Lucene search
K

11 matches found

Github Security Blog
Github Security Blog
added 2026/05/08 10:50 p.m.14 views

free5GC's NEF 3gpp-pfd-management PATCH applications/{appId} panics on UDR access failure due to nil ProblemDetails dereference

Summary free5GC's NEF PATCH /3gpp-pfd-management/v1/afId/transactions/transId/applications/appId handler panics with a nil-pointer dereference when the upstream UDR call fails AND the consumer wrapper returns err != nil together with a nil ProblemDetails. The handler's errPfdData != nil branch...

7.5CVSS5.8AI score0.0039EPSS
Exploits1References6Affected Software1
NVD
NVD
added 2026/02/24 2:16 a.m.7 views

CVE-2026-25969

ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to version 7.1.2-15, a memory leak exists in coders/ashlar.c. The WriteASHLARImage allocates a structure. However, when an exception is thrown, the allocated memory is not properly released,...

7.5CVSS0.0036EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:17 a.m.23 views

CVE-2025-1893

A vulnerability was found in Open5GS up to 2.7.2. It has been declared as problematic. Affected by this vulnerability is the function gmmstateauthentication of the file src/amf/gmm-sm.c of the component AMF. The manipulation leads to denial of service. The attack can be launched remotely. This...

7.5CVSS7AI score0.00805EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2025/12/17 12:26 a.m.4 views

SUSE CVE-2025-68179

In the Linux kernel, the following vulnerability has been resolved: s390: Disable ARCHWANTOPTIMIZEHUGETLBVMEMMAP As reported by Luiz Capitulino enabling HVO on s390 leads to reproducible crashes. The problem is that kernel page tables are modified without flushing corresponding TLB entries. Even ...

5.5CVSS6.5AI score0.00168EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/21 12:31 p.m.6 views

EUVD-2022-54846

In the Linux kernel, the following vulnerability has been resolved: watchdog: rzg2lwdt: Fix 'BUG: Invalid wait context' This patch fixes the issue 'BUG: Invalid wait context' during restart callback by using clkprepareenable instead of pmruntimegetsync for turning on the clocks during restart. Th...

5.5CVSS5AI score0.00243EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-1528

Malware in sbrugna...

4CVSS6.8AI score0.0053EPSS
Exploits0References12
Tenable Nessus
Tenable Nessus
added 2025/08/15 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2025-21907

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mm: memory-failure: update ttu flag inside unmappoisonedfolio Patch series mm: memoryfailure: unmap poisoned folio during migrate properly, v3. Fix two bugs...

5.5CVSS6.7AI score0.00187EPSS
Exploits0References4
OSV
OSV
added 2024/04/16 8:15 p.m.4 views

DEBIAN-CVE-2022-24807

net-snmp provides various tools relating to the Simple Network Management Protocol. Prior to version 5.9.2, a malformed OID in a SET request to SNMP-VIEW-BASED-ACM-MIB::vacmAccessTable can cause an out-of-bounds memory access. A user with read-write credentials can exploit the issue. Version 5.9....

6.5CVSS6.8AI score0.01008EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/01/01 12:0 a.m.4 views

PT-2024-19026 · Flycms · Flycms

Name of the Vulnerable Software and Affected Versions: FlyCms through abbaa5a Description: The issue allows XSS via the permission management feature. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was...

6.1CVSS6.1AI score0.00427EPSS
Exploits1References9
OSV
OSV
added 2023/09/27 3:19 p.m.8 views

CVE-2023-44126

The vulnerability is that the Call management "com.android.server.telecom" app patched by LG sends a lot of LG-owned implicit broadcasts that disclose sensitive data to all third-party apps installed on the same device. Those intents include data such as call states, durations, called numbers,...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References1
OSV
OSV
added 2023/04/28 7:55 p.m.8 views

CLSA-2023-1682711481 kernel: Fix of 7 CVEs

mISDN: fix use-after-free bugs in l1oip timer handlers CVE-2022-3565 - media: rc: Fix use-after-free bugs caused by enetxirqsim CVE-2023-1118 - Bluetooth: btsdio: fix use after free bug in btsdioremove due to unfinished work CVE-2023-1989 - proc: procskipspaces shouldn't think it is working on C...

7.8CVSS6.8AI score0.00537EPSS
Exploits0References1
Rows per page
Query Builder