Lucene search
+L

48 matches found

redhatcve
redhatcve
added 2026/06/29 11:11 a.m.8 views

CVE-2026-53293

A flaw was found in the Linux kernel's AMDGPU graphics driver. Multiple issues exist within the AMDGPUINFOREADMMRREG function, including an incorrect order of operations between the reset semaphore and the memory management lock, and memory allocation while holding the reset semaphore. These issu...

5.5CVSS5.8AI score0.00095EPSS
Exploits0References4
osv
osv
added 2026/06/26 8:17 p.m.4 views

UBUNTU-CVE-2026-53293

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix AMDGPUINFOREADMMRREG There were multiple issues in that code. First of all the order between the reset semaphore and the mmlock was wrong e.g. copytouser was called while holding the lock. Then we allocated memory...

5.5CVSS5.7AI score0.00095EPSS
Exploits0References8
osv
osv
added 2026/06/26 7:40 p.m.4 views

CVE-2026-53293 drm/amdgpu: fix AMDGPU_INFO_READ_MMR_REG

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix AMDGPUINFOREADMMRREG There were multiple issues in that code. First of all the order between the reset semaphore and the mmlock was wrong e.g. copytouser was called while holding the lock. Then we allocated memory...

5.5CVSS5.8AI score0.00095EPSS
Exploits0References8
euvd
euvd
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-0104

Malicious code in bioql PyPI...

6.8CVSS6.8AI score0.00618EPSS
Exploits0References5
snyk
snyk
added 2025/07/03 9:44 p.m.2 views

Out-of-bounds Write

Overview Affected versions of this package are vulnerable to Out-of-bounds Write via the scanruns function in the MMRDecoder component. An attacker can cause heap corruption or read sensitive memory by providing specially crafted input that causes the xr pointer to write or read outside the bound...

8.8CVSS7AI score0.00741EPSS
Exploits0References2
osv
osv
added 2025/01/16 7:35 p.m.7 views

GHSA-RCXC-WJGW-579R Matrix Media Repo (MMR) allows untrusted file formats can be thumbnailed, invoking potentially further untrusted decoders

Impact If SVG or JPEGXL thumbnailers are enabled they are disabled by default, a user may upload a file which claims to be either of these types and request a thumbnail to invoke a different decoder in ImageMagick. In some ImageMagick installations, this includes the capability to run Ghostscript...

6.8CVSS6.9AI score0.00618EPSS
Exploits0References5
github
github
added 2025/01/16 7:35 p.m.14 views

Matrix Media Repo (MMR) allows untrusted file formats can be thumbnailed, invoking potentially further untrusted decoders

Impact If SVG or JPEGXL thumbnailers are enabled they are disabled by default, a user may upload a file which claims to be either of these types and request a thumbnail to invoke a different decoder in ImageMagick. In some ImageMagick installations, this includes the capability to run Ghostscript...

6.8CVSS6.9AI score0.00618EPSS
Exploits0References5Affected Software1
cnnvd
cnnvd
added 2024/06/11 12:0 a.m.8 views

SAP NetWeaver AS Resource Management Error Vulnerability

SAP NetWeaver AS is an SAP web application server from SAP, Germany. It not only provides network services, but is also the basic platform for SAP software. A resource management error vulnerability exists in SAP NetWeaver AS Java MMRSERVER version 7.5, which arises from unrestricted access to th...

7.5CVSS6.5AI score0.00541EPSS
Exploits0References5
susecve
susecve
added 2023/02/15 6:4 a.m.5 views

SUSE CVE-2009-1183

The JBIG2 MMR decoder in Xpdf 3.02pl2 and earlier, CUPS 1.3.9 and earlier, Poppler before 0.10.6, and other products allows remote attackers to cause a denial of service infinite loop and hang via a crafted PDF file...

4.3CVSS6.7AI score0.0377EPSS
Exploits1References6
nvd
nvd
added 2022/10/14 3:15 p.m.23 views

CVE-2022-28761

Zoom On-Premise Meeting Connector MMR before version 4.8.20220916.131 contains an improper access control vulnerability. As a result, a malicious actor in a meeting or webinar they are authorized to join could prevent participants from receiving audio and video causing meeting disruptions...

