Lucene search
K

10068 matches found

NVD
NVD
added 2025/08/19 5:15 p.m.8 views

CVE-2025-38571

In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix client side handling of tls alerts A security exploit was discovered in NFS over TLS in tlsalertrecv due to its assumption that there is valid data in the msghdr's iterator's kvec. Instead, this patch proposes the...

5.5CVSS0.00146EPSS
Exploits0References5
OSV
OSV
added 2025/08/19 5:15 p.m.2 views

DEBIAN-CVE-2025-38566

In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix handling of server side tls alerts Scott Mayhew discovered a security exploit in NFS over TLS in tlsalertrecv due to its assumption it can read data from the msg iterator's kvec.. kTLS implementation splits TLS non-da...

7.5CVSS5.8AI score0.00528EPSS
Exploits0References1
OSV
OSV
added 2025/08/19 5:15 p.m.2 views

DEBIAN-CVE-2025-38571

In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix client side handling of tls alerts A security exploit was discovered in NFS over TLS in tlsalertrecv due to its assumption that there is valid data in the msghdr's iterator's kvec. Instead, this patch proposes the...

5.5CVSS5.6AI score0.00146EPSS
Exploits0References1
OSV
OSV
added 2025/08/19 5:15 p.m.1 views

UBUNTU-CVE-2025-38571

In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix client side handling of tls alerts A security exploit was discovered in NFS over TLS in tlsalertrecv due to its assumption that there is valid data in the msghdr's iterator's kvec. Instead, this patch proposes the...

5.5CVSS6AI score0.00146EPSS
Exploits0References30
OSV
OSV
added 2025/08/19 5:15 p.m.2 views

UBUNTU-CVE-2025-38566

In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix handling of server side tls alerts Scott Mayhew discovered a security exploit in NFS over TLS in tlsalertrecv due to its assumption it can read data from the msg iterator's kvec.. kTLS implementation splits TLS non-da...

7.5CVSS6.2AI score0.00528EPSS
Exploits0References30
OSV
OSV
added 2025/08/19 5:15 p.m.3 views

UBUNTU-CVE-2025-38608

In the Linux kernel, the following vulnerability has been resolved: bpf, ktls: Fix data corruption when using bpfmsgpopdata in ktls When sending plaintext data, we initially calculated the corresponding ciphertext length. However, if we later reduced the plaintext data length via socket policy, w...

5.5CVSS6.1AI score0.0016EPSS
Exploits0References40
Cvelist
Cvelist
added 2025/08/19 5:3 p.m.6 views

CVE-2025-38608 bpf, ktls: Fix data corruption when using bpf_msg_pop_data() in ktls

In the Linux kernel, the following vulnerability has been resolved: bpf, ktls: Fix data corruption when using bpfmsgpopdata in ktls When sending plaintext data, we initially calculated the corresponding ciphertext length. However, if we later reduced the plaintext data length via socket policy, w...

0.0016EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2025/08/19 5:3 p.m.3 views

CVE-2025-38608

In the Linux kernel, the following vulnerability has been resolved: bpf, ktls: Fix data corruption when using bpfmsgpopdata in ktls When sending plaintext data, we initially calculated the corresponding ciphertext length. However, if we later reduced the plaintext data length via socket policy, w...

5.5CVSS5.7AI score0.0016EPSS
Exploits0
OSV
OSV
added 2025/08/19 5:3 p.m.3 views

CVE-2025-38608 bpf, ktls: Fix data corruption when using bpf_msg_pop_data() in ktls

In the Linux kernel, the following vulnerability has been resolved: bpf, ktls: Fix data corruption when using bpfmsgpopdata in ktls When sending plaintext data, we initially calculated the corresponding ciphertext length. However, if we later reduced the plaintext data length via socket policy, w...

5.5CVSS6.3AI score0.0016EPSS
Exploits0References14
CVE
CVE
added 2025/08/19 5:2 p.m.51 views

CVE-2025-38571

The CVE-2025-38571 entry documents a Linux kernel flaw in sunrpc client-side handling of TLS alerts within NFS over TLS. The vulnerability stems from a misassumption that valid data resides in the msghdr iterator’s kvec, which could be exploited by TLS alert handling. The recommended fix reworks ...

