Lucene search
K

7110 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2026/05/29 7:45 a.m.13 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component uses path-to-regexp-0.1.12.tgz which is vulnerable to CVE-2026-4867

Summary Security Bulletin: IBM Maximo Application Suite - Monitor Component uses path-to-regexp-0.1.12.tgz which is vulnerable to CVE-2026-4867.This bulletin contains information addressing the vulnerability. Vulnerability Details CVEID:CVE-2026-4867 DESCRIPTION: Impact: A bad regular expression ...

7.5CVSS5.8AI score0.00496EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/29 7:29 a.m.8 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component uses axios-1.15.0.tgz which is vulnerable to CVE-2026-42264

Summary Security Bulletin: IBM Maximo Application Suite - Monitor Component uses axios-1.15.0.tgz which is vulnerable to CVE-2026-42264.This bulletin contains information addressing the vulnerability. Vulnerability Details CVEID:CVE-2026-42264 DESCRIPTION: Axios is a promise based HTTP client for...

9.1CVSS5.7AI score0.00466EPSS
Exploits1Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/29 7:20 a.m.8 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component uses axios-1.15.0.tgz which is vulnerable to CVE-2026-42033, CVE-2026-42034, CVE-2026-42035, CVE-2026-42036, CVE-2026-42037

Summary Security Bulletin: IBM Maximo Application Suite - Monitor Component uses axios-1.15.0.tgz which is vulnerable to CVE-2026-42033, CVE-2026-42034, CVE-2026-42035, CVE-2026-42036, CVE-2026-42037, CVE-2026-42038, CVE-2026-42039, CVE-2026-42040, CVE-2026-42041, CVE-2026-42042, CVE-2026-42043,...

10CVSS6AI score0.00838EPSS
Exploits12Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/29 6:46 a.m.10 views

Security Bulletin: IBM Maximo Application Suite - Monitor Component uses WebSphere Application Server Liberty which was affected by identity spoofing which is vulnerable to CVE-2026-3621

Summary Security Bulletin: IBM Maximo Application Suite - Monitor Component uses WebSphere Application Server Liberty which was affected by identity spoofing which is vulnerable to CVE-2026-3621. This bulletin contains information addressing the vulnerability. Vulnerability Details...

7.5CVSS5.8AI score0.00276EPSS
Exploits0Affected Software1
Packet Storm News
Packet Storm News
added 2026/05/29 12:0 a.m.20 views

Stateful Online Monitoring Catches Distributed Agent Attacks

Language models can find thousands of severe software vulnerabilities, and agents are increasingly being misused for cyberattacks. To avoid detection, attackers frequently distribute their misuse, splitting a harmful task across many user accounts so each individual transcript looks benign. Becau...

5.8AI score
Exploits0
RedhatCVE
RedhatCVE
added 2026/05/28 9:0 p.m.12 views

CVE-2025-71305

A flaw was found in the Linux kernel's DisplayPort Multi-Stream Transport MST subsystem. When a DisplayPort 2.1 monitor is disconnected, a timing issue can cause the Virtual Channel Packet Interval VCPI value to become zero. Subsequent operations attempting to use this zero value in a bit shift c...

5.5CVSS5.8AI score0.00156EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/05/28 12:0 a.m.10 views

ai-goofish-monitor 安全漏洞

ai-goofish-monitor is an AI-based multi-task real-time monitoring and web management tool developed by Usagi-org. There is a security vulnerability in ai-goofish-monitor. This vulnerability stems from the GET /api/prompts/filename endpoint in Windows deployments, which contains an unvalidated...

8.2CVSS6AI score0.006EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/05/27 9:9 p.m.10 views

CVE-2026-46008

A flaw was found in the Linux kernel's Data Access MONitor DAMON subsystem. A race condition exists in the memory management component, specifically during the exit process of kdamondfn and the registration of damoswalk requests. This vulnerability allows a local attacker to trigger a deadlock,...

4.7CVSS5.8AI score0.00079EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/05/27 8:38 p.m.11 views

CVE-2026-46020

A flaw was found in the Linux kernel's DAMON Data Access MONitor core. A privileged local user can exploit this vulnerability by providing an invalid node ID to damosquotagoal-nid for nodememused,freebp via the DAMON user-space tool. This improper validation can lead to an out-of-bounds memory...

7.1CVSS5.8AI score0.00124EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/05/27 5:27 p.m.9 views

CVE-2026-46087

A flaw was found in the Linux kernel's Data Access MONitor DAMON subsystem. When the damonstart function fails during the damonstatstart operation, the system does not properly release the allocated memory context. This oversight leads to a memory leak, where previously allocated memory becomes...

