CVE-2022-50278 PNP: fix name memory leak in pnp_alloc_dev()

In the Linux kernel, the following vulnerability has been resolved: PNP: fix name memory leak in pnpallocdev After commit 1fa5ae857bb1 "driver core: get rid of struct device's busid string array", the name of device is allocated dynamically, move devsetname after pnpaddid to avoid memory leak...

CVE-2022-50278

CVE-2022-50278 : In the Linux kernel, a memory leak was introduced in the PNP path by deferring the dynamic allocation of the device name until after pnp_add_id() (the fix was to move dev_set_name() after pnp_add_id()) following commit 1fa5ae857bb1. The vulnerability affects the PNP device naming...

PT-2025-37580

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A memory leak was identified in the pnp alloc dev function within the Linux kernel's PNP Plug and Play subsystem. The issue stemmed from dynamically allocated device names not being...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from device name memory allocation not being handled correctly in the pnpallocdev function, which could lead to a...

SUSE CVE-2025-39791

In the Linux kernel, the following vulnerability has been resolved: dm: dm-crypt: Do not partially accept write BIOs with zoned targets Read and write operations issued to a dm-crypt target may be split according to the dm-crypt internal limits defined by the maxreadsize and maxwritesize module...

CVE-2025-9855 Enhanced BibliPlug <= 1.3.8 - Authenticated (Contirbutor+) Stored Cross-Site Scripting

The Enhanced BibliPlug plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'bibliplugauthors' shortcode in all versions up to, and including, 1.3.8 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for...

Linux Distros Unpatched Vulnerability : CVE-2015-5828

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The API in the WebKit Plug-ins component in Apple Safari before 9 does not provide notification of an HTTP Redirection aka 3xx status code to a plugin, which...

Linux Distros Unpatched Vulnerability : CVE-2011-3888

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Use-after-free vulnerability in Google Chrome before 15.0.874.102 allows user-assisted remote attackers to cause a denial of service or possibly have unspecifie...

FreePBX api 信任管理问题漏洞

FreePBX api is an open source plug-in for FreePBX. A trust management issue vulnerability exists in FreePBX api versions prior to 15.0.13, 16.0.2 through 16.0.14, and 17.0.1 through 17.0.2, which stems from the use of the same OAuth private key on multiple systems, which could lead to bypassing...

PCI: pnv_php: Fix surprise plug detection and recovery

...

Linux Distros Unpatched Vulnerability : CVE-2025-38623

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - PCI: pnvphp: Fix surprise plug detection and recovery The existing PowerNV hotplug code did not handle surprise plug events correctly, leading to a complete...

Linux Distros Unpatched Vulnerability : CVE-2016-6299

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The scm plug-in in mock might allow attackers to bypass the intended chroot protection mechanism and gain root privileges via a crafted spec file. CVE-2016-6299...

CVE-2025-44178

DASAN GPON ONU H660WM H660WMR210825 is susceptible to improper access control under its default settings. Attackers can exploit this vulnerability to gain unauthorized access to sensitive information and modify its configuration via the UPnP protocol WAN sides without any authentication...

Linux Distros Unpatched Vulnerability : CVE-2022-1726

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Bootstrap Tables XSS vulnerability with Table Export plug-in when exportOptions: htmlContent is true in GitHub repository wenzhixin/bootstrap-table prior to...

PT-2025-35060

Name of the Vulnerable Software and Affected Versions: WP Easy Contact versions through 4.0.1 Description: Deserialization of untrusted data in WP Easy Contact allows for object injection. Recommendations: At the moment, there is no information about a newer version that contains a fix for this...

CVE-2025-8627 Unauthenticated Protocol Commands on TP-Link KP303

The TP-Link KP303 Smartplug can be issued unauthenticated protocol commands that may cause unintended power-off condition and potential information leak. This issue affects TP-Link KP303 US Smartplug: before 1.1.0...

CVE-2025-44178

CVE-2025-44178 affects DASAN GPON ONU H660WM/H660WMR210825. The issue is described as improper access control under default settings, allowing unauthorized access to sensitive information and configuration changes via UPnP on the WAN side without authentication. Concrete details across connected ...

CVE-2025-44178

DASAN GPON ONU H660WM H660WMR210825 is susceptible to improper access control under its default settings. Attackers can exploit this vulnerability to gain unauthorized access to sensitive information and modify its configuration via the UPnP protocol WAN sides without any authentication...

CVE-2025-44178

DASAN GPON ONU H660WM H660WMR210825 is susceptible to improper access control under its default settings. Attackers can exploit this vulnerability to gain unauthorized access to sensitive information and modify its configuration via the UPnP protocol WAN sides without any authentication...

PT-2025-34659 · Dasan · Dasan Gpon Onu H660Wm +1

Name of the Vulnerable Software and Affected Versions: DASAN GPON ONU H660WM H660WMR210825 affected versions not specified Description: DASAN GPON ONU H660WM H660WMR210825 is susceptible to improper access control under its default settings. Attackers can exploit this vulnerability to gain...