267 matches found
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003028)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003028 advisory. The nfnetlinkrcvbatch function in net/netfilter/nfnetlink.c in the Linux kernel before 4.5 does not check whether a batch message's length field is large enough, whi...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003421)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003421 advisory. The netlinkdelivertapskb function in net/netlink/afnetlink.c in the Linux kernel through 4.14.4, when CONFIGNLMON is enabled, does not restrict observations of Netli...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002341)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002341 advisory. net/dccp/ccid.h in the Linux kernel before 3.5.4 allows local users to gain privileges or cause a denial of service NULL pointer dereference and system crash by...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002663)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002663 advisory. The tipcmsgbuild function in net/tipc/msg.c in the Linux kernel through 4.8.11 does not validate the relationship between the minimum fragment length and the maximum...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003066)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003066 advisory. A security flaw was discovered in the nl80211setrekeydata function in net/wireless/nl80211.c in the Linux kernel through 4.13.3. This function does not check whether...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002863)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002863 advisory. The nfnetlinkrcvbatch function in net/netfilter/nfnetlink.c in the Linux kernel before 4.5 does not check whether a batch message's length field is large enough, whi...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002766)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002766 advisory. A security flaw was discovered in the nl80211setrekeydata function in net/wireless/nl80211.c in the Linux kernel through 4.13.3. This function does not check whether...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001958)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001958 advisory. The socksetsockopt function in net/core/sock.c in the Linux kernel before 3.5 mishandles negative values of sksndbuf and skrcvbuf, which allows local users to cause ...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-002263)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002263 advisory. The socksetsockopt function in net/core/sock.c in the Linux kernel before 3.5 mishandles negative values of sksndbuf and skrcvbuf, which allows local users to cause ...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003302)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003302 advisory. net/netfilter/xtosf.c in the Linux kernel through 4.14.4 does not require the CAPNETADMIN capability for addcallback and removecallback operations, which allows loca...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001907)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001907 advisory. net/dccp/ccid.h in the Linux kernel before 3.5.4 allows local users to gain privileges or cause a denial of service NULL pointer dereference and system crash by...
Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003295)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003295 advisory. The socksetsockopt function in net/core/sock.c in the Linux kernel before 4.8.14 mishandles negative values of sksndbuf and skrcvbuf, which allows local users to cau...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002828)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002828 advisory. net/netfilter/nfnetlinkcthelper.c in the Linux kernel through 4.14.4 does not require the CAPNETADMIN capability for new, get, and del operations, which allows local...
Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003219)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003219 advisory. An issue was discovered in the Linux kernel before 4.18.11. The ipddpioctl function in drivers/net/appletalk/ipddp.c allows local users to obtain sensitive kernel...
Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000864)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000864 advisory. The socksetsockopt function in net/core/sock.c in the Linux kernel before 4.8.14 mishandles negative values of sksndbuf and skrcvbuf, which allows local users to cau...
CVE-2019-25254
KYOCERA Net Admin 3.4.0906 contains a cross-site request forgery vulnerability that allows attackers to create administrative users without proper request validation. Attackers can craft malicious web pages that automatically submit forms to add new admin accounts with predefined credentials when...
CVE-2019-25254
KYOCERA Net Admin 3.4.0906 contains a cross-site request forgery vulnerability that allows attackers to create administrative users without proper request validation. Attackers can craft malicious web pages that automatically submit forms to add new admin accounts with predefined credentials when...
CVE-2019-25254
KYOCERA Net Admin 3.4.0906 contains a cross-site request forgery vulnerability that allows attackers to create administrative users without proper request validation. Attackers can craft malicious web pages that automatically submit forms to add new admin accounts with predefined credentials when...
CVE-2019-25253
KYOCERA Net Admin 3.4.0906 contains an XML External Entity XXE injection vulnerability in the Multi-Set Template Editor that allows unauthenticated attackers to read arbitrary system files. Attackers can craft a malicious XML file with external entity references to retrieve sensitive configuratio...
CVE-2019-25253
KYOCERA Net Admin 3.4.0906 contains an XML External Entity XXE injection vulnerability in the Multi-Set Template Editor that allows unauthenticated attackers to read arbitrary system files. Attackers can craft a malicious XML file with external entity references to retrieve sensitive configuratio...