CVE-2025-1103

A vulnerability, which was classified as problematic, was found in D-Link DIR-823X 240126/240802. This affects the function setwifiblacklists of the file /goform/setwifiblacklists of the component HTTP POST Request Handler. The manipulation of the argument macList leads to null pointer dereferenc...

CVE-2025-14631 Null Pointer Dereference Vulnerability in Malformed 802.11 Frame of TP-Link Archer BE400

A NULL Pointer Dereference vulnerability in TP-Link Archer BE400 V1802.11 modules allows an adjacent attacker to cause a denial-of-service DoS by triggering a device reboot. This issue affects Archer BE400: xi 1.1.0 Build 20250710 rel.14914...

CVE-2025-14631

The CVE-2025-14631 vulnerability is a NULL pointer dereference in TP-Link Archer BE400 V1 (802.11 modules) that enables an adjacent attacker to cause a denial-of-service by triggering a device reboot. Affected device: Archer BE400 with 1.1.0 build 20250710 rel.14914. Root cause is unspecified in ...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000472)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000472 advisory. An issue was discovered in the Linux kernel before 5.0.14. There is a NULL pointer dereference caused by a malicious USB device in the drivers/usb/misc/yurex.c drive...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000378)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000378 advisory. An issue was discovered in the Linux kernel before 5.0.7. A NULL pointer dereference can occur when megasascreateframepool fails in megasasalloccmds in...

TP-Link Archer BE400 安全漏洞

TP-Link Archer BE400 is a wireless router from China P&L TP-Link. A security vulnerability exists in TP-Link Archer BE400 V1 version 1.1.0 Build 20250710 rel.14914, which originates from a null pointer dereference, and could lead to a denial of service by a neighboring attacker who triggers a...

PT-2026-2077

Name of the Vulnerable Software and Affected Versions iccDEV versions prior to 2.3.1.2 Description iccDEV is a set of libraries and tools for interacting with International Color Consortium ICC color management profiles. Versions prior to 2.3.1.2 contain a NULL pointer dereference issue that...

PT-2026-1551

Name of the Vulnerable Software and Affected Versions TP-Link Archer BE400 version 1.1.0 Build 20250710 rel.14914 Description A flaw exists in the 802.11 modules of the TP-Link Archer BE400 that can lead to a denial-of-service DoS condition. An attacker in close proximity can trigger a device...

PT-2026-2063

Name of the Vulnerable Software and Affected Versions iccDEV versions prior to 2.3.1.2 Description iccDEV is a set of libraries and tools used for interacting with, manipulating, and applying ICC color management profiles. Versions prior to 2.3.1.2 are susceptible to a NULL pointer dereference...

PT-2026-2062

Name of the Vulnerable Software and Affected Versions iccDEV versions prior to 2.3.1.2 Description iccDEV is a set of libraries and tools used for interacting with, manipulating, and applying ICC color management profiles. A NULL pointer dereference issue exists in the signature parser in version...

PT-2026-2068

Name of the Vulnerable Software and Affected Versions iccDEV versions prior to 2.3.1.2 Description iccDEV is a set of libraries and tools used for interacting with, manipulating, and applying ICC color management profiles. A NULL pointer dereference issue exists in the XML tag parser in versions...

PT-2026-2065

Name of the Vulnerable Software and Affected Versions iccDEV versions prior to 2.3.1.2 Description iccDEV is a set of libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Versions prior to 2.3.1.2 are susceptible to a NULL pointer dereference issue...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000474)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000474 advisory. An issue was discovered in the Linux kernel before 5.1.8. There is a NULL pointer dereference caused by a malicious USB device in the drivers/media/usb/siano/smsusb....

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000282)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000282 advisory. drivers/scsi/qla2xxx/qlaos.c in the Linux kernel 5.2.14 does not check the allocworkqueue return value, leading to a NULL pointer dereference. Tenable has extracted...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000271)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000271 advisory. drivers/net/wireless/ath/ath10k/usb.c in the Linux kernel through 5.2.8 has a NULL pointer dereference via an incomplete address in an endpoint descriptor. Tenable h...

RockyLinux 8 : mingw packages (RLSA-2021:1968)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2021:1968 advisory. sqlite: Division by zero in whereLoopAddBtreeIndex in sqlite3.c CVE-2019-16168 sqlite: Integer overflow in sqlite3strvappendf function in printf.c...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000257)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000257 advisory. In the Linux kernel before 5.0.6, there is a NULL pointer dereference in dropsysctltable in fs/proc/procsysctl.c, related to putlinks, aka CID-23da9588037e. Tenable...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000268)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000268 advisory. drivers/net/fjes/fjesmain.c in the Linux kernel 5.2.14 does not check the allocworkqueue return value, leading to a NULL pointer dereference. Tenable has extracted t...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000327)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000327 advisory. An issue was discovered in drmloadedidfirmware in drivers/gpu/drm/drmedidload.c in the Linux kernel through 5.1.5. There is an unchecked kstrdup of fwstr, which migh...

Unity Linux 20.1070e Security Update: kernel (UTSA-2026-000401)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-000401 advisory. An issue was discovered in the stv06xx subsystem in the Linux kernel before 5.6.1. drivers/media/usb/gspca/stv06xx/stv06xx.c and...