Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2026/05/26 2:12 a.m.9 views

CVE-2026-34961

barebox prior to version 2026.04.0 contains out-of-bounds read vulnerabilities in ext4 extent parsing due to missing validation of the ehentries field against buffer capacity in fs/ext4/ext4common.c. Attackers can supply a malicious ext4 filesystem image via USB, SD card, or network boot to trigg...

7.7CVSS6AI score0.0021EPSS
Exploits0References1
OSV
OSV
added 2025/06/24 8:11 p.m.8 views

MGASA-2025-0188 Updated udisks2 & libblockdev packages fix security vulnerabilities

A Local Privilege Escalation LPE vulnerability was found in libblockdev. Generally, the "allowactive" setting in Polkit permits a physically present user to take certain actions based on the session type. Due to the way libblockdev interacts with the udisks daemon, an "allowactive" user on a syst...

7CVSS7.5AI score0.00423EPSS
Exploits18References3
GithubExploit
GithubExploit
added 2025/06/20 10:47 a.m.497 views

Exploit for CVE-2025-6019

CVE-2025-6019: Privilege Escalation Exploit via UDisks2 Filesy...

7CVSS7.1AI score0.00423EPSS
Exploits18
RedHat Linux
RedHat Linux
added 2024/05/22 10:3 a.m.3 views

kernel: ext4: fix undefined behavior in bit shift for ext4_check_flag_values

A vulnerability was identified in the Linux kernel's ext4 filesystem implementation due to a flaw in how it processes filesystem metadata. An attacker with local privileges could create a malicious ext4 filesystem image to trigger this issue. When the system attempts to mount this malicious image...

7.3AI score
Exploits0References5
Veracode
Veracode
added 2020/12/21 7:50 p.m.19 views

Privilege Escalation

chromium is vulnerable to privilege escalation. Inappropriate implementation in installer allows a local attacker to elevate privilege via a malicious filesystem...

7.8CVSS5.2AI score0.00203EPSS
Exploits0References6Affected Software1
Veracode
Veracode
added 2020/12/21 6:50 p.m.23 views

Privilege Escalation

chromium is vulnerable to Privilege Escalation. Insufficient data validation in installer allows a local attacker to elevate privilege via a malicious filesystem...

7.8CVSS5.6AI score0.00269EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder