Lucene search
+L

26 matches found

nvd
nvd
added 2026/06/25 9:16 a.m.7 views

CVE-2026-53160

In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: fix use-after-free race in fastrpcmapcreate fastrpcmaplookup returns a raw pointer after releasing fl-lock. The caller fastrpcmapcreate then calls fastrpcmapget krefgetunlesszero on this unprotected pointer. A...

7.8CVSS0.00125EPSS
Exploits0References6
osv
osv
added 2026/06/25 9:16 a.m.5 views

UBUNTU-CVE-2026-53160

In the Linux kernel, the following vulnerability has been resolved: misc: fastrpc: fix use-after-free race in fastrpcmapcreate fastrpcmaplookup returns a raw pointer after releasing fl-lock. The caller fastrpcmapcreate then calls fastrpcmapget krefgetunlesszero on this unprotected pointer. A...

7.8CVSS5.8AI score0.00125EPSS
Exploits0References9
ptsecurity
ptsecurity
added 2025/11/26 12:0 a.m.5 views

PT-2025-52891

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists in the Linux kernel’s BPF Berkeley Packet Filter implementation related to exclusive maps. Specifically, when excl prog hash is zero and excl prog hash size is...

7.1CVSS6.2AI score0.00385EPSS
Exploits1References214
euvd
euvd
added 2025/10/07 12:30 a.m.3 views

EUVD-2021-16330

Malware in sbrugna...

6.5CVSS6.6AI score0.011EPSS
Exploits0References3
redhat
redhat
added 2024/11/25 12:12 a.m.3 views

eap-7: heap exhaustion via deserialization

A flaw was found in EAP-7 during deserialization of certain classes, which permits instantiation of HashMap and HashTable with no checks on resources consumed. This issue could allow an attacker to submit malicious requests using these classes, which could eventually exhaust the heap and result i...

7.5CVSS5.8AI score0.00851EPSS
Exploits0References4
nvd
nvd
added 2024/10/21 7:15 p.m.17 views

CVE-2024-50017

In the Linux kernel, the following vulnerability has been resolved: x86/mm/identmap: Use gbpages only where full GB page should be mapped. When identpudinit uses only GB pages to create identity maps, large ranges of addresses not actually requested can be included in the resulting table; a 4K...

5.5CVSS0.0022EPSS
Exploits0References4
osv
osv
added 2024/10/21 7:15 p.m.2 views

DEBIAN-CVE-2024-50017

In the Linux kernel, the following vulnerability has been resolved: x86/mm/identmap: Use gbpages only where full GB page should be mapped. When identpudinit uses only GB pages to create identity maps, large ranges of addresses not actually requested can be included in the resulting table; a 4K...

5.5CVSS5.8AI score0.0022EPSS
Exploits0References1
wpexploit
wpexploit
added 2024/01/31 12:0 a.m.146 views

MapPress < 2.88.17 - Contributor+ Stored XSS via Map Settings

Description The plugin is vulnerable to Stored Cross-Site Scripting via the width and height parameters, allowing with contributor access and above to perform Stored XSS attacks - Go to Plugin’s page /wp-admin/admin.php?page=mappressmaps - Add New Map and search any location you want. - Add XSS...

4.9CVSS5.8AI score0.00491EPSS
Exploits2References2
githubexploit
githubexploit
added 2023/12/23 2:2 p.m.83 views

Exploit for Authorization Bypass Through User-Controlled Key in Zabbix

CVE-2019-17382 - Zabbix Authentication Bypass A critical vuln...

9.1CVSS7.5AI score0.5415EPSS
Exploits5
susecve
susecve
added 2023/02/15 4:23 a.m.4 views

SUSE CVE-2018-17233

A SIGFPE signal is raised in the function H5Dcreatechunkfilemaphyper of H5Dchunk.c in the HDF HDF5 through 1.10.3 library during an attempted parse of a crafted HDF file, because of incorrect protection against division by zero. It could allow a remote denial of service attack...

7.5CVSS6.9AI score0.01972EPSS
Exploits1References7
susecve
susecve
added 2023/02/15 3:42 a.m.3 views

SUSE CVE-2021-29648

An issue was discovered in the Linux kernel before 5.11.11. The BPF subsystem does not properly consider that resolvedids and resolvedsizes are intentionally uninitialized in the vmlinux BPF Type Format BTF, which can cause a system crash upon an unexpected access attempt in mapcreate in...

