Lucene search
K

21 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.2 views

Astra Linux – Vulnerability in Linux 5.10, Linux, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: scsi: iscsitcp: A UAF use-after-free error occurs during login when accessing the host’s IP address. If the iscsitcpr2tpoolalloc function fails during iscsiswtcpsessioncreate, the user space may access the host’s IP address. If t...

7.8CVSS6.1AI score0.0028EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/06/05 7:50 p.m.12 views

CVE-2026-43930

Parse Server is an open source backend that can be deployed to any infrastructure that can run Node.js. Prior to 8.6.76 and 9.9.0-alpha.2, a race condition in the MFA SMS one-time password OTP login path allows two concurrent /login requests carrying the same OTP to both succeed and both receive...

5.9CVSS5.4AI score0.00236EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/05/20 12:0 a.m.7 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-021525)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-021525 advisory. In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix a race condition between loginwork and the login thread In case a...

4.7CVSS5.8AI score0.00103EPSS
Exploits0References4
Snyk
Snyk
added 2026/05/05 8:30 p.m.21 views

Race Condition

Overview parse-server is a version of the Parse backend that can be deployed to any infrastructure that can run Node.js. Affected versions of this package are vulnerable to Race Condition due to a race condition in the login process. An attacker can obtain multiple valid session tokens by...

2.2CVSS5.8AI score0.00236EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.12 views

EulerOS 2.0 SP12 : kernel (EulerOS-SA-2026-1091)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : net: drop UFO packets in udprcvsegmentCVE-2025-38622 A transient execution vulnerability in some AMD processors may allow an attacker to infer dat...

7.8CVSS7.3AI score0.00331EPSS
Exploits2References110
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.24 views

EulerOS 2.0 SP12 : kernel (EulerOS-SA-2026-1071)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : net: drop UFO packets in udprcvsegmentCVE-2025-38622 A transient execution vulnerability in some AMD processors may allow an attacker to infer dat...

7.8CVSS7.3AI score0.00331EPSS
Exploits2References110
Tenable Nessus
Tenable Nessus
added 2025/12/11 12:0 a.m.4 views

EulerOS 2.0 SP11 : kernel (EulerOS-SA-2025-2483)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : scsi: qla2xxx: Fix warning message due to adisc being flushedCVE-2022-49158 scsi: qla2xxx: Implement ref count for SRBCVE-2022-49159 tcp: add...

7.8CVSS7.2AI score0.00358EPSS
Exploits3References85
Tenable Nessus
Tenable Nessus
added 2025/12/11 12:0 a.m.9 views

EulerOS 2.0 SP13 : kernel (EulerOS-SA-2025-2501)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : x86/mce: Work around an erratum on fast string copy instructionsCVE-2022-49124 net: preserve skbendoffset in skbunclonekeeptruesizeCVE-2022-49142...

7.8CVSS7.5AI score0.00298EPSS
Exploits3References126
Microsoft CVE
Microsoft CVE
added 2025/12/03 1:1 a.m.7 views

scsi: target: iscsi: Fix a race condition between login_work and the login thread

...

4.7CVSS7AI score0.00103EPSS
Exploits0
SUSE Linux
SUSE Linux
added 2025/11/24 9:18 a.m.10 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP5 kernel was updated to fix various security issues The following security issues were fixed: CVE-2021-4460: drm/amdkfd: Fix UBSAN shift-out-of-bounds warning bsc1250764. CVE-2022-48631: ext4: fix bug in extents parsing when ehentries == 0 and ehdepth 0 bsc1223475...

8.8CVSS8.4AI score0.21314EPSS
Exploits1References576
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-55612

Malicious code in bioql PyPI...

6.3AI score0.00103EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/09/17 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2022-50350

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - scsi: target: iscsi: Fix a race condition between loginwork and the login thread In case a malicious initiator sends some random data immediately after a login...

4.7CVSS6AI score0.00103EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/09/16 6:14 p.m.5 views

CVE-2022-50350

In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix a race condition between loginwork and the login thread In case a malicious initiator sends some random data immediately after a login PDU; the iscsitargetskdataready callback will schedule the loginwork...

7CVSS5.8AI score0.00103EPSS
Exploits0References4
OSV
OSV
added 2025/09/16 5:15 p.m.3 views

DEBIAN-CVE-2022-50350

In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix a race condition between loginwork and the login thread In case a malicious initiator sends some random data immediately after a login PDU; the iscsitargetskdataready callback will schedule the loginwork...

4.7CVSS5.4AI score0.00103EPSS
Exploits0References1
OSV
OSV
added 2025/09/16 5:15 p.m.3 views

UBUNTU-CVE-2022-50350

In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix a race condition between loginwork and the login thread In case a malicious initiator sends some random data immediately after a login PDU; the iscsitargetskdataready callback will schedule the loginwork...

4.7CVSS5.9AI score0.00103EPSS
Exploits0References6
CVE
CVE
added 2025/09/16 4:11 p.m.56 views

CVE-2022-50350

The CVE-2022-50350 issue affects the Linux kernel’s iSCSI target login path. A race between login_work and the login thread can occur when a malicious initiator sends data immediately after a login PDU. If LOGIN_FLAGS_INITIAL_PDU isn’t cleared due to no further PDU exchanges, the login_work threa...

4.7CVSS6.1AI score0.00103EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2025/09/16 4:11 p.m.7 views

CVE-2022-50350 scsi: target: iscsi: Fix a race condition between login_work and the login thread

In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix a race condition between loginwork and the login thread In case a malicious initiator sends some random data immediately after a login PDU; the iscsitargetskdataready callback will schedule the loginwork...

0.00103EPSS
Exploits0References3
OSV
OSV
added 2025/09/16 4:11 p.m.7 views

CVE-2022-50350 scsi: target: iscsi: Fix a race condition between login_work and the login thread

In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix a race condition between loginwork and the login thread In case a malicious initiator sends some random data immediately after a login PDU; the iscsitargetskdataready callback will schedule the loginwork...

4.7CVSS6.1AI score0.00103EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2025/07/07 4:41 p.m.4 views

CVE-2025-1351

IBM Storage Virtualize 8.5, 8.6, and 8.7 products could allow a user to escalate their privileges to that of another user logging in at the same time due to a race condition in the login function...

7CVSS5.8AI score0.00086EPSS
Exploits0References2Affected Software1
RedHat Linux
RedHat Linux
added 2023/05/09 10:4 a.m.2 views

kernel: scsi: target: iscsi: Fix a race condition between login_work and the login thread

In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix a race condition between loginwork and the login thread In case a malicious initiator sends some random data immediately after a login PDU; the iscsitargetskdataready callback will schedule the loginwork...

4.7CVSS6.7AI score0.00103EPSS
Exploits0References5
Rows per page
Query Builder