Lucene search
+L

157 matches found

OSV
OSV
added 2026/07/02 7:43 p.m.10 views

GHSA-GF9R-M956-97QX zebrad has consensus divergence via P2SH sigop undercount in pure-Rust disabled-opcode parser

Am I affected You are affected if: 1. You run any version of zebrad up to and including v4.4.1. 2. Your node validates blocks on mainnet, testnet, or any network where both Zebra and zcashd nodes participate. All default configurations are affected. No feature flags, non-default settings, or...

9.3CVSS6AI score
Exploits0References5
OSV
OSV
added 2026/06/24 8:16 a.m.5 views

UBUNTU-CVE-2026-52939

In the Linux kernel, the following vulnerability has been resolved: net/rds: fix NULL deref in rdsibsendcqehandler on masked atomic completion rdsibxmitatomic always programs a masked atomic opcode IBWRMASKEDATOMICCMPANDSWP or IBWRMASKEDATOMICFETCHANDADD for every RDS atomic cmsg. But the...

5.5CVSS5.7AI score0.00114EPSS
Exploits0References11
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.12 views

PT-2026-51732

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A NULL pointer dereference occurs in the rds ib send cqe handler function when handling masked atomic completions. The rds ib xmit atomic function programs a masked atomic opcode either ...

5.5CVSS6AI score0.00114EPSS
Exploits0References25
OSV
OSV
added 2026/06/17 6:35 p.m.6 views

GHSA-5RPH-Q42J-36J9 Duplicate Advisory: Picklescan has pickle parsing logic flaw that leads to malicious pickle file bypass

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-9gvj-pp9x-gcfr. This link is maintained to preserve external references. Original Description picklescan before 0.0.27 contains a parsing logic error in the listglobals function when handling STACKGLOBAL opcodes...

9.8CVSS5.2AI score0.00475EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/06/05 7:19 p.m.9 views

CVE-2026-49190

The system fails to evaluate instructional permissions over multiple internal operation codes opcodes, permitting unauthorized application installations or command executions...

9.4CVSS5.5AI score0.00426EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/04 5:28 a.m.9 views

CVE-2026-49190 Missing Per-Instruction Authorization Checks

The system fails to evaluate instructional permissions over multiple internal operation codes opcodes, permitting unauthorized application installations or command executions...

9.4CVSS5.8AI score0.00426EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/04 5:28 a.m.45 views

CVE-2026-49190 Missing Per-Instruction Authorization Checks

The system fails to evaluate instructional permissions over multiple internal operation codes opcodes, permitting unauthorized application installations or command executions...

9.4CVSS0.00426EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/04 5:28 a.m.11 views

EUVD-2026-34209

The system fails to evaluate instructional permissions over multiple internal operation codes opcodes, permitting unauthorized application installations or command executions...

9.4CVSS5.8AI score0.00426EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/06/04 5:28 a.m.7 views

CVE-2026-49190

The system fails to evaluate instructional permissions over multiple internal operation codes opcodes, permitting unauthorized application installations or command executions...

9.4CVSS5.8AI score0.00426EPSS
Exploits0References2
CVE
CVE
added 2026/06/04 5:28 a.m.35 views

CVE-2026-49190

Technical details (affected products, vulnerable component, root cause, exploit information) are not provided in the initial document or connected sources. Monitor for updates from official advisories.

9.4CVSS5.8AI score0.00426EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2026/06/04 12:0 a.m.21 views

PT-2026-46148

The system fails to evaluate instructional permissions over multiple internal operation codes opcodes, permitting unauthorized application installations or command executions...

9.4CVSS5.8AI score0.00426EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2026/05/29 8:6 a.m.9 views

RDMA/rxe: Reject unknown opcodes before ICRC processing

...

7.5CVSS5.4AI score0.00574EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/05/28 7:44 p.m.12 views

CVE-2026-46133

A flaw was found in the Linux kernel's Soft RoCE RDMA/rxe driver. An unauthenticated remote attacker can send a specially crafted UDP packet with an unknown opcode to trigger an out-of-bounds read. This vulnerability can lead to a kernel panic, effectively causing a Denial of Service DoS on the...

7.5CVSS5.8AI score0.00574EPSS
Exploits0References4
OSV
OSV
added 2026/05/28 9:35 a.m.2 views

CVE-2026-46133 RDMA/rxe: Reject unknown opcodes before ICRC processing

In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Reject unknown opcodes before ICRC processing Even after applying commit 7244491dab34 "RDMA/rxe: Validate pad and ICRC before payloadsize in rxercv", a single unauthenticated UDP packet can still trigger panic. That pat...

7.5CVSS5.8AI score0.00574EPSS
Exploits0References11
Debian CVE
Debian CVE
added 2026/05/28 9:35 a.m.11 views

CVE-2026-46133

In the Linux kernel, the following vulnerability has been resolved: RDMA/rxe: Reject unknown opcodes before ICRC processing Even after applying commit 7244491dab34 "RDMA/rxe: Validate pad and ICRC before payloadsize in rxercv", a single unauthenticated UDP packet can still trigger panic. That pat...

7.5CVSS5.7AI score0.00574EPSS
Exploits0
CVE
CVE
added 2026/05/28 9:35 a.m.35 views

CVE-2026-46133

The CVE-2026-46133 issue affects Linux kernel’s Soft RoCE (RDMA/rxe) where an unauthenticated UDP packet with an unknown opcode could trigger an out-of-bounds read during ICRC/CRC processing due to missing validation of opcodes before length arithmetic. The advisory describes that entries in the ...

7.5CVSS5.7AI score0.00574EPSS
Exploits0References8Affected Software1
CNNVD
CNNVD
added 2026/05/28 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from insufficient ICRC checks when processing unknown opcodes in RDMA rxe, potentially leading to out-of-bou...

7.5CVSS5.8AI score0.00574EPSS
Exploits0References5
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerability in binutils

GNU Binutils prior to version 2.34 has a vulnerability related to uninitialized heaps in the function tic4xprintcond file opcodes/tic4x-dis.c. This vulnerability could allow attackers to cause an information leak...

7.5CVSS5.4AI score0.00659EPSS
Exploits1References2
RedHat Linux
RedHat Linux
added 2026/02/02 3:41 p.m.3 views

kernel: Linux kernel: Information disclosure and denial of service in Bluetooth HCI event handling

A flaw was found in the Linux kernel's Bluetooth component. A local attacker with low privileges could exploit a vulnerability in the Host Controller Interface HCI event processing. This issue arises from improper handling of command complete events with unknown opcodes, which can lead to the...

5.8AI score0.00162EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/02/02 10:10 a.m.4 views

kernel: Linux kernel: Information disclosure and denial of service in Bluetooth HCI event handling

A flaw was found in the Linux kernel's Bluetooth component. A local attacker with low privileges could exploit a vulnerability in the Host Controller Interface HCI event processing. This issue arises from improper handling of command complete events with unknown opcodes, which can lead to the...

5.8AI score0.00162EPSS
Exploits0References5
Rows per page
Query Builder