Lucene search
K

1049 matches found

Rapid7 Blog
Rapid7 Blog
added 2026/07/03 10:11 p.m.26 views

Weekly Metasploit Update: Modules for SMB-to-Meterpreter, Peyara Remote Mouse RCE exploit, and more

It's Time to Upgrade Your SMB Session This week, Metasploit contributor Dean Welch has added an SMB to Meterpreter session upgrade module. It uses PsExec to facilitate the upgrade. Users can load the module with use windows/manage/smbtometerpreter and specify the session number they wish to...

6AI score
Exploits0
Metasploit
Metasploit
added 2026/06/26 7:5 p.m.221 views

Peyara Remote Mouse 1.0.1 Unauthenticated Remote Code Execution

This module exploits an unauthenticated remote code execution vulnerability in Peyara Remote Mouse 1.0.1. The application exposes a Socket.IO WebSocket service on TCP port 1313 and accepts unauthenticated keyboard input events. The module sends keyboard events to open the Windows command prompt a...

6.7AI score
Exploits0
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.10 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: HID: magicmouse: Do not cause a crash when the msc-input field is missing. Fake USB devices can send their own report descriptors, for which the inputmapping hook is not called. In this case, msc-input remains NULL, leading to a...

5.5CVSS5.7AI score0.00128EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.3 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: x86/vmware: Fixed hypercall clobbering issues Fedora QA reported the following panic: BUG: Unable to handle a page fault for address: 0000000040003e54 PF: Supervisor write access in kernel mode PF: Errorcode0x0002 – Not-presen...

5.5CVSS6AI score0.00112EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2026/05/28 8:12 a.m.8 views

misc: ibmasm: fix OOB MMIO read in ibmasm_handle_mouse_interrupt()

...

7.1CVSS5.4AI score0.00145EPSS
Exploits0
Debian CVE
Debian CVE
added 2026/05/27 12:56 p.m.11 views

CVE-2026-46022

In the Linux kernel, the following vulnerability has been resolved: misc: ibmasm: fix OOB MMIO read in ibmasmhandlemouseinterrupt ibmasmhandlemouseinterrupt performs an out-of-bounds MMIO read when the queue reader or writer index from hardware exceeds REMOTEQUEUESIZE 60. A compromised service...

7.1CVSS5.7AI score0.00145EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2026/05/27 12:0 a.m.20 views

CVE-2026-46022

misc: ibmasm: fix OOB MMIO read in ibmasmhandlemouseinterrupt...

5.8AI score0.00145EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.13 views

PT-2026-43889

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 7.0.11-1.1 Description An out-of-bounds MMIO Memory Mapped I/O read exists in the ibmasm handle mouse interrupt function. This occurs when the queue reader or writer index from the hardware exceeds REMOTE QUEUE...

7.1CVSS5.8AI score0.00145EPSS
Exploits0
CNNVD
CNNVD
added 2026/05/27 12:0 a.m.18 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from an out-of-bound MMIO read performed by the queue reader/writer index exceeding the REMOTEQUEUESIZE rang...

5.8AI score0.00145EPSS
Exploits0References5
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in Linux

In the Linux kernel, the following vulnerability has been resolved: HID: magicmouse: fix NULL dereferencing on disconnection Commit 9d7b18668956 “HID: magicmouse: add support for Apple Magic Trackpad 2” added a sanity check for an Apple trackpad. If the check fails, it returns success instead of...

5.5CVSS6.2AI score0.00235EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Firefox and Thunderbird

A malicious website could have used a combination of the fullscreen mode and the requestPointerLock function to cause the user’s mouse to be repositioned unexpectedly. This could lead to confusion among users and, inadvertently, the granting of permissions that the user did not intend to grant...

6.1CVSS6.5AI score0.00575EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2026/05/12 8:52 p.m.11 views

CVE-2026-44296

Deskflow is a keyboard and mouse sharing app. Prior to 1.26.0.167, a remote, unauthenticated denial of service DoS vulnerability affects Deskflow servers running with TLS enabled the default. When any TCP peer connects to the listening port and its first bytes do not parse as a valid TLS...

7.5CVSS5.8AI score0.00279EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/05/09 2:42 a.m.11 views

SUSE CVE-2026-43140

In the Linux kernel, the following vulnerability has been resolved: HID: magicmouse: Do not crash on missing msc-input Fake USB devices can send their own report descriptors for which the inputmapping hook does not get called. In this case, msc-input stays NULL, leading to a crash at a later time...

4.6CVSS5.8AI score0.00128EPSS
Exploits0References4
OSV
OSV
added 2026/05/07 9:19 a.m.8 views

CLSA-2026-1778140717 vim: Fix of 10 CVEs

CVE-2022-0158: fix Vim9 reading before start of line with single $ - CVE-2022-0696: fix crash when switching tabpage in cmdline window - CVE-2022-1674: fix crash when matching buffer with invalid pattern - CVE-2022-1725: fix using NULL regexp program in buffer matching - CVE-2022-1771: fix...

7.8CVSS5.9AI score0.01709EPSS
Exploits10References1
OSV
OSV
added 2026/05/07 8:12 a.m.14 views

CLSA-2026-1778133583 vim: Fix of 10 CVEs

CVE-2022-0158: fix Vim9 reading before start of line with single $ - CVE-2022-0696: fix crash when switching tabpage in cmdline window - CVE-2022-1674: fix crash when matching buffer with invalid pattern - CVE-2022-1725: fix using NULL regexp program in buffer matching - CVE-2022-1771: fix...

7.8CVSS6.7AI score0.01709EPSS
Exploits10References1
EUVD
EUVD
added 2026/05/06 12:30 p.m.7 views

EUVD-2026-27703

In the Linux kernel, the following vulnerability has been resolved: HID: magicmouse: Do not crash on missing msc-input Fake USB devices can send their own report descriptors for which the inputmapping hook does not get called. In this case, msc-input stays NULL, leading to a crash at a later time...

5.8AI score0.00128EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2026/05/06 11:27 a.m.6 views

CVE-2026-43140

In the Linux kernel, the following vulnerability has been resolved: HID: magicmouse: Do not crash on missing msc-input Fake USB devices can send their own report descriptors for which the inputmapping hook does not get called. In this case, msc-input stays NULL, leading to a crash at a later time...

5.5CVSS5.7AI score0.00128EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/05/06 11:27 a.m.9 views

CVE-2026-43140

In the Linux kernel, the following vulnerability has been resolved: HID: magicmouse: Do not crash on missing msc-input Fake USB devices can send their own report descriptors for which the inputmapping hook does not get called. In this case, msc-input stays NULL, leading to a crash at a later time...

5.7AI score0.00128EPSS
Exploits0References9Affected Software1
OSV
OSV
added 2026/05/06 11:27 a.m.3 views

CVE-2026-43140 HID: magicmouse: Do not crash on missing msc->input

In the Linux kernel, the following vulnerability has been resolved: HID: magicmouse: Do not crash on missing msc-input Fake USB devices can send their own report descriptors for which the inputmapping hook does not get called. In this case, msc-input stays NULL, leading to a crash at a later time...

5.5CVSS6.2AI score0.00128EPSS
Exploits0References11
CNNVD
CNNVD
added 2026/05/06 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the lack of handling of msc-input in the HID MagicMouse, potentially leading to crashes...

5.5CVSS5.8AI score0.00128EPSS
Exploits0References1
Rows per page
Query Builder