Lucene search
K

4329 matches found

RedHat Linux
RedHat Linux
added 2025/05/15 4:29 p.m.7 views

firefox: thunderbird: Privilege escalation in Firefox Updater

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Mozilla Firefox's update mechanism allowed a medium-integrity user process to interfere with the SYSTEM-level updater by manipulating the file-locking behavior. By injecting code into the...

8.8CVSS7.4AI score0.00538EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2025/05/15 4:7 p.m.6 views

firefox: thunderbird: Privilege escalation in Firefox Updater

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Mozilla Firefox's update mechanism allowed a medium-integrity user process to interfere with the SYSTEM-level updater by manipulating the file-locking behavior. By injecting code into the...

8.8CVSS7.4AI score0.00538EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2025/05/15 3:59 p.m.6 views

firefox: thunderbird: Privilege escalation in Firefox Updater

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Mozilla Firefox's update mechanism allowed a medium-integrity user process to interfere with the SYSTEM-level updater by manipulating the file-locking behavior. By injecting code into the...

8.8CVSS7.4AI score0.00538EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2025/05/15 3:39 p.m.7 views

firefox: thunderbird: Privilege escalation in Firefox Updater

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Mozilla Firefox's update mechanism allowed a medium-integrity user process to interfere with the SYSTEM-level updater by manipulating the file-locking behavior. By injecting code into the...

8.8CVSS7.4AI score0.00538EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2025/05/14 1:56 a.m.7 views

firefox: thunderbird: Privilege escalation in Firefox Updater

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Mozilla Firefox's update mechanism allowed a medium-integrity user process to interfere with the SYSTEM-level updater by manipulating the file-locking behavior. By injecting code into the...

8.8CVSS7.4AI score0.00538EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2025/05/14 1:55 a.m.5 views

firefox: thunderbird: Privilege escalation in Firefox Updater

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Mozilla Firefox's update mechanism allowed a medium-integrity user process to interfere with the SYSTEM-level updater by manipulating the file-locking behavior. By injecting code into the...

8.8CVSS7.4AI score0.00538EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2025/05/14 1:53 a.m.6 views

firefox: thunderbird: Privilege escalation in Firefox Updater

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Mozilla Firefox's update mechanism allowed a medium-integrity user process to interfere with the SYSTEM-level updater by manipulating the file-locking behavior. By injecting code into the...

8.8CVSS7.4AI score0.00538EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2025/05/14 1:43 a.m.5 views

firefox: thunderbird: Privilege escalation in Firefox Updater

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Mozilla Firefox's update mechanism allowed a medium-integrity user process to interfere with the SYSTEM-level updater by manipulating the file-locking behavior. By injecting code into the...

8.8CVSS7.4AI score0.00538EPSS
Exploits0References10
Cvelist
Cvelist
added 2025/05/13 9:1 p.m.9 views

CVE-2025-20047

Improper locking in the IntelR Integrated Connectivity I/O interface CNVi for some IntelR Core™ Ultra Processors may allow an unauthenticated user to potentially enable escalation of privilege via physical access...

5.7CVSS0.00132EPSS
Exploits0References1
CVE
CVE
added 2025/05/13 9:1 p.m.39 views

CVE-2025-20047

Intel CNVi vulnerability CVE-2025-20047 affects Intel® Integrated Connectivity I/O interface on some Core™ Ultra Processors. The root cause is improper locking in CNVi that could allow an unauthenticated attacker with physical access to escalate privileges. Impact per sources is elevation of priv...

5.7CVSS7.3AI score0.00132EPSS
Exploits0References1
RedHat Linux
RedHat Linux
added 2025/05/13 4:5 p.m.5 views

firefox: thunderbird: Privilege escalation in Firefox Updater

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Mozilla Firefox's update mechanism allowed a medium-integrity user process to interfere with the SYSTEM-level updater by manipulating the file-locking behavior. By injecting code into the...

