Qnap QTS and QuTS hero NULL Pointer Dereference (CVE-2025-48727)

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003882)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003882 advisory. An issue was discovered in the Linux kernel through 5.2.9. There is a NULL pointer dereference caused by a malicious USB device in the flexcopusbprobe function in th...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003736)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003736 advisory. An issue was discovered in the Linux kernel before 5.1.8. There is a NULL pointer dereference caused by a malicious USB device in the drivers/media/usb/siano/smsusb....

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001358)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001358 advisory. An issue was discovered in the Linux kernel through 4.17.10. There is an invalid pointer dereference in btrfsrootnode when mounting a crafted btrfs image, because of...

MiracleLinux 4 : httpd24-httpd-2.4.25-9.AXS4.1 (AXSA:2017-2175:02)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2017-2175:02 advisory. It was discovered that the httpd's modauthdigest module did not properly initialize memory before using it when processing certain headers related t...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003602)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003602 advisory. An issue was discovered in the Linux kernel before 5.0.7. A NULL pointer dereference can occur when megasascreateframepool fails in megasasalloccmds in...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-003891)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003891 advisory. An issue was discovered in the Linux kernel before 5.0.14. There is a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/yurex.c drive...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001569)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001569 advisory. A flaw null pointer dereference in the Linux kernel UDF file system functionality was found in the way user triggers udffilewriteiter function for the malicious UDF...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003721)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003721 advisory. An issue was discovered in the Linux kernel before 5.0.14. There is a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/yurex.c drive...

Qnap QTS and QuTS hero NULL Pointer Dereference (CVE-2025-52432)

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the...

MiracleLinux 7 : krb5-1.13.2-12.el7 (AXSA:2016-190:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2016-190:01 advisory. Kerberos V5 is a trusted-third-party network authentication system, which can improve your network's security by eliminating the insecure practice of...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003719)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003719 advisory. An issue was discovered in the Linux kernel before 5.1.17. There is a NULL pointer dereference caused by a malicious USB device in the sound/usb/line6/pcm.c driver...

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2026-003633)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-003633 advisory. An issue was discovered in dlparparseccproperty in arch/powerpc/platforms/pseries/dlpar.c in the Linux kernel through 5.1.6. There is an unchecked kstrdup of...

Qnap QTS and QuTS hero NULL Pointer Dereference (CVE-2025-52424)

A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to launch a denial-of-service DoS attack. We have already fixed the vulnerability in the...

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-004226)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004226 advisory. A vulnerability was found in Linux Kernel where in the spkttyioreceivebuf2 function, it would dereference spkttyiosynth without checking whether it is NULL or not, a...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-001352)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001352 advisory. An issue was discovered in the Linux kernel through 4.17.10. There is an invalid pointer dereference in ioctlmappage when mounting and operating a crafted btrfs imag...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-001043)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-001043 advisory. The rdsibladdrcheck function in net/rds/ib.c in the Linux kernel before 3.12.8 allows local users to cause a denial of service NULL pointer dereference and system...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000724)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000724 advisory. The sctpassocupdate function in net/sctp/associola.c in the Linux kernel through 3.15.8, when SCTP authentication is enabled, allows remote attackers to cause a deni...

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-000723)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000723 advisory. The onlinepages function in mm/memoryhotplug.c in the Linux kernel before 3.6 allows local users to cause a denial of service NULL pointer dereference and system cra...

MiracleLinux 4 : httpd24-1.1-19.AXS4, httpd24-httpd-2.4.25-9.AXS4.1, httpd24-nghttp2-1.7.1-8.AXS4 (AXSA:2019-4423:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2019-4423:01 advisory. httpd: modsessioncookie does not respect expiry time CVE-2018-17199 httpd: modauthdigest: access control bypass due to race condition CVE-2019-0217...