Lucene search
K

8 matches found

OSV
OSV
added 2026/06/18 11:52 a.m.2 views

CVE-2026-11718

An authentication bypass vulnerability exists in the generic opaque token validation path validateOpaqueToken of googleapis/mcp-toolbox. When the toolbox validates an opaque token via an OAuth 2.0 introspection endpoint RFC 7662, it decodes the response into an introspectResp struct. However, the...

9.3CVSS6AI score0.00204EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/10/27 12:0 a.m.3 views

Siemens SIMATIC Devices NULL Pointer Dereference (CVE-2024-42276)

In the Linux kernel, the following vulnerability has been resolved: nvme-pci: add missing condition check for existence of mapped data nvmemapdata is called when request has physical segments, hence the nvmeunmapdata should have same condition to avoid dereference. This plugin only works with...

5.5CVSS5.9AI score0.00237EPSS
Exploits0References2
NVD
NVD
added 2024/08/17 9:15 a.m.11 views

CVE-2024-42276

In the Linux kernel, the following vulnerability has been resolved: nvme-pci: add missing condition check for existence of mapped data nvmemapdata is called when request has physical segments, hence the nvmeunmapdata should have same condition to avoid dereference...

5.5CVSS0.00237EPSS
Exploits0References10
Vulnrichment
Vulnrichment
added 2024/08/17 9:8 a.m.27 views

CVE-2024-42276 nvme-pci: add missing condition check for existence of mapped data

In the Linux kernel, the following vulnerability has been resolved: nvme-pci: add missing condition check for existence of mapped data nvmemapdata is called when request has physical segments, hence the nvmeunmapdata should have same condition to avoid dereference...

6.7AI score0.00237EPSS
Exploits0References7
OSV
OSV
added 2024/08/17 9:8 a.m.16 views

CVE-2024-42276 nvme-pci: add missing condition check for existence of mapped data

In the Linux kernel, the following vulnerability has been resolved: nvme-pci: add missing condition check for existence of mapped data nvmemapdata is called when request has physical segments, hence the nvmeunmapdata should have same condition to avoid dereference...

5.5CVSS5.9AI score0.00237EPSS
Exploits0References13
Cvelist
Cvelist
added 2024/08/17 9:8 a.m.16 views

CVE-2024-42276 nvme-pci: add missing condition check for existence of mapped data

In the Linux kernel, the following vulnerability has been resolved: nvme-pci: add missing condition check for existence of mapped data nvmemapdata is called when request has physical segments, hence the nvmeunmapdata should have same condition to avoid dereference...

0.00237EPSS
Exploits0References7
OSV
OSV
added 2024/06/12 8:3 a.m.18 views

CVE-2024-2698 Freeipa: delegation rules allow a proxy service to impersonate any user to access another target service

A vulnerability was found in FreeIPA in how the initial implementation of MS-SFU by MIT Kerberos was missing a condition for granting the "forwardable" flag on S4U2Self tickets. Fixing this mistake required adding a special case for the checkallowedtodelegate function: If the target service...

8.8CVSS7.1AI score0.00667EPSS
Exploits0References12
Cvelist
Cvelist
added 2024/05/21 3:30 p.m.32 views

CVE-2023-52770 f2fs: split initial and dynamic conditions for extent_cache

In the Linux kernel, the following vulnerability has been resolved: f2fs: split initial and dynamic conditions for extentcache Let's allocate the extentcache tree without dynamic conditions to avoid a missing condition causing a panic as below. create a file w/ a compressed flag disable the...

6.4AI score0.00236EPSS
Exploits0References3
Rows per page
Query Builder