Lucene search
+L

1048 matches found

Cvelist
Cvelist
added 2026/02/15 10:47 a.m.39 views

CVE-2025-32062 Stack Buffer Overflow leading to RCE in Bluetooth stack of Infotainment ECU

The specific flaw exists within the Bluetooth stack developed by Alps Alpine of the Infotainment ECU manufactured by Bosch. The issue results from the lack of proper boundary validation of user-supplied data, which can result in a stack-based buffer overflow when receiving a specific packet on th...

8.8CVSS0.00379EPSS
Exploits0References3
CVE
CVE
added 2026/02/15 10:47 a.m.19 views

CVE-2025-32062

CVE-2025-32062 describes a stack-based buffer overflow in the Bluetooth stack by Alps Alpine for the Bosch Infotainment ECU. The issue stems from improper boundary validation of user-supplied data on a specific L2CAP packet, enabling remote code execution with root privileges. First identified on...

8.8CVSS6.9AI score0.00379EPSS
Exploits0References3
OSV
OSV
added 2026/02/14 2:22 p.m.29 views

CLSA-2026-1771078945 kernel: Fix of 131 CVEs

net/ieee802154: don't warn zero-sized rawsendmsg CVE-2022-50706 - scsi: target: iscsi: Fix buffer overflow in liotargetnaclinfoshow CVE-2023-53676 - ALSA: usb-audio: Fix potential overflow of PCM transfer buffer CVE-2025-40269 - ipv6: reject malicious packets in ipv6gsosegment CVE-2025-38572 -...

7.8CVSS7.1AI score0.00387EPSS
Exploits0References1
OSV
OSV
added 2026/02/14 2:2 p.m.38 views

CLSA-2026-1771077729 kernel: Fix of 107 CVEs

net/ieee802154: don't warn zero-sized rawsendmsg CVE-2022-50706 - bpf: Don't redirect packets with invalid pktlen CVE-2022-49975 - media: uvcvideo: Fix 1-byte out-of-bounds read in uvcparseformat CVE-2025-38680 - ipv6: addrlabel: fix infoleak when sending struct ifaddrlblmsg to network...

7.8CVSS7.1AI score0.00319EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/02/11 4:37 p.m.3 views

kernel: Linux kernel (CIFS): Use-after-free vulnerability allows data integrity compromise and denial of service

A flaw was found in the Linux kernel's Common Internet File System CIFS component. This use-after-free vulnerability occurs due to improper handling of server hostname information during connection re-establishment. An attacker on an adjacent network could exploit this, potentially leading to a...

5.8AI score0.00162EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/11 11:58 a.m.4 views

kernel: Linux kernel (CIFS): Use-after-free vulnerability allows data integrity compromise and denial of service

A flaw was found in the Linux kernel's Common Internet File System CIFS component. This use-after-free vulnerability occurs due to improper handling of server hostname information during connection re-establishment. An attacker on an adjacent network could exploit this, potentially leading to a...

5.8AI score0.00162EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/02/11 12:0 a.m.10 views

RHEL 8 : kernel (RHSA-2026:2535)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:2535 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: RDMA/core: Fix KASAN:...

7.8CVSS5.9AI score0.00211EPSS
Exploits0References25
Tenable Nessus
Tenable Nessus
added 2026/02/11 12:0 a.m.13 views

RHEL 9 : kernel (RHSA-2026:2573)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:2573 advisory. The kernel packages contain the Linux kernel, the core of any Linux operating system. Security Fixes: kernel: Linux kernel: ath9khtc...

7.8CVSS5.7AI score0.00264EPSS
Exploits0References25
OSV
OSV
added 2026/02/02 1:54 p.m.17 views

CLSA-2026-1770040438 kernel: Fix of 14 CVEs

efivarfs: Fix slab-out-of-bounds in efivarfsdcompare CVE-2025-39817 - scsi: ses: Fix possible descptr out-of-bounds accesses CVE-2023-53675 - ipv6: Fix out-of-bounds access in ipv6findtlv CVE-2023-53705 - libceph: fix potential use-after-free in havemonandosdmap CVE-2025-68285 - scsi: lpfc: Fix...