5.5CVSS7.3AI score0.00146EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2025/08/19 5:2 p.m.12 views

CVE-2025-38571 sunrpc: fix client side handling of tls alerts

In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix client side handling of tls alerts A security exploit was discovered in NFS over TLS in tlsalertrecv due to its assumption that there is valid data in the msghdr's iterator's kvec. Instead, this patch proposes the...

0.00146EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2025/08/19 5:2 p.m.6 views

CVE-2025-38571

In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix client side handling of tls alerts A security exploit was discovered in NFS over TLS in tlsalertrecv due to its assumption that there is valid data in the msghdr's iterator's kvec. Instead, this patch proposes the...

5.5CVSS5.6AI score0.00146EPSS
Exploits0
OSV
OSV
added 2025/08/19 5:2 p.m.5 views

CVE-2025-38571 sunrpc: fix client side handling of tls alerts

In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix client side handling of tls alerts A security exploit was discovered in NFS over TLS in tlsalertrecv due to its assumption that there is valid data in the msghdr's iterator's kvec. Instead, this patch proposes the...

5.5CVSS6.1AI score0.00146EPSS
Exploits0References8
CVE
CVE
added 2025/08/19 5:2 p.m.48 views

CVE-2025-38566

CVE-2025-38566 affects the Linux kernel sunrpc tls alert handling in NFS over TLS. The root cause is the kTLS/read path interaction with TLS control messages and TLS alert payloads, where mis-splitting control message data can lead to incorrect processing and potential exploitation. The connected...

7.5CVSS7.3AI score0.00528EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2025/08/19 5:2 p.m.7 views

CVE-2025-38566 sunrpc: fix handling of server side tls alerts

In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix handling of server side tls alerts Scott Mayhew discovered a security exploit in NFS over TLS in tlsalertrecv due to its assumption it can read data from the msg iterator's kvec.. kTLS implementation splits TLS non-da...

0.00528EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2025/08/19 5:2 p.m.4 views

CVE-2025-38566

In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix handling of server side tls alerts Scott Mayhew discovered a security exploit in NFS over TLS in tlsalertrecv due to its assumption it can read data from the msg iterator's kvec.. kTLS implementation splits TLS non-da...

7.5CVSS5.8AI score0.00528EPSS
Exploits0
OSV
OSV
added 2025/08/19 5:2 p.m.4 views

CVE-2025-38566 sunrpc: fix handling of server side tls alerts

In the Linux kernel, the following vulnerability has been resolved: sunrpc: fix handling of server side tls alerts Scott Mayhew discovered a security exploit in NFS over TLS in tlsalertrecv due to its assumption it can read data from the msg iterator's kvec.. kTLS implementation splits TLS non-da...

7.5CVSS6.1AI score0.00528EPSS
Exploits0References8
Snyk
Snyk
added 2025/08/19 3:34 p.m.1 views

User Impersonation

Overview Affected versions of this package are vulnerable to User Impersonation due to insufficient authentication checks in the client and server processes. An attacker can gain unauthorized access to sensitive data by establishing a connection without proper certificate validation or...

10CVSS7.1AI score
Exploits0References3
RedHat Linux
RedHat Linux
added 2025/08/19 9:59 a.m.7 views

kernel: tls: always refresh the queue when reading sock

In the Linux kernel, the following vulnerability has been resolved: tls: always refresh the queue when reading sock After recent changes in net-next TCP compacts skbs much more aggressively. This unearthed a bug in TLS where we may try to operate on an old skb when checking if all skbs in the que...

7.8CVSS6.8AI score0.00152EPSS
Exploits0References5
Veracode
Veracode
added 2025/08/19 9:50 a.m.6 views

Remote Code Execution (RCE)

github.com/1panel-dev/1panel is vulnerable to Remote Code Execution RCE. The vulnerability is due to incomplete certificate verification during HTTPS communication between the Core and Agent endpoints, which allows an attacker to gain unauthorized access and execute commands with high privileges...

9.8CVSS8.3AI score0.00864EPSS
Exploits5References6Affected Software1
Rows per page
Query Builder