Lucene search
+L

6 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/27 3:48 p.m.10 views

CVE-2026-44320

free5GC is an open-source implementation of the 5G core network. Prior to 4.2.2, free5GC's NEF mounts the nnef-callback route group without inbound OAuth2/bearer-token authorization. A forged or arbitrary bearer token e.g. Authorization: Bearer not-a-real-token is enough to reach the SMF-callback...

7.3CVSS6AI score0.00241EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2026/05/12 8:56 a.m.8 views

BIT-PHP-2026-7259 Null pointer dereference in php_mb_check_encoding() via mb_ereg_search_init()

In PHP versions 8.2. before 8.2.31, 8.3. before 8.3.31, 8.4. before 8.4.21, and 8.5. before 8.5.6, a mismatch between encoding lists in Oniguruma and mbfl leads to a NULL pointer dereference, resulting in a segmentation fault and denial of service. The vulnerability is exploitable when...

6.5CVSS5.8AI score0.00202EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/14 12:0 a.m.4 views

MiracleLinux 3 : libvirt-0.6.3-33.3.0.1.AXS3 (AXSA:2010-411:04)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2010-411:04 advisory. Libvirt is a C toolkit to interact with the virtualization capabilities of recent versions of Linux and other OSes. Security issues fixed with this...

4.4CVSS7.2AI score0.00423EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2023/11/07 9:3 a.m.5 views

kernel: Linux kernel iavf driver: Denial of Service via use-after-free vulnerability

A flaw was found in the Linux kernel's iavf driver. A local user with administrative capabilities can exploit a use-after-free vulnerability, caused by a mismatch in network interface NAPI list management functions. This can lead to dangling NAPI entries, resulting in a kernel crash and a Denial ...

7.8CVSS5.8AI score0.00139EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2023/10/19 12:0 a.m.7 views

PT-2023-6554 · Linux +9 · Linux Kernel +9

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A heap out-of-bounds write vulnerability in the Linux kernel's Linux Kernel Performance Events perf component can be exploited to achieve local privilege escalation. If perf read group...

9.8CVSS6.8AI score0.28058EPSS
Exploits32References647
CNNVD
CNNVD
added 2022/04/01 12:0 a.m.5 views

Arista Strata 安全漏洞

Arista Networks Arista Strata is a network switch from Arista Networks. A security vulnerability exists in the Arista Strata that stems from a mismatch in the IP protocol field between a rule in a port's IPv4 access list and a rule on a "vxlan" as a protocol...

7.5CVSS7.3AI score0.00706EPSS
Exploits0References2
Rows per page
Query Builder