Lucene search
+L

1502 matches found

Positive Technologies
Positive Technologies
added 2026/05/25 12:0 a.m.19 views

PT-2026-43098

A security flaw has been discovered in Totolink A8000RU 7.1cu.643 b20200521. This issue affects the function setAccessDeviceCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Performing a manipulation of the argument mac results in os command injection. The attack is...

10CVSS7AI score0.01909EPSS
Exploits0References5
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/21 2:59 a.m.17 views

Malicious code in claw_messenger (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b621afa50fe31026a12750b83eeb309366f95b07a9e0c5095d3e862f0007b70f The postinstall lifecycle script in dist/postinstall.js spawns two detached, hidden child processes during npm install. 1 spawn'npm', 'install', '-g'...

6AI score
Exploits0References17
OSV
OSV
added 2026/05/21 2:59 a.m.9 views

MAL-2026-4526 Malicious code in claw_messenger (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector b621afa50fe31026a12750b83eeb309366f95b07a9e0c5095d3e862f0007b70f The postinstall lifecycle script in dist/postinstall.js spawns two detached, hidden child processes during npm install. 1 spawn'npm', 'install', '-g'...

6.1AI score
Exploits0References17
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in Linux 5.10, Linux

In the Linux kernel, the following vulnerability has been resolved: wifi: brcmfmac: Fixed an issue where invalid address access occurred when enabling the SCAN log level. The variable i is changed when setting a random MAC address, causing invalid address access when printing the value of...

5.8AI score0.00225EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: Octeontx2-af: Added proper checks for fwdata. Firmware populates the MAC address, link modes supported, advertised, and EEPROM data in the shared firmware structure. Kernel access is allowed via the MAC block CGX/RPM. Accessin...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/12 7:41 a.m.17 views

Malicious code in guan (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2e04a9a658bc7616e72a5edf276dd049e5b697f2492c46929caf2e01fac95d84 The top-level src/guan/init.py unconditionally calls statisticsofguanpackage on every import guan. That function in src/guan/others.py opens a raw TC...

5.8AI score
Exploits0References2
OSV
OSV
added 2026/05/12 7:41 a.m.8 views

MAL-2026-3692 Malicious code in guan (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 2e04a9a658bc7616e72a5edf276dd049e5b697f2492c46929caf2e01fac95d84 The top-level src/guan/init.py unconditionally calls statisticsofguanpackage on every import guan. That function in src/guan/others.py opens a raw TC...

5.8AI score
Exploits0References2
NVD
NVD
added 2026/05/11 2:16 a.m.45 views

CVE-2026-8263

A security flaw has been discovered in Tenda AC6 15.03.06.49multiTDE01. Affected is the function fromSetWirelessRepeat of the file /goform/WifiExtraSet of the component httpd. Performing a manipulation of the argument mac/ssid results in os command injection. It is possible to initiate the attack...

9.8CVSS0.04554EPSS
Exploits1References5
SUSE CVE
SUSE CVE
added 2026/05/09 2:41 a.m.10 views

SUSE CVE-2026-43199

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix "scheduling while atomic" in IPsec MAC address query Fix a "scheduling while atomic" bug in mlx5eipsecinitmacs by replacing mlx5querymacaddress with etheraddrcopy to get the local MAC address directly from...

7.5CVSS5.8AI score0.00441EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/05/07 12:0 a.m.17 views

Linux Distros Unpatched Vulnerability : CVE-2026-43199

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/mlx5e: Fix scheduling while atomic in IPsec MAC address query Fix a scheduling while atomic bug in mlx5eipsecinitmacs by replacing mlx5querymacaddress with...

7.5CVSS7AI score0.00441EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/05/06 9:13 p.m.17 views

CVE-2026-43199

A flaw was found in the Linux kernel's net/mlx5e component. This vulnerability, identified as a "scheduling while atomic" bug, occurs when the mlx5eipsecinitmacs function attempts to query the hardware for a MAC address in an atomic context, which can lead to the system attempting to sleep. A loc...

7.5CVSS5.8AI score0.00441EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/06 12:30 p.m.10 views

EUVD-2026-27762

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix "scheduling while atomic" in IPsec MAC address query Fix a "scheduling while atomic" bug in mlx5eipsecinitmacs by replacing mlx5querymacaddress with etheraddrcopy to get the local MAC address directly from...

5.8AI score0.00441EPSS
Exploits0References5
NVD
NVD
added 2026/05/06 12:16 p.m.8 views

CVE-2026-43199

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix "scheduling while atomic" in IPsec MAC address query Fix a "scheduling while atomic" bug in mlx5eipsecinitmacs by replacing mlx5querymacaddress with etheraddrcopy to get the local MAC address directly from...

7.5CVSS0.00441EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/05/06 11:28 a.m.33 views

CVE-2026-43199 net/mlx5e: Fix "scheduling while atomic" in IPsec MAC address query

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix "scheduling while atomic" in IPsec MAC address query Fix a "scheduling while atomic" bug in mlx5eipsecinitmacs by replacing mlx5querymacaddress with etheraddrcopy to get the local MAC address directly from...

7.5CVSS0.00441EPSS
Exploits0References4
CVE
CVE
added 2026/05/06 11:28 a.m.21 views

CVE-2026-43199

CVE-2026-43199 affects the Linux kernel net/mlx5e component. A scheduling-while-atomic bug occurred when mlx5e_ipsec_init_macs() queried hardware MAC via mlx5_query_mac_address() from an atomic context (mlx5e_ipsec_handle_event/workqueue), which can sleep. The fix uses the MAC address already pre...

7.5CVSS5.8AI score0.00441EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2026/05/06 11:28 a.m.2 views

CVE-2026-43199 net/mlx5e: Fix "scheduling while atomic" in IPsec MAC address query

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Fix "scheduling while atomic" in IPsec MAC address query Fix a "scheduling while atomic" bug in mlx5eipsecinitmacs by replacing mlx5querymacaddress with etheraddrcopy to get the local MAC address directly from...

7.5CVSS6.5AI score0.00441EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.10 views

PT-2026-37539

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A scheduling while atomic bug exists in the mlx5e ipsec init macs function. The issue occurs because the mlx5 query mac address function queries hardware via mlx5 cmd exec, which can...

7.5CVSS6.2AI score0.00441EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/05/06 12:0 a.m.10 views

Juniper Junos OS Vulnerability (JSA73153)

The version of Junos OS installed on the remote host is affected by a vulnerability as referenced in the JSA73153 advisory. - An Origin Validation vulnerability in MAC address validation of Juniper Networks Junos OS Evolved on PTX10003 Series allows a network-adjacent attacker to bypass MAC addre...

6.1CVSS5.8AI score0.0018EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2026/05/05 8:21 p.m.8 views

CVE-2026-7750

A vulnerability was detected in Totolink N300RH 3.2.4-B20220812. This vulnerability affects the function setMacFilterRules of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The manipulation of the argument macaddress results in buffer overflow. The attack may be launched...

9CVSS7.8AI score0.00463EPSS
Exploits0References1
NVD
NVD
added 2026/05/04 10:16 a.m.17 views

CVE-2026-7750

A vulnerability was detected in Totolink N300RH 3.2.4-B20220812. This vulnerability affects the function setMacFilterRules of the file /cgi-bin/cstecgi.cgi of the component POST Request Handler. The manipulation of the argument macaddress results in buffer overflow. The attack may be launched...

9CVSS0.00463EPSS
Exploits0References5
Rows per page
Query Builder