Lucene search
K

23 matches found

CVE
CVE
added 2026/07/02 12:0 a.m.13 views

CVE-2026-38970

The provided data confirms a concrete vulnerability in pdfcpu

7.5CVSS5.8AI score0.00451EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/07/02 12:0 a.m.5 views

CVE-2026-38970

pdfcpu through v0.11.1 contains an uncontrolled-recursion denial-of-service issue in pkg/pdfcpu/model/parse.go. The parser descends recursively through nested PDF objects, including arrays, via ParseObjectContext and parseArray without enforcing a maximum nesting depth...

5.8AI score0.00451EPSS
Exploits0References4
OSV
OSV
added 2026/07/02 12:0 a.m.4 views

CVE-2026-38970

pdfcpu through v0.11.1 contains an uncontrolled-recursion denial-of-service issue in pkg/pdfcpu/model/parse.go. The parser descends recursively through nested PDF objects, including arrays, via ParseObjectContext and parseArray without enforcing a maximum nesting depth...

7.5CVSS5.9AI score0.00451EPSS
Exploits0References5
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: This issue prevents concurrent access to the IPSec ASO context. The querying or updating of IPSec offload objects occurs through the Access ASO WQE. The driver uses a single mlx5eipsecaso structure for each PF, which...

4.7CVSS5.7AI score0.00089EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/04/03 11:27 p.m.7 views

SUSE CVE-2026-23441

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Prevent concurrent access to IPSec ASO context The query or updating IPSec offload object is through Access ASO WQE. The driver uses a single mlx5eipsecaso struct for each PF, which contains a shared DMA-mapped context...

5.5CVSS5.7AI score0.00089EPSS
Exploits0References16
EUVD
EUVD
added 2026/04/03 6:31 p.m.4 views

EUVD-2026-18682

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Prevent concurrent access to IPSec ASO context The query or updating IPSec offload object is through Access ASO WQE. The driver uses a single mlx5eipsecaso struct for each PF, which contains a shared DMA-mapped context...

5.7AI score0.00089EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/04/03 3:15 p.m.26 views

CVE-2026-23441 net/mlx5e: Prevent concurrent access to IPSec ASO context

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Prevent concurrent access to IPSec ASO context The query or updating IPSec offload object is through Access ASO WQE. The driver uses a single mlx5eipsecaso struct for each PF, which contains a shared DMA-mapped context...

0.00089EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/04/03 3:15 p.m.2 views

CVE-2026-23441

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Prevent concurrent access to IPSec ASO context The query or updating IPSec offload object is through Access ASO WQE. The driver uses a single mlx5eipsecaso struct for each PF, which contains a shared DMA-mapped context...

5.7AI score0.00089EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2026/04/03 3:15 p.m.21 views

CVE-2026-23441

CVE-2026-23441 is a Linux kernel vulnerability in the net/mlx5e driver. The issue is a race condition where the ASO spinlock is released before the hardware finishes processing a WQE, causing a second operation to overwrite a shared DMA context. The fix introduces a private per-object IPSec ASO c...

4.7CVSS5.7AI score0.00089EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2026/04/03 3:15 p.m.2 views

CVE-2026-23441 net/mlx5e: Prevent concurrent access to IPSec ASO context

In the Linux kernel, the following vulnerability has been resolved: net/mlx5e: Prevent concurrent access to IPSec ASO context The query or updating IPSec offload object is through Access ASO WQE. The driver uses a single mlx5eipsecaso struct for each PF, which contains a shared DMA-mapped context...

4.7CVSS5.8AI score0.00089EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2026/04/03 12:0 a.m.6 views

PT-2026-30136

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contained a flaw in the net/mlx5e module where concurrent access to the IPSec ASO context could occur. This was due to a race condition where the ASO spinlock was releas...

