PT-2025-51593

Name of the Vulnerable Software and Affected Versions Linux kernel versions 6.17.0+ Description The Linux kernel contains a flaw within the drm/amd/display subsystem, specifically in the odm combine segments show function. When a display connector is connected but inactive, the pipe ctx-stream...

PT-2025-42099

Name of the Vulnerable Software and Affected Versions Windows Kernel affected versions not specified Description An issue exists in the Windows Kernel where an untrusted pointer dereference can occur. This allows an authorized attacker to elevate privileges locally. Recommendations At the moment,...

Microsoft Windows Untrusted Pointer Dereference Vulnerability

Microsoft Windows Agere Modem Driver contains an untrusted pointer dereference vulnerability that allows for privilege escalation. An attacker who successfully exploited this vulnerability could gain administrator privileges...

AlmaLinux 8 : gnutls (ALSA-2025:17415)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:17415 advisory. gnutls: Vulnerability in GnuTLS certtool template parsing CVE-2025-32990 gnutls: Vulnerability in GnuTLS otherName SAN export CVE-2025-32988 gnutls: NULL...

Adobe Animate 23.x < 23.0.15 / 24.x < 24.0.12 Multiple Vulnerabilities (APSB25-97)

The version of Adobe Animate installed on the remote macOS or Mac OS X host is prior to 23.0.15 or 24.0.12. It is, therefore, affected by multiple vulnerabilities as referenced in the apsb25-97 advisory. - Heap-based Buffer Overflow CWE-122 potentially leading to Arbitrary code execution...

PT-2025-41966

An Unchecked Return Value vulnerability CWE-252 in Fortinet FortiOS version 7.6.0 through 7.6.3 and before 7.4.8 API allows an authenticated user to cause a Null Pointer Dereference, crashing the http daemon via a specialy crafted request...

GHSA-4P3P-CR38-V5XP Omni is Vulnerable to DoS via Empty Create/Update Resource Requests

Summary A nil pointer dereference vulnerability in the Omni Resource Service allows unauthenticated users to cause a server panic and denial of service by sending empty create/update resource requests through the API endpoints. Details The vulnerability exists in the isSensitiveSpec function whic...

Omni is Vulnerable to DoS via Empty Create/Update Resource Requests

Summary A nil pointer dereference vulnerability in the Omni Resource Service allows unauthenticated users to cause a server panic and denial of service by sending empty create/update resource requests through the API endpoints. Details The vulnerability exists in the isSensitiveSpec function whic...

CVE-2025-9337

A null pointer dereference has been identified in the AsIO3.sys driver. The vulnerability can be triggered by a specially crafted input, which may lead to a system crash BSOD. Refer to the 'Security Update for Armoury Crate App' section on the ASUS Security Advisory for more information...

CVE-2025-9337

The vulnerability is a null pointer dereference in the AsIO3.sys driver used by ASUS Armoury Crate. Affected component: AsIO3.sys; root cause: null pointer dereference triggered by specially crafted input. Consequence: system crash (BSOD). References to ASUS advisory indicate impact tied to Armou...

CVE-2025-9337

A null pointer dereference has been identified in the AsIO3.sys driver. The vulnerability can be triggered by a specially crafted input, which may lead to a system crash BSOD. Refer to the 'Security Update for Armoury Crate App' section on the ASUS Security Advisory for more information...

CVE-2025-9337

A null pointer dereference has been identified in the AsIO3.sys driver. The vulnerability can be triggered by a specially crafted input, which may lead to a system crash BSOD. Refer to the 'Security Update for Armoury Crate App' section on the ASUS Security Advisory for more information...

Linux Distros Unpatched Vulnerability : CVE-2022-50530

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: blk-mq: fix null pointer dereference in blkmqclearrqmapping Our syzkaller report a null...

Omni 安全漏洞

omni is a Kubernetes deployment tool open-sourced by Sidero Labs, Inc. A security vulnerability exists in Omni versions prior to 1.1.5 and prior to 1.0.2, which stems from the isSensitiveSpec function not checking if the metadata field of resource is null, which could lead to null pointer...

Linux Distros Unpatched Vulnerability : CVE-2023-53678

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: drm/i915: Fix system suspend without fbdev being initialized If fbdev is not initialized for...

PT-2025-41805

Name of the Vulnerable Software and Affected Versions Omni versions prior to 1.1.5 Omni version 1.0.2 Description Omni manages Kubernetes on bare metal, virtual machines, or in a cloud. A nil pointer dereference in the Omni Resource Service allows unauthenticated users to cause a server panic and...

Linux Distros Unpatched Vulnerability : CVE-2023-53657

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ice: Don't tx before switchdev is fully configured There is possibility that iceeswitchportstartxmit might be called while some resources are still not allocate...

Linux Distros Unpatched Vulnerability : CVE-2023-53627

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - scsi: hisisas: Grab sasdev lock when traversing the members of sasdev.list When freeing slots in function slotcompletev3hw, it is possible that sasdev.list is...

Huawei EulerOS: Security Advisory for nasm (EulerOS-SA-2025-2237)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for nasm (EulerOS-SA-2025-2205)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...