vulnerability has been resolved: tls: always refresh the queue when reading sock After recent changes in net-next TCP compacts skbs much more aggressively. This unearthed a bug in TLS where we may try to operate on an old skb when checking if all skbs in the que...

Exploit for OS Command Injection in Docker

CDK - Zero Dependency Container Penetration Toolkit English | 简体中文 Legal Disclaimer Usage of CDK for attacking targets without prior mutual consent is illegal. CDK is for security testing purposes only. Overview CDK is an open-sourced container penetration toolkit, designed for offering stable...

CVE-2025-38464

CVE-2025-38464 affects the Linux kernel Tipc subsystem. The issue is a use-after-free in tipc_conn_close() that can occur when tipc_topsrv_stop() iterates tipc_net(net)->topsrv->conn_idr and calls tipc_conn_close() for each tipc_conn after releasing the IDR lock. If tipc_conn_recv_work() is...

The vulnerability in the module drivers/media/usb/cx231xx/cx231xx-417.c of Linux kernel allows a hacker to cause a service failure.

The vulnerability in the module drivers/media/usb/cx231xx/cx231xx-417.c of Linux operating systems is related to incorrect handling of resource identifiers. Exploiting this vulnerability can allow an attacker to cause service failures...