4.7CVSS5.8AI score0.00089EPSS
Exploits0References483
Cvelist
Cvelist
added 2026/01/22 4:17 p.m.24 views

CVE-2026-23761 VB-Audio Voicemeeter & Matrix Drivers DoS via Improper FILE_OBJECT FsContext Initialization

VB-Audio Voicemeeter, Voicemeeter Banana, and Voicemeeter Potato versions ending in 1.1.1.9, 2.1.1.9, and 3.1.1.9 and earlier, respectively, as well as VB-Audio Matrix and Matrix Coconut versions ending in 1.0.2.2 and 2.0.2.2 and earlier, respectively, contain a vulnerability in their virtual aud...

6.9CVSS0.00164EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2022-0702

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00793EPSS
Exploits1References5
OSV
OSV
added 2022/01/06 11:48 p.m.8 views

GHSA-VC89-HCCF-RQ55 Hash collision in typelevel jawn

Impact Extenders of the org.typelevel.jawn.SimpleFacade and org.typelevel.jawn.MutableFacade who don't override objectContext are vulnerable to a hash collision attack. Most applications do not implement these traits directly, but inherit from a library: Affected implementations include: org.http...

5.9CVSS5.9AI score0.00793EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2020/11/30 12:0 a.m.161 views

CentOS 7 : webkitgtk4 (RHSA-2020:4035)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:4035 advisory. - WebKitGTK and WPE WebKit prior to version 2.24.1 failed to properly apply configured HTTP proxy settings when downloading livestream video HLS, DASH,...

9.8CVSS7.7AI score0.18108EPSS
Exploits21References105
Tenable Nessus
Tenable Nessus
added 2020/11/12 12:0 a.m.137 views

Oracle Linux 8 : GNOME (ELSA-2020-4451)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-4451 advisory. - Backport fix for CVE-2020-15503 from Fedora Resolves: 1853529 libsoup Tenable has extracted the preceding description block directly from the Oracle...

9.8CVSS7.2AI score0.77246EPSS
Exploits9References54
Prion
Prion
added 2020/10/27 9:15 p.m.28 views

Design/Logic Flaw

A logic issue was addressed with improved validation. This issue is fixed in iCloud for Windows 7.17, iTunes 12.10.4 for Windows, iCloud for Windows 10.9.2, tvOS 13.3.1, Safari 13.0.5, iOS 13.3.1 and iPadOS 13.3.1. A DOM object context may not have had a unique security origin...

7.2CVSS7.2AI score0.00399EPSS
Exploits0References6Affected Software9
CVE
CVE
added 2020/10/27 8:10 p.m.272 views

CVE-2020-3864

CVE-2020-3864 is a logic issue where a DOM object context may not have had a unique security origin. It is fixed in Apple/software updates across multiple platforms: iCloud for Windows 7.17, iTunes for Windows 12.10.4, iCloud for Windows 10.9.2, tvOS 13.3.1, Safari 13.0.5, iOS 13.3.1 and iPadOS 1...

7.8CVSS7.3AI score0.00399EPSS
Exploits0References6Affected Software6
Debian CVE
Debian CVE
added 2020/10/27 8:10 p.m.40 views

CVE-2020-3864

A logic issue was addressed with improved validation. This issue is fixed in iCloud for Windows 7.17, iTunes 12.10.4 for Windows, iCloud for Windows 10.9.2, tvOS 13.3.1, Safari 13.0.5, iOS 13.3.1 and iPadOS 13.3.1. A DOM object context may not have had a unique security origin...

7.8CVSS6.3AI score0.00399EPSS
Exploits0
OSV
OSV
added 2020/04/29 5:53 a.m.10 views

SUSE-SU-2020:1135-1 Security update for webkit2gtk3

This update for webkit2gtk3 to version 2.28.1 fixes the following issues: Security issues fixed: - CVE-2020-10018: Fixed a denial of service because the mdeferredFocusedNodeChange data structure was mishandled bsc1165528. - CVE-2020-11793: Fixed a potential arbitrary code execution caused by a...

9.8CVSS7.9AI score0.09543EPSS
Exploits2References38
Rows per page
Query Builder