Lucene search
+L

6 matches found

osv
osv
added 2026/05/27 12:18 p.m.3 views

CVE-2026-45950 crypto: starfive - Fix memory leak in starfive_aes_aead_do_one_req()

In the Linux kernel, the following vulnerability has been resolved: crypto: starfive - Fix memory leak in starfiveaesaeaddoonereq The starfiveaesaeaddoonereq function allocates rctx-adata with kzalloc but fails to free it if sgcopytobuffer or starfiveaeshwinit fails, which lead to memory leaks...

5.5CVSS6AI score0.00122EPSS
Exploits0References7
osv
osv
added 2026/05/21 8:22 p.m.2 views

CVE-2026-8426 Concrete CMS 9.5.0 and below is vulnerable to CSRF on prepare_remote_upgrade() leading to one-request RCE via package overwrite

Concrete CMS 9.5.0 and below does not validate a CSRF token before processing requests to /dashboard/extend/update/prepareremoteupgrade/. An attacker who controls the remote package returned for a known marketplace item ID can overwrite the package PHP on disk and force its upgrade method to...

7.5CVSS6.6AI score0.00171EPSS
Exploits0References4
euvd
euvd
added 2026/03/03 10:55 p.m.6 views

EUVD-2026-9345

Qwik is a performance focused javascript framework. qwik =1.19.0 is vulnerable to RCE due to an unsafe deserialization vulnerability in the server$ RPC mechanism that allows any unauthenticated user to execute arbitrary code on the server with a single HTTP request. Affects any deployment where...

9.2CVSS6.4AI score0.04632EPSS
Exploits0References1
astralinux
astralinux
added 2025/11/01 10:54 a.m.7 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: s390/ism: The concurrency management in ismcmd has been fixed. The s390x ISM device datasheet clearly states that only one request-response sequence is allowed per ISM function at any given time. Unfortunately, as of today, the...

4.7CVSS5.7AI score0.00102EPSS
Exploits0References3
attackerkb
attackerkb
added 2025/09/05 5:27 p.m.5 views

CVE-2025-39726

In the Linux kernel, the following vulnerability has been resolved: s390/ism: fix concurrency management in ismcmd The s390x ISM device data sheet clearly states that only one request-response sequence is allowable per ISM function at any point in time. Unfortunately as of today the s390/ism driv...

4.7CVSS5.9AI score0.00102EPSS
Exploits0References5Affected Software1
osv
osv
added 2025/09/05 5:27 p.m.7 views

CVE-2025-39726 s390/ism: fix concurrency management in ism_cmd()

In the Linux kernel, the following vulnerability has been resolved: s390/ism: fix concurrency management in ismcmd The s390x ISM device data sheet clearly states that only one request-response sequence is allowable per ISM function at any point in time. Unfortunately as of today the s390/ism driv...

4.7CVSS6.6AI score0.00102EPSS
Exploits0References7
Rows per page
Query Builder