5.5CVSS6.4AI score0.00284EPSS
Exploits0References3
osv
osv
added 2021/09/20 5:15 p.m.2 views

CVE-2021-29856

IBM Tivoli Netcool/OMNIbusGUI 8.1.0 could allow an authenticated usre to cause a denial of service through the WebGUI Map Creation page. IBM X-Force ID: 205685...

6.5CVSS6.6AI score0.011EPSS
Exploits0References2
prion
prion
added 2021/09/20 5:15 p.m.13 views

Code injection

IBM Tivoli Netcool/OMNIbusGUI 8.1.0 could allow an authenticated usre to cause a denial of service through the WebGUI Map Creation page. IBM X-Force ID: 205685...

4CVSS6.1AI score0.011EPSS
Exploits0References2Affected Software1
cve
cve
added 2021/09/20 4:45 p.m.33 views

CVE-2021-29856

Summary: CVE-2021-29856 affects IBM Tivoli Netcool/OMNIbus_GUI 8.1.x (8.1.0). An authenticated user can cause a denial of service via the WebGUI Map Creation page. Impact: availability HIGH (CVSS v3.1 base score 6.5; network, low attack complexity, low privileges required, no user interaction). R...

6.5CVSS6.2AI score0.011EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2021/09/20 4:45 p.m.16 views

CVE-2021-29856

IBM Tivoli Netcool/OMNIbusGUI 8.1.0 could allow an authenticated usre to cause a denial of service through the WebGUI Map Creation page. IBM X-Force ID: 205685...

6.5CVSS6.3AI score0.011EPSS
Exploits0References2
cnnvd
cnnvd
added 2021/09/20 12:0 a.m.3 views

IBM Tivoli Netcool/OMNIbus_GUI 安全漏洞

IBM Jazz for Service Management and IBM Tivoli Netcool/OMNIbusGUI are both products of IBM Corporation, U.S.A. IBM Jazz for Service Management is an integrated service management product that provides visibility into the service management environment. IBM Tivoli Netcool/OMNIbusGUI is a graphical...

6.5CVSS6.6AI score0.011EPSS
Exploits0References3
osv
osv
added 2021/03/30 9:15 p.m.2 views

CVE-2021-29648

An issue was discovered in the Linux kernel before 5.11.11. The BPF subsystem does not properly consider that resolvedids and resolvedsizes are intentionally uninitialized in the vmlinux BPF Type Format BTF, which can cause a system crash upon an unexpected access attempt in mapcreate in...

5.5CVSS5.4AI score0.00284EPSS
Exploits0References5
osv
osv
added 2021/03/30 9:15 p.m.9 views

AZL-6551 CVE-2021-29648 affecting package kernel for versions less than 5.10.78.1-1

An issue was discovered in the Linux kernel before 5.11.11. The BPF subsystem does not properly consider that resolvedids and resolvedsizes are intentionally uninitialized in the vmlinux BPF Type Format BTF, which can cause a system crash upon an unexpected access attempt in mapcreate in...

5.5CVSS6.7AI score0.00284EPSS
Exploits0References1
osv
osv
added 2021/03/30 9:15 p.m.5 views

UBUNTU-CVE-2021-29648

An issue was discovered in the Linux kernel before 5.11.11. The BPF subsystem does not properly consider that resolvedids and resolvedsizes are intentionally uninitialized in the vmlinux BPF Type Format BTF, which can cause a system crash upon an unexpected access attempt in mapcreate in...

5.5CVSS6.7AI score0.00284EPSS
Exploits0References4
osv
osv
added 2019/10/09 2:15 p.m.1 views

DEBIAN-CVE-2019-17382

An issue was discovered in zabbix.php?action=dashboard.view&dashboardid=1 in Zabbix through 4.4. An attacker can bypass the login page and access the dashboard page, and then create a Dashboard, Report, Screen, or Map without any Username/Password i.e., anonymously. All created elements...

9.1CVSS8.5AI score0.5415EPSS
Exploits5References1
Rows per page
Query Builder