8.8CVSS7.4AI score0.00538EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2025/05/13 1:59 p.m.6 views

firefox: thunderbird: Privilege escalation in Firefox Updater

A flaw was found in Firefox. The Mozilla Foundation's Security Advisory describes the following issue: Mozilla Firefox's update mechanism allowed a medium-integrity user process to interfere with the SYSTEM-level updater by manipulating the file-locking behavior. By injecting code into the...

8.8CVSS7.4AI score0.00538EPSS
Exploits0References10
RedHat Linux
RedHat Linux
added 2025/05/13 8:28 a.m.8 views

kernel: block, bfq: fix bfqq uaf in bfq_limit_depth()

In the Linux kernel, the following vulnerability has been resolved: block, bfq: fix bfqq uaf in bfqlimitdepth Set new allocated bfqq to bic or remove freed bfqq from bic are both protected by bfqd-lock, however bfqlimitdepth is deferencing bfqq from bic without the lock, this can lead to UAF if t...

7.8CVSS6.8AI score0.00238EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/05/13 8:28 a.m.3 views

kernel: smb: During unmount, ensure all cached dir instances drop their dentry

In the Linux kernel, the following vulnerability has been resolved: smb: During unmount, ensure all cached dir instances drop their dentry The unmount process cifskillsb calling closeallcacheddirs can race with various cached directory operations, which ultimately results in dentries not being...

4.7CVSS6.7AI score0.00218EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/05/13 8:28 a.m.2 views

kernel: Bluetooth: RFCOMM: FIX possible deadlock in rfcomm_sk_state_change

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: RFCOMM: FIX possible deadlock in rfcommskstatechange rfcommskstatechange attempts to use socklock so it must never be called with it locked but rfcommsockioctl always attempt to lock it causing the following trace:...

3.3CVSS6.8AI score0.00187EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/05/13 8:28 a.m.4 views

kernel: ext4: fix i_data_sem unlock order in ext4_ind_migrate()

In the Linux kernel, the following vulnerability has been resolved: ext4: fix idatasem unlock order in ext4indmigrate Fuzzing reports a possible deadlock in jbd2logwaitcommit. This issue is triggered when an EXT4IOCMIGRATE ioctl is set to require synchronous updates because the file descriptor is...

4.7CVSS6.4AI score0.0019EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/05/13 8:28 a.m.5 views

kernel: dm array: fix releasing a faulty array block twice in dm_array_cursor_end

In the Linux kernel, the following vulnerability has been resolved: dm array: fix releasing a faulty array block twice in dmarraycursorend When dmbmreadlock fails due to locking or checksum errors, it releases the faulty block implicitly while leaving an invalid output pointer behind. The caller ...

7.1CVSS6.8AI score0.00239EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2025/05/13 8:28 a.m.5 views

kernel: net/mlx5: fs, lock FTE when checking if active

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: fs, lock FTE when checking if active The referenced commits introduced a two-step process for deleting FTEs: - Lock the FTE, delete it from hardware, set the hardware deletion function to NULL and unlock the FTE. - Lock...

5.5CVSS6.8AI score0.00198EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/05/13 12:0 a.m.2 views

Intel Core Ultra Processors 安全漏洞

Intel Core Ultra Processors is a Core series central processing unit CPU from Intel Corporation USA. A security vulnerability exists in Intel Core Ultra Processors that stems from improper locking and could lead to elevation of privilege...

5.7CVSS6.5AI score0.00132EPSS
Exploits0References2
Redos
Redos
added 2025/05/13 12:0 a.m.19 views

ROS-20250513-03

Vulnerability of the afpacket component of the Linux kernel is related to incorrect error handling in packetcurrentframe and vlangettci functions in net/packet/afpacket.c. Exploitation of the vulnerability could allow an attacker to cause a denial of service A vulnerability in the mcppinconfget a...

7.8CVSS8.2AI score0.00737EPSS
Exploits0
Rows per page
Query Builder