CVE-2025-69205 In µURU, a Specially Crafted Federation Name Allows Dialplan Injection

Micro Registration Utility µURU is a telephone self registration utility based on asterisk. In versions up to and including commit 88db9a953f38a3026bcd6816d51c7f3b93c55893, an attacker can crafts a special federation name and characters treated special by asterisk can be injected into the Dial...

PT-2025-53708

Name of the Vulnerable Software and Affected Versions code-projects Refugee Food Management System version 1.0 Description A security flaw exists in code-projects Refugee Food Management System 1.0. The issue is a SQL injection impacting an unknown function within the /home/pagenateRefugeesList.p...

Linux Distros Unpatched Vulnerability : CVE-2025-68750

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - usb: potential integer overflow in usbgmaketpg The variable tpgt in usbgmaketpg is defined as unsigned long and is assigned to tpgt-tporttpgt, which is defined ...

PT-2025-53793

Name of the Vulnerable Software and Affected Versions code-projects Student File Management System version 1.0 Description A flaw exists in Student File Management System version 1.0 that allows for remote code execution. The issue is related to SQL injection within the /download.php file,...

PT-2025-53742

Name of the Vulnerable Software and Affected Versions code-projects Assessment Management version 1.0 Description A SQL injection issue exists due to manipulation of the linked argument within the /admin/add-module.php file. This manipulation affects some unknown functionality. The attack can be...

PT-2025-53622

Name of the Vulnerable Software and Affected Versions XSpeeder SXZOS through 2025-12-26 Description XSpeeder SXZOS through 2025-12-26 contains a critical flaw allowing unauthenticated attackers to achieve root remote code execution. The issue stems from the unsafe evaluation of base64-decoded inp...

Linux Distros Unpatched Vulnerability : CVE-2025-68737

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - arm64/pageattr: Propagate return value from changememorycommon The rodata=on security measure requires that any code path which does vmalloc -...

Linux Distros Unpatched Vulnerability : CVE-2023-54096

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - soundwire: fix enumeration completion The soundwire subsystem uses two completion structures that allow drivers to wait for soundwire device to become enumerate...

Linux Distros Unpatched Vulnerability : CVE-2022-50726

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - net/mlx5: Fix possible use-after-free in async command interface mlx5cmdcleanupasyncctx should return only after all its callback handlers were completed. Befor...

Linux Distros Unpatched Vulnerability : CVE-2022-50769

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mmc: mxcmmc: fix return value check of mmcaddhost mmcaddhost may return error, if we ignore its return value, the memory that allocated in mmcallochost will be...

Linux Distros Unpatched Vulnerability : CVE-2023-54024

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - KVM: Destroy target device if coalesced MMIO unregistration fails Destroy and free the target coalesced MMIO device if unregistering said device fails. As clear...

Linux Distros Unpatched Vulnerability : CVE-2023-54156

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - sfc: fix crash when reading stats while NIC is resetting efxnetstats .ndogetstats64 can be called during an ethtool selftest, during which time nicdata-mcstats ...

Linux Distros Unpatched Vulnerability : CVE-2025-68357

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - iomap: allocate sdiodonewq for async reads as well Since commit 222f2c7c6d14 iomap: always run error completions in user context, read error completions are...

Linux Distros Unpatched Vulnerability : CVE-2022-50748

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ipc: mqueue: fix possible memory leak in initmqueuefs commit db7cfc380900 ipc: Free mqsysctls if ipc namespace creation failed Here's a similar memory leak to t...

Linux Distros Unpatched Vulnerability : CVE-2023-54035

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - netfilter: nftables: fix underflow in chain reference counter Set element addition error path decrements reference counter on chains twice: once on element...

Linux Distros Unpatched Vulnerability : CVE-2025-67436

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Authenticated Remote Code Execution RCE in PluXml CMS 5.8.22 allows an attacker with administrator panel access to inject a malicious PHP webshell into a theme...

Linux Distros Unpatched Vulnerability : CVE-2023-54144

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/amdkfd: Fix kernel warning during topology setup This patch fixes the following kernel warning seen during driver load by correctly initializing the p2plink...

Linux Distros Unpatched Vulnerability : CVE-2025-14935

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - NSF Unidata NetCDF-C Dimension Name Heap-based Buffer Overflow Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute...

Linux Distros Unpatched Vulnerability : CVE-2023-54121

"The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - btrfs: fix incorrect splitting in btrfsdropextentmaprange In production we were seeing a variety of WARNON's in the extentmap code, specifically in...

Linux Distros Unpatched Vulnerability : CVE-2025-68341

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - veth: reduce XDP nodirect return section to fix race As explain in commit fa349e396e48 veth: Fix race with AFXDP exposing old or uninitialized descriptors for...