303 matches found
Exploit for Improper Handling of Exceptional Conditions in Apache Struts
apache-struts-cve-2017-56...
EUVD-2021-2219
Malware in sbrugna...
CVE-2025-4374
A flaw was found in Quay. When an organization acts as a proxy cache, and a user or robot pulls an image that hasn't been mirrored yet, they are granted "Admin" permissions on the newly created repository. Mitigation Permissions can be updated after creation but there's no preventative measure...
Brocade Fabric OS Code Injection Vulnerability - Lenovo Support US
No description provided...
CVE-2025-32387
Helm is a package manager for Charts for Kubernetes. A JSON Schema file within a chart can be crafted with a deeply nested chain of references, leading to parser recursion that can exceed the stack size limit and trigger a stack overflow. This issue has been resolved in Helm v3.17.3. Mitigation T...
Multi-Vendor BIOS Security Vulnerabilities (April 2025) - Lenovo Support US
No description provided...
PT-2025-15046 · Apache · Apache Airflow Common Sql Provider
Name of the Vulnerable Software and Affected Versions: Apache Airflow Common SQL Provider versions prior to 1.24.1 Description: The issue is related to an SQL Injection vulnerability in the Apache Airflow Common SQL Provider. This vulnerability allows an authenticated UI user to inject arbitrary...
Synaptics Audio Driver Vulnerability - Lenovo Support US
No description provided...
AMI MegaRAC SPx Redfish Authentication Bypass - Lenovo Support US
No description provided...
Multi-Vendor BIOS Security Vulnerabilities (March 2025) - Lenovo Support US
No description provided...
SUSE CVE-2022-49124
In the Linux kernel, the following vulnerability has been resolved: x86/mce: Work around an erratum on fast string copy instructions A rare kernel panic scenario can happen when the following conditions are met due to an erratum on fast string copy instructions: 1 An uncorrected error. 2 That err...
Intel Graphics Software Advisory - Lenovo Support US
No description provided...
RealTek SD Card Reader Vulnerabilities - Lenovo Support US
No description provided...
NVIDIA GPU Display Driver - January 2025 - Lenovo Support US
No description provided...
Lenovo Vantage Privilege Escalation Vulnerability - Lenovo Support US
No description provided...
CVE-2025-25183
A flaw was found in the vllm package. Maliciously constructed statements can lead to hash collisions, resulting in cache reuse, which can interfere with subsequent responses and cause unintended behavior. The impact of a collision would be using a cache that was generated using different content...
Important: nerdctl
Issue Overview: Applications and libraries which misuse the ServerConfig.PublicKeyCallback callback may be susceptible to an authorization bypass. The documentation for ServerConfig.PublicKeyCallback says that "A call to this function does not guarantee that the key offered is in fact used to...
CVE-2024-12085
A flaw was found in rsync which could be triggered when rsync compares file checksums. This flaw allows an attacker to manipulate the checksum length s2length to cause a comparison between a checksum and uninitialized memory and leak one byte of uninitialized stack data at a time. Mitigation Seei...
Intel VTune Profiler Advisory - Lenovo Support US
No description provided...
Intel CST Software Advisory - Lenovo Support US
No description provided...