5.5CVSS5.8AI score0.00121EPSS
Exploits0References4
GithubExploit
GithubExploit
added 2026/05/27 3:29 p.m.90 views

Exploit for CVE-2026-0828

CVE-2026-0828 — Safetica ProcessMonitorDriver.sys BYOVD PoC S...

6.2AI score0.00461EPSS
Exploits2
NVD
NVD
added 2026/05/27 2:17 p.m.12 views

CVE-2026-46073

In the Linux kernel, the following vulnerability has been resolved: hwmon: powerz Fix missing usbkillurb on signal interrupt waitforcompletioninterruptibletimeout returns -ERESTARTSYS when interrupted. This needs to abort the URB and return an error. No data has been received from the device so a...

5.5CVSS0.00122EPSS
Exploits0References4
NVD
NVD
added 2026/05/27 2:17 p.m.9 views

CVE-2026-46007

In the Linux kernel, the following vulnerability has been resolved: hwmon: powerz Avoid cacheline sharing for DMA buffer Depending on the architecture the transfer buffer may share a cacheline with the following mutex. As the buffer may be used for DMA, that is problematic. Use the high-level DMA...

5.5CVSS0.00122EPSS
Exploits0References4
NVD
NVD
added 2026/05/27 2:16 p.m.10 views

CVE-2025-71305

In the Linux kernel, the following vulnerability has been resolved: drm/display/dpmst: Add protection against 0 vcpi When releasing a timeslot there is a slight chance we may end up with the wrong payload mask due to overflow if the delayeddestroywork ends up coming into play after a DP 2.1 monit...

5.5CVSS0.00156EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/05/27 12:58 p.m.6 views

CVE-2026-46073

In the Linux kernel, the following vulnerability has been resolved: hwmon: powerz Fix missing usbkillurb on signal interrupt waitforcompletioninterruptibletimeout returns -ERESTARTSYS when interrupted. This needs to abort the URB and return an error. No data has been received from the device so a...

5.8AI score0.00122EPSS
Exploits0References5Affected Software1
Debian CVE
Debian CVE
added 2026/05/27 12:58 p.m.9 views

CVE-2026-46073

In the Linux kernel, the following vulnerability has been resolved: hwmon: powerz Fix missing usbkillurb on signal interrupt waitforcompletioninterruptibletimeout returns -ERESTARTSYS when interrupted. This needs to abort the URB and return an error. No data has been received from the device so a...

5.5CVSS5.9AI score0.00122EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/05/27 12:55 p.m.9 views

CVE-2026-46001

In the Linux kernel, the following vulnerability has been resolved: hwmon: pt5161l Fix bugs in pt5161lreadblockdata Fix two bugs in pt5161lreadblockdata: 1. Buffer overrun: The local buffer rbuf is declared as u8 rbuf24, but i2csmbusreadblockdata can return up to I2CSMBUSBLOCKMAX 32 bytes. The...

7.8CVSS5.9AI score0.00129EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/05/27 12:55 p.m.8 views

CVE-2026-45987

In the Linux kernel, the following vulnerability has been resolved: KVM: nSVM: Sync interrupt shadow to cached vmcb12 after VMRUN of L2 After VMRUN in guest mode, nestedsynccontrolfromvmcb02 syncs fields written by the CPU from vmcb02 to the cached vmcb12. This is because the cached vmcb12 is use...

5.5CVSS5.7AI score0.00123EPSS
Exploits0
CVE
CVE
added 2026/05/27 12:17 p.m.22 views

CVE-2026-45914

CVE-2026-45914 affects the Linux kernel hwmon ibmpex driver, where a race during sensor deletion can race with userspace access to a freed sensor data structure, causing a use-after-free and potential crash. The description notes that the patch reverting the previous fix (6946c726…) may introduce...

7.8CVSS5.7AI score0.00126EPSS
Exploits0References7Affected Software1
Debian CVE
Debian CVE
added 2026/05/27 12:17 p.m.5 views

CVE-2026-45914

In the Linux kernel, the following vulnerability has been resolved: Revert "hwmon: ibmpex fix use-after-free in high/low store" This reverts commit 6946c726c3f4c36f0f049e6f97e88c510b15f65d. Jean Delvare points out that the patch does not completely fix the reported problem, that it in fact...

7.8CVSS5.7AI score0.00126EPSS
Exploits0
Rows per page
Query Builder