Lucene search
K

21 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: serial: liteuart: fix minor-number leak on probe errors Be sure to release the allocated minor number before returning on probe errors...

5.5CVSS5.1AI score0.00205EPSS
Exploits0References2
Github Security Blog
Github Security Blog
added 2026/04/14 1:1 a.m.6 views

Craft Commerce has an unauthenticated information disclosure that can leak some customer order data on anonymous payments

Summary PaymentsController::actionPay discloses some order data to unauthenticated users when an order number is provided and the email check fails during an anonymous payment. The JSON error response includes the serialized order object order, which contains some sensitive fields such as custome...

6.3CVSS5.8AI score0.00295EPSS
Exploits0References6Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2021-25296

Malware in sbrugna...

5.3CVSS5.6AI score0.00531EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/05/01 12:0 a.m.5 views

PT-2025-18668 · Gotenna · Gotenna

Name of the Vulnerable Software and Affected Versions: goTenna v1 devices with app 5.5.3 and firmware 0.25.5 Description: An issue was discovered where the GID, which is the user's phone number by default unless they opt out, is not encrypted in messages. This is sensitive information as it can b...

6.5CVSS6.2AI score0.00137EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2024/05/28 3:32 a.m.4 views

SUSE CVE-2021-47524

In the Linux kernel, the following vulnerability has been resolved: serial: liteuart: fix minor-number leak on probe errors Make sure to release the allocated minor number before returning on probe errors...

4.7CVSS6.2AI score0.00205EPSS
Exploits0References8
RedhatCVE
RedhatCVE
added 2024/05/27 11:3 a.m.18 views

CVE-2021-47524

In the Linux kernel, the following vulnerability has been resolved: serial: liteuart: fix minor-number leak on probe errors Make sure to release the allocated minor number before returning on probe errors...

2.7CVSS6.5AI score0.00205EPSS
Exploits0References4
OSV
OSV
added 2024/05/24 3:15 p.m.3 views

DEBIAN-CVE-2021-47524

In the Linux kernel, the following vulnerability has been resolved: serial: liteuart: fix minor-number leak on probe errors Make sure to release the allocated minor number before returning on probe errors...

5.5CVSS4.9AI score0.00205EPSS
Exploits0References1
NVD
NVD
added 2024/05/24 3:15 p.m.19 views

CVE-2021-47524

In the Linux kernel, the following vulnerability has been resolved: serial: liteuart: fix minor-number leak on probe errors Make sure to release the allocated minor number before returning on probe errors...

5.5CVSS6.5AI score0.00205EPSS
Exploits0References2
OSV
OSV
added 2024/05/24 3:15 p.m.3 views

UBUNTU-CVE-2021-47524

In the Linux kernel, the following vulnerability has been resolved: serial: liteuart: fix minor-number leak on probe errors Make sure to release the allocated minor number before returning on probe errors...

5.5CVSS5.7AI score0.00205EPSS
Exploits0References5
CVE
CVE
added 2024/05/24 3:9 p.m.75 views

CVE-2021-47524

CVE-2021-47524 : In the Linux kernel, the serial driver (liteuart) leaked a minor number on probe errors. The fix ensures the allocated minor number is released before returning from probe errors. This entry is tied to kernel versions affected by the liteuart minor-number leak and has been resolv...

5.5CVSS6.7AI score0.00205EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2024/05/24 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel, which stems from a secondary number leak in the serial:liteuart module detection error...

5.5CVSS6.1AI score0.00205EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/05/02 12:0 a.m.4 views

WordPress plugin Analytify 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

5.4CVSS6.4AI score0.00293EPSS
Exploits0References3
NVD
NVD
added 2024/04/22 3:15 p.m.25 views

CVE-2023-38297

An issue was discovered in a third-party com.factory.mmigroup component, shipped on devices from multiple device manufacturers. Certain software builds for various Android devices contain a vulnerable pre-installed app with a package name of com.factory.mmigroup versionCode='3', versionName='2.1...

8.4CVSS7.2AI score0.01092EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/04/22 12:0 a.m.15 views

CVE-2023-38297

An issue was discovered in a third-party com.factory.mmigroup component, shipped on devices from multiple device manufacturers. Certain software builds for various Android devices contain a vulnerable pre-installed app with a package name of com.factory.mmigroup versionCode='3', versionName='2.1...

7.6AI score0.01092EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/04/22 12:0 a.m.4 views

PT-2024-12702 · Unknown · Com.Factory.Mmigroup

Name of the Vulnerable Software and Affected Versions: com.factory.mmigroup version 2.1 Description: An issue was discovered in the com.factory.mmigroup component, shipped on devices from multiple device manufacturers. Certain software builds for various Android devices contain a vulnerable...

8.4CVSS6.7AI score0.01092EPSS
Exploits0References4
CVE
CVE
added 2024/04/22 12:0 a.m.94 views

CVE-2023-38297

CVE-2023-38297 affects the pre-installed com.factory.mmigroup app (version 2.1) on multiple Android devices. The component runs as the system user and exposes zero-permission capabilities to local apps, including arbitrary AT command execution, programmatic factory reset, IMEI/serial leakage, pow...

8.4CVSS7.4AI score0.01092EPSS
Exploits0References1
Prion
Prion
added 2023/11/17 12:15 p.m.11 views

Design/Logic Flaw

An issue was discovered on Bell HomeHub 3000 SG48222070 devices. Remote authenticated users can retrieve the serial number via cgi/json-req - this is an information leak because the serial number is intended to prove an actor's physical access to the device...

4CVSS6.7AI score0.00652EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2023/11/17 12:0 a.m.6 views

PT-2023-11451 · Bell · Bell Homehub 3000

Name of the Vulnerable Software and Affected Versions: Bell HomeHub 3000 version SG48222070 Description: An issue allows remote authenticated users to retrieve the serial number via the "cgi/json-req" endpoint. This is considered an information leak because the serial number is intended to prove ...

4.3CVSS6.1AI score0.00652EPSS
Exploits1References5
CNNVD
CNNVD
added 2021/12/26 12:0 a.m.4 views

Netgear NETGEAR 信息泄露漏洞

Netgear NETGEAR is a router from the American company Netgear. A hardware device that connects two or more networks and acts as a gateway between networks. An information disclosure vulnerability exists in certain NETGEAR devices, which can result in the disclosure of sensitive information on...

6.1CVSS5.7AI score0.00578EPSS
Exploits0References3
OSV
OSV
added 2017/01/30 4:59 a.m.4 views

CVE-2016-10175

The NETGEAR WNR2000v5 router leaks its serial number when performing a request to the /BRSnetgearsuccess.html URI. This serial number allows a user to obtain the administrator username and password, when used in combination with the CVE-2016-10176 vulnerability that allows resetting the answers t...

9.8CVSS5.8AI score0.64741EPSS
Exploits3References5
Rows per page
Query Builder