Lucene search
K

14 matches found

NVD
NVD
added 2026/06/26 8:16 a.m.7 views

CVE-2026-49486

The Apache Airflow FTP provider's FTPSHook.getconn created an ftplib.FTPTLS connection but never called protp, so although the control channel was TLS-protected the data channel was transmitted in cleartext. Any deployment using FTPSHook or FTPSFileTransmitOperator to move files over FTPS exposed...

7.5CVSS0.00264EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/28 12:0 a.m.13 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the tracepoint module. In this case, when funcadd fails, the matching unregfunc function is not...

5.8AI score0.00128EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/05/27 5:13 p.m.13 views

CVE-2026-46089

A flaw was found in the Linux kernel's zram module. This vulnerability allows a local user to cause a system hang, leading to a Denial of Service DoS. The issue occurs because the zram module fails to properly handle partial discard requests, specifically by not calling endio when such requests a...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/03/25 12:0 a.m.9 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the failure to call fini when creating the execution queue, potentially leading to invalid memory...

7.8CVSS5.9AI score0.00129EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2026/02/11 11:58 a.m.5 views

kernel: Bluetooth: hci_event: call disconnect callback before deleting conn

A flaw was found in the Linux kernel in which a callback is not called when a Bluetooth peripheral is disconnected. This flaw leads to a use-after-free, which an attacker could use to escalate their privileges, corrupt system memory, or otherwise cause a denial of service...

7.8CVSS5.7AI score0.0017EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2025/10/22 12:0 a.m.7 views

PT-2025-43094

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel's USB gadget driver contains a memory leak in the raw gadget driver. Specifically, the raw dev-count is incremented before the raw queue event function is invoked. If ra...

7.8CVSS6.2AI score0.08942EPSS
Exploits4References987
Positive Technologies
Positive Technologies
added 2025/09/18 12:0 a.m.4 views

PT-2025-38369

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak exists in the Linux kernel when using the debugfs lookup function. Failing to call dput on the result of debugfs lookup leads to a memory leak over time. The issue is...

6AI score0.00135EPSS
Exploits0References11
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2019-10064

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - hostapd before 2.6, in EAP mode, makes calls to the rand and random standard library functions without any preceding srand or srandom call, which results in...

7.5CVSS7.2AI score0.03748EPSS
Exploits1References2
OSV
OSV
added 2024/06/20 11:15 a.m.6 views

UBUNTU-CVE-2022-48722

In the Linux kernel, the following vulnerability has been resolved: net: ieee802154: ca8210: Stop leaking skb's Upon error the ieee802154xmitcomplete helper is not called. Only ieee802154wakequeue is called manually. We then leak the skb structure. Free the skb structure upon error before returni...

5.5CVSS6.1AI score0.00223EPSS
Exploits0References10
ATTACKERKB
ATTACKERKB
added 2024/05/21 3:15 p.m.6 views

CVE-2021-47419

In the Linux kernel, the following vulnerability has been resolved: net/sched: schtaprio: properly cancel timer from tapriodestroy There is a comment in qdisccreate about us not calling ops-reset in some cases. errout4: / Any broken qdiscs that would require a ops-reset here? The qdisc was never ...

5.5CVSS5.7AI score0.00222EPSS
Exploits0References5Affected Software1
RedHat Linux
RedHat Linux
added 2022/11/21 12:35 p.m.8 views

Mozilla: Use-after-free in Garbage Collection

The Mozilla Foundation Security Advisory describes this flaw as: The garbage collector could have been aborted in several states and zones and GCRuntime::finishCollection may not have been called, leading to a use-after-free and potentially exploitable crash...

8.8CVSS7.3AI score0.00779EPSS
Exploits0References6
OSV
OSV
added 2022/09/01 9:15 p.m.4 views

UBUNTU-CVE-2022-3078

An issue was discovered in the Linux kernel through 5.16-rc6. There is a lack of check after calling vzalloc and lack of free after allocation in drivers/media/test-drivers/vidtv/vidtvs302m.c...

5.5CVSS6.7AI score0.00224EPSS
Exploits0References4
OSV
OSV
added 2021/12/27 12:15 a.m.5 views

CVE-2021-45681

An issue was discovered in the derive-com-impl crate before 0.1.2 for Rust. An invalid reference and memory corruption can occur because AddRef might not be called before returning a pointer...

7.5CVSS5.8AI score0.01053EPSS
Exploits0References2
securityvulns
securityvulns
added 2011/12/19 12:0 a.m.28 views

libcap protection bypass

chdir is not called after chroot...

4.6CVSS1.8AI score0.00379EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder