Lucene search
K

1907 matches found

OSV
OSV
added 2025/04/16 3:16 p.m.2 views

DEBIAN-CVE-2025-22108

In the Linux kernel, the following vulnerability has been resolved: bnxten: Mask the bdcnt field in the TX BD properly The bdcnt field in the TX BD specifies the total number of BDs for the TX packet. The bdcnt field has 5 bits and the maximum number supported is 32 with the value 0...

5.5CVSS5.1AI score0.0014EPSS
Exploits0References1
NVD
NVD
added 2025/04/16 3:16 p.m.6 views

CVE-2025-22079

In the Linux kernel, the following vulnerability has been resolved: ocfs2: validate ltreedepth to avoid out-of-bounds access The ltreedepth field is 16-bit le16, but the actual maximum depth is limited to OCFS2MAXPATHDEPTH. Add a check to prevent out-of-bounds access if ltreedepth has an invalid...

7.1CVSS0.00178EPSS
Exploits0References11
OSV
OSV
added 2025/04/10 8:15 p.m.1 views

UBUNTU-CVE-2025-29915

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine. The AFPACKET defrag option is enabled by default and allows AFPACKET to re-assemble fragmented packets before reaching Suricata. However the default packet size in Suricata is bas...

7.5CVSS5.8AI score0.00227EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/04/09 12:0 a.m.6 views

PT-2025-18450

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A division by zero issue has been resolved in the Linux kernel. The problem occurs when the user sets a speed value greater than UINT MAX/8, making division by zero possible. This issue...

5.5CVSS6.6AI score0.00161EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2025/04/02 8:19 p.m.3 views

spring-security-core: Spring Security BCryptPasswordEncoder does not enforce maximum password length

A flaw was found in the spring-security-core password encoder. This vulnerability allows incorrect password matching via input manipulation...

7.4CVSS7.1AI score0.00568EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2025/04/02 8:57 a.m.2 views

SUSE CVE-2025-21985

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix out-of-bound accesses WHAT & HOW hpostreamtolinkencodermapping has size MAXHPODP2ENCODERS=4, but location can have size up to 6. As a result, it is necessary to check location against MAXHPODP2ENCODERS...

5.5CVSS7.7AI score0.00166EPSS
Exploits0References15
OSV
OSV
added 2025/04/01 4:15 p.m.2 views

UBUNTU-CVE-2025-21985

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix out-of-bound accesses WHAT & HOW hpostreamtolinkencodermapping has size MAXHPODP2ENCODERS=4, but location can have size up to 6. As a result, it is necessary to check location against MAXHPODP2ENCODERS...

7.1CVSS6.4AI score0.00166EPSS
Exploits0References6
OSV
OSV
added 2025/03/27 2:15 p.m.4 views

AZL-62639 CVE-2025-21868 affecting package kernel for versions less than 6.6.117.1-1

In the Linux kernel, the following vulnerability has been resolved: net: allow small head cache usage with large MAXSKBFRAGS values Sabrina reported the following splat: WARNING: CPU: 0 PID: 1 at net/core/dev.c:6935 netifnapiaddweightlocked+0x8f2/0xba0 Modules linked in: CPU: 0 UID: 0 PID: 1 Comm...

5.5CVSS6.2AI score0.00176EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/03/26 12:0 a.m.3 views

PT-2025-18448

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A issue has been identified in the Linux kernel where the user can set any speed value, potentially leading to division by zero if the speed is greater than UINT MAX/8. This issue was...

5.5CVSS6.7AI score0.00161EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/03/26 12:0 a.m.2 views

PT-2025-18449

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A issue has been found in the Linux kernel where the user can set any speed value. If the speed is greater than UINT MAX/8, it is possible to cause a division by zero. This issue was...

5.5CVSS6.6AI score0.00165EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/03/26 12:0 a.m.3 views

PT-2025-18447

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A division by zero issue has been resolved in the Linux kernel. The problem occurs when a user sets a speed value greater than UINT MAX/8, making division by zero possible. This issue wa...

5.5CVSS6.7AI score0.00169EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2025/03/26 12:0 a.m.5 views

PT-2025-18451

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A division by zero issue has been resolved in the Linux kernel. The problem occurs when a user sets a speed value greater than UINT MAX/8, making division by zero possible. This issue wa...

5.5CVSS6.7AI score0.00165EPSS
Exploits0
Veracode
Veracode
added 2025/03/21 8:28 a.m.9 views

Privilege Escalation

github.com/containerd/containerd is vulnerable to Privilege Escalation. The vulnerability is due to an integer overflow and improper handling of UID:GID values larger than the maximum 32-bit signed integer, allowing containers to run as root UID 0...

7.8CVSS6.9AI score0.00275EPSS
Exploits1References6Affected Software1
The Hacker News
The Hacker News
added 2025/03/18 1:31 p.m.34 views

New Critical AMI BMC Vulnerability Enables Remote Server Takeover and Bricking

A critical security vulnerability has been disclosed in AMI's MegaRAC Baseboard Management Controller BMC software that could allow an attacker to bypass authentication and carry out post-exploitation actions. The vulnerability, tracked as CVE-2024-54085 , carries a CVSS v4 score of 10.0,...

10CVSS8.7AI score0.61202EPSS
Exploits0
OSV
OSV
added 2025/03/18 9:15 a.m.1 views

DEBIAN-CVE-2025-0755

The various bsonappend functions in the MongoDB C driver library may be susceptible to buffer overflow when performing operations that could result in a final BSON document which exceeds the maximum allowable size INT32MAX, resulting in a segmentation fault and possible application crash. This...

7.5CVSS8.1AI score0.00734EPSS
Exploits0References1
OSV
OSV
added 2025/03/18 9:15 a.m.2 views

UBUNTU-CVE-2025-0755

The various bsonappend functions in the MongoDB C driver library may be susceptible to buffer overflow when performing operations that could result in a final BSON document which exceeds the maximum allowable size INT32MAX, resulting in a segmentation fault and possible application crash. This...

8.4CVSS7.1AI score0.00734EPSS
Exploits0References4
OSV
OSV
added 2025/03/17 10:20 p.m.4 views

CVE-2025-29911 CryptoLib Has Heap Buffer Overflow in Crypto_AOS_ProcessSecurity Function

CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures SDLS-EP to secure communications between a spacecraft running the core Flight System cFS and a ground station. A critical heap buffer overflow vulnerability was identified in the...

9.3CVSS8.1AI score0.0068EPSS
Exploits1References3
Microsoft CVE
Microsoft CVE
added 2025/03/14 7:0 a.m.3 views

sctp: sysctl: rto_min/max: avoid using current->nsproxy

...

5.5CVSS7.3AI score0.00217EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/03/13 7:0 a.m.2 views

netfilter: nft_socket: remove WARN_ON_ONCE on maximum cgroup level

...

5.5CVSS7.4AI score0.002EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/03/13 7:0 a.m.4 views

printk: Fix signed integer overflow when defining LOG_BUF_LEN_MAX

...

5.5CVSS7.3AI score0.00211EPSS
Exploits0
Rows per page
Query Builder