6483 matches found
Linux Distros Unpatched Vulnerability : CVE-2025-40209
"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - btrfs: fix memory leak of qgrouplist in btrfsaddqgrouprelation When btrfsaddqgrouprelation is called with invalid qgroup levels src = dst, the function returns...
CVE-2025-43374
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, visionOS 2.5, macOS Sonoma 14.7.3, macOS Ventura 13.7.3, macOS Sequoia 15.5, watchOS 11.5. An attacker in physical proximity may be able to cause an out-of-bounds rea...
CVE-2025-43374
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 18.5 and iPadOS 18.5, iPadOS 17.7.7, macOS Sequoia 15.5, macOS Sonoma 14.7.3, macOS Ventura 13.7.3, tvOS 18.5, visionOS 2.5, watchOS 11.5. An attacker in physical proximity may be able to cause an...
CVE-2025-43374
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iOS 18.5 and iPadOS 18.5, iPadOS 17.7.7, macOS Sequoia 15.5, macOS Sonoma 14.7.3, macOS Ventura 13.7.3, tvOS 18.5, visionOS 2.5, watchOS 11.5. An attacker in physical proximity may be able to cause an...
CVE-2025-43374
An out-of-bounds read was addressed with improved bounds checking. This issue is fixed in iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, visionOS 2.5, macOS Sonoma 14.7.3, macOS Ventura 13.7.3, macOS Sequoia 15.5, watchOS 11.5. An attacker in physical proximity may be able to cause an out-of-bounds rea...
CVE-2025-43374
CVE-2025-43374 involves an out-of-bounds read in kernel memory that could be triggered by an attacker in physical proximity. Apple fixes indicate this affects iPadOS 17.7.7, iOS 18.5 and iPadOS 18.5, visionOS 2.5, macOS Sonoma 14.7.3, macOS Ventura 13.7.3, macOS Sequoia 15.5, and watchOS 11.5, wi...
CVE-2025-63602
A vulnerability was discovered in Awesome Miner thru 11.2.4 that allows arbitrary read and write to kernel memory and MSRs such as LSTAR as an unprivileged user. This is due to the implementation of an insecure version of WinRing0 1.2.0.5, renamed to IntelliBreeze.Maintenance.Service.sys that lac...
DEBIAN-CVE-2025-40209
In the Linux kernel, the following vulnerability has been resolved: btrfs: fix memory leak of qgrouplist in btrfsaddqgrouprelation When btrfsaddqgrouprelation is called with invalid qgroup levels src = dst, the function returns -EINVAL directly without freeing the preallocated qgrouplist structur...
Apple多款产品 安全漏洞
Apple iOS is an operating system developed for mobile devices. apple macOS is a specialized operating system developed for Mac computers. apple iPadOS is an operating system for iPad tablet computers. A security vulnerability exists in several Apple products that originates from an out-of-bounds...
CVE-2025-63602
A vulnerability was discovered in Awesome Miner thru 11.2.4 that allows arbitrary read and write to kernel memory and MSRs such as LSTAR as an unprivileged user. This is due to the implementation of an insecure version of WinRing0 1.2.0.5, renamed to IntelliBreeze.Maintenance.Service.sys that lac...
CVE-2025-63602
A vulnerability was discovered in Awesome Miner thru 11.2.4 that allows arbitrary read and write to kernel memory and MSRs such as LSTAR as an unprivileged user. This is due to the implementation of an insecure version of WinRing0 1.2.0.5, renamed to IntelliBreeze.Maintenance.Service.sys that lac...
CVE-2025-63602
A vulnerability was discovered in Awesome Miner thru 11.2.4 that allows arbitrary read and write to kernel memory and MSRs such as LSTAR as an unprivileged user. This is due to the implementation of an insecure version of WinRing0 1.2.0.5, renamed to IntelliBreeze.Maintenance.Service.sys that lac...
CVE-2025-63602
A vulnerability was discovered in Awesome Miner thru 11.2.4 that allows arbitrary read and write to kernel memory and MSRs such as LSTAR as an unprivileged user. This is due to the implementation of an insecure version of WinRing0 1.2.0.5, renamed to IntelliBreeze.Maintenance.Service.sys that lac...
CVE-2025-63602
Summary: CVE-2025-63602 affects Awesome Miner up to v11.2.4. The root cause is an insecure WinRing0 driver (1.2.0.5, renamed IntelliBreeze.Maintenance.Service.sys) with an unsecured DACL, allowing unprivileged users to perform arbitrary reads/writes to kernel memory and MSRs (including LSTAR). Th...
Siemens SCALANCE and RUGGEDCOM Devices Improper Input Validation (CVE-2024-49878)
resource: Because drivers/dax/kmem.c calls addmemorydrivermanaged during onlining CXL memory, which makes System RAM kmem a descendant of CXL Window X. This confuses regionintersects, which expects all System RAM resources to be at the top level of iomemresource. This plugin only works with...
PT-2025-47330
Name of the Vulnerable Software and Affected Versions Awesome Miner versions through 11.2.4 Description A flaw exists in Awesome Miner that permits unauthorized read and write access to kernel memory and Model Specific Registers MSRs, including LSTAR, even for users without administrative...
Siemens SCALANCE and RUGGEDCOM Devices Access of Uninitialized Pointer (CVE-2024-57874)
arm64: ptrace: vulnerability due to an uninitialized variable in the taggedaddrctrlset function, leading to potential memory leakage from the kernel stack when a zero-length SETREGSET call is made, exposing up to 64 bits of memory. This plugin only works with Tenable.ot. Please visit...
EUVD-2025-198044
A vulnerability was discovered in Awesome Miner thru 11.2.4 that allows arbitrary read and write to kernel memory and MSRs such as LSTAR as an unprivileged user. This is due to the implementation of an insecure version of WinRing0 1.2.0.5, renamed to IntelliBreeze.Maintenance.Service.sys that lac...
OESA-2025-2659 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: misc: tifm: fix possible memory leak in tifm7xx1switchmedia If deviceregister returns error in tifm7xx1switchmedia, name of kobject which is allocated in...
SUSE CVE-2025-40183
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix metadatadst leak bpfredirectneighv4,6 Cilium has a BPF egress gateway feature which forces outgoing K8s Pod traffic to pass through dedicated egress gateways which then SNAT the traffic in order to interact with stable I...