7.8CVSS6AI score0.00225EPSS
Exploits0References1
OSV
OSV
added 2026/02/02 10:39 a.m.19 views

CLSA-2026-1770028764 kernel: Fix of 14 CVEs

efivarfs: Fix slab-out-of-bounds in efivarfsdcompare CVE-2025-39817 - scsi: ses: Fix possible descptr out-of-bounds accesses CVE-2023-53675 - ipv6: Fix out-of-bounds access in ipv6findtlv CVE-2023-53705 - libceph: fix potential use-after-free in havemonandosdmap CVE-2025-68285 - scsi: lpfc: Fix...

7.8CVSS6.8AI score0.00225EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2026/01/28 7:17 p.m.4 views

kernel: Linux kernel (CIFS): Use-after-free vulnerability allows data integrity compromise and denial of service

A flaw was found in the Linux kernel's Common Internet File System CIFS component. This use-after-free vulnerability occurs due to improper handling of server hostname information during connection re-establishment. An attacker on an adjacent network could exploit this, potentially leading to a...

5.8AI score0.00162EPSS
Exploits0References5
OSV
OSV
added 2026/01/28 2:35 p.m.3 views

SUSE-SU-2026:0316-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP5 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2022-49604,CVE-2025-40074: ip: Fix data-races around sysctlipfwdusepmtu bsc1238414 bsc1252794. - CVE-2022-50527: drm/amdgpu: Fix size validation for non-exclusive...

7.8CVSS6.9AI score0.0616EPSS
Exploits1References312
AstraLinux
AstraLinux
added 2026/01/27 5:1 a.m.11 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: l2cap: Check encryption key size on incoming connection This is required for passing GAP/SEC/SEM/BI-04-C PTS test case: Security Mode 4 Level 4, Responder - Invalid Encryption Key Size - 128 bit This tests the security...

8.1CVSS6.1AI score0.00091EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/01/27 5:1 a.m.5 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerabilities have been resolved: Bluetooth: Fixed null-ptr-deref in l2capsockresumecb. syzbot reported null-ptr-deref in l2capsockresumecb. 0 l2capsockresumecb has a similar issue that was fixed in commit 1bff51ea59a9 “Bluetooth: fixed use-after-free errors i...

5.5CVSS6.4AI score0.00156EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/27 12:0 a.m.5 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005148)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005148 advisory. In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix uaf in l2capconnect Syzbot reported BUG: KASAN: slab-use-after-free in...

7.8CVSS6.6AI score0.00262EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/01/27 12:0 a.m.3 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005160)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005160 advisory. In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: handle NULL sock pointer in l2capsockalloc A NULL sock pointer is passed into...

5.5CVSS6.7AI score0.00193EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/23 12:0 a.m.5 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-004842)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004842 advisory. In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix user-after-free This uses l2capchanholdunlesszero after calling...

8CVSS6.1AI score0.0033EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.4 views

Azure Linux 3.0 Security Update: kernel (CVE-2025-21969)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-21969 advisory. - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix slab-use-after- fr...

7.8CVSS5.7AI score0.0018EPSS
Exploits0References2
OSV
OSV
added 2026/01/20 12:9 p.m.20 views

CLSA-2026-1768895798 kernel: Fix of 7 CVEs

fs/proc: fix uaf in procreaddirde CVE-2025-40271 - fs: fix UAF/GPF bug in nilfsmdtdestroy CVE-2022-2978 - Bluetooth: L2CAP: fix "bad unlock balance" in l2capdisconnectrsp CVE-2023-53297 - net: sched: sfb: fix null pointer access issue when sfbinit fails CVE-2022-50356 - ALSA: usb-audio: Fix size...

7.8CVSS6.9AI score0.00519EPSS
Exploits3References1
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 8 : kernel-4.18.0-553.30.1.el8_10 (AXSA:2024-9050:39)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2024-9050:39 advisory. kernel: media: edia: dvbdev: fix a use-after-free CVE-2024-27043 kernel: Bluetooth: l2cap: fix null-ptr-deref in l2capchantimeout CVE-2024-27399...

7.8CVSS6.9AI score0.00301EPSS
Exploits0References5
Rows per page
Query Builder