6.5CVSS0.00676EPSS
Exploits0References1
nvd
nvd
added 2022/10/14 3:15 p.m.22 views

CVE-2022-28760

Zoom On-Premise Meeting Connector MMR before version 4.8.20220815.130 contains an improper access control vulnerability. As a result, a malicious actor could obtain the audio and video feed of a meeting they were not authorized to join and cause other meeting disruptions...

6.5CVSS0.00511EPSS
Exploits0References1
nvd
nvd
added 2022/10/14 3:15 p.m.23 views

CVE-2022-28759

Zoom On-Premise Meeting Connector MMR before version 4.8.20220815.130 contains an improper access control vulnerability. As a result, a malicious actor could obtain the audio and video feed of a meeting they were not authorized to join and cause other meeting disruptions...

8.6CVSS0.00551EPSS
Exploits0References1
prion
prion
added 2022/10/14 3:15 p.m.16 views

Improper access control

Zoom On-Premise Meeting Connector MMR before version 4.8.20220916.131 contains an improper access control vulnerability. As a result, a malicious actor in a meeting or webinar they are authorized to join could prevent participants from receiving audio and video causing meeting disruptions...

4CVSS6.4AI score0.00676EPSS
Exploits0References1Affected Software1
cve
cve
added 2022/10/14 2:51 p.m.51 views

CVE-2022-28761

The CVE-2022-28761 entry concerns Zoom On-Premise Meeting Connector MMR prior to version 4.8.20220916.131, with an improper access control flaw. The root cause is inadequate access control within the Meeting Connector, enabling a meeting/webinar participant who is authorized to join to prevent ot...

6.5CVSS6.4AI score0.00676EPSS
Exploits0References1Affected Software1
cve
cve
added 2022/10/14 2:51 p.m.59 views

CVE-2022-28759

Summary (CVE-2022-28759): Zoom On-Premise Meeting Connector MMR versions prior to 4.8.20220815.130 are affected by an improper access control vulnerability that could allow a malicious actor to obtain the audio and video feed of a meeting they were not authorized to join and potentially disrupt m...

8.6CVSS8.4AI score0.00551EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2022/10/14 2:51 p.m.27 views

CVE-2022-28759 Zoom On-Premise Deployments: Improper Access Control

Zoom On-Premise Meeting Connector MMR before version 4.8.20220815.130 contains an improper access control vulnerability. As a result, a malicious actor could obtain the audio and video feed of a meeting they were not authorized to join and cause other meeting disruptions...

8.2CVSS8.7AI score0.00551EPSS
Exploits0References1
cve
cve
added 2022/10/14 2:51 p.m.49 views

CVE-2022-28760

The CVE-2022-28760 issue affects Zoom On-Premise Meeting Connector MMR prior to 4.8.20220815.130, caused by improper access control that could allow an unauthorized user to obtain the audio and video feeds of a meeting and cause disruptions. Affected product: Zoom On-Premise Meeting Connector MMR...

6.5CVSS6.5AI score0.00511EPSS
Exploits0References1Affected Software1
osv
osv
added 2022/09/16 10:15 p.m.3 views

CVE-2022-28758

Zoom On-Premise Meeting Connector MMR before version 4.8.20220815.130 contains an improper access control vulnerability. As a result, a malicious actor could obtain the audio and video feed of a meeting they were not authorized to join and cause other meeting disruptions...

8.2CVSS5.8AI score0.00578EPSS
Exploits0References1
nvd
nvd
added 2022/09/16 10:15 p.m.20 views

CVE-2022-28758

Zoom On-Premise Meeting Connector MMR before version 4.8.20220815.130 contains an improper access control vulnerability. As a result, a malicious actor could obtain the audio and video feed of a meeting they were not authorized to join and cause other meeting disruptions...

8.2CVSS0.00578EPSS
Exploits0References1
cve
cve
added 2022/09/16 8:13 p.m.54 views

CVE-2022-28758

The CVE-2022-28758 entry concerns Zoom On-Premise Meeting Connector MMR prior to 4.8.20220815.130, with an improper access control flaw. The issue could allow a malicious actor to obtain the audio and video feeds of a meeting they are not authorized to join, potentially causing other meeting disr...

8.2CVSS8.2AI score0.00578EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder