Lucene search
K

1021 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/27 12:0 a.m.6 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005169)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005169 advisory. In the Linux kernel, the following vulnerability has been resolved: filemap: Fix bounds checking in filemapread If the caller supplies an iocb-kipos value that is...

5.5CVSS6.7AI score0.00246EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/01/22 11:14 p.m.4 views

CVE-2025-9290

An authentication weakness was identified in Omada Controllers, Gateways and Access Points, controller-device adoption due to improper handling of random values. Exploitation requires advanced network positioning and allows an attacker to intercept adoption traffic and forge valid authentication...

6CVSS5.4AI score0.00201EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/15 12:0 a.m.3 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2026-002996)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-002996 advisory. The Linux Kernel running on AMD64 systems will sometimes map the contents of PIE executable, the heap or ld.so to where the stack is mapped allowing attackers to mor...

7.8CVSS7.7AI score0.01828EPSS
Exploits5References20
Tenable Nessus
Tenable Nessus
added 2026/01/14 12:0 a.m.5 views

MiracleLinux 3 : vixie-cron-4.1-81.AXS3 (AXSA:2012-254:01)

The remote MiracleLinux 3 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2012-254:01 advisory. The vixie-cron package contains the Vixie version of cron. Cron is a standard UNIX daemon that runs specified programs at scheduled times. Vixie cron adds...

3.3CVSS5.8AI score0.00346EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/09 11:21 a.m.8 views

CVE-2021-22745

Improper Check for Unusual or Exceptional Conditions vulnerability exists in Triconex Model 3009 MP installed on Tricon V11.3.x systems that could cause module reset when TCM receives malformed TriStation packets while the write-protect keyswitch is in the program position. This CVE ID is unique...

3.9CVSS6.4AI score0.00246EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:52 a.m.13 views

CVE-2022-42818

This issue was addressed with improved data protection. This issue is fixed in macOS Ventura 13. A user in a privileged network position may be able to track user activity...

5.9CVSS5.7AI score0.00688EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 10:15 a.m.5 views

CVE-2019-2254

Position determination accuracy may be degraded due to wrongly decoded information in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in MDM9150, MDM9206, MDM9607, MDM9615,...

9.8CVSS7AI score0.00733EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/09 9:19 a.m.26 views

CVE-2025-13895 Top Position Google Finance <= 0.1.0 - Reflected Cross-Site Scripting

The Top Position Google Finance plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the $SERVER'PHPSELF' variable in all versions up to, and including, 0.1.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to...

6.1CVSS0.00208EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/01/09 12:0 a.m.6 views

PT-2026-1722

Name of the Vulnerable Software and Affected Versions Top Position Google Finance versions up to and including 0.1.0 Description The Top Position Google Finance plugin for WordPress is susceptible to Reflected Cross-Site Scripting due to inadequate input sanitization and output escaping. This...

6.1CVSS5.8AI score0.00208EPSS
Exploits0References7
Malwarebytes
Malwarebytes
added 2026/01/08 1:35 p.m.16 views

Lego’s Smart Bricks explained: what they do, and what they don’t

Lego just made what it claims is its most important product release since it introduced minifigures in 1978. No, it's not yet another brand franchise. It's a computer in a brick. Called the Smart Brick , it's part of a broader system called Smart Play that Lego hopes will revolutionize your child...

6.7AI score
Exploits0
SUSE CVE
SUSE CVE
added 2025/12/31 12:26 a.m.3 views

SUSE CVE-2023-54285

In the Linux kernel, the following vulnerability has been resolved: iomap: Fix possible overflow condition in iomapwritedelallocscan folionextindex returns an unsigned long value which left shifted by PAGESHIFT could possibly cause an overflow on 32-bit system. Instead use folioposfolio +...

6.6CVSS6.8AI score0.00161EPSS
Exploits0References17
EUVD
EUVD
added 2025/12/30 3:30 p.m.4 views

EUVD-2023-60519

In the Linux kernel, the following vulnerability has been resolved: iomap: Fix possible overflow condition in iomapwritedelallocscan folionextindex returns an unsigned long value which left shifted by PAGESHIFT could possibly cause an overflow on 32-bit system. Instead use folioposfolio +...

6.2AI score0.00161EPSS
Exploits0References3
OSV
OSV
added 2025/12/30 1:16 p.m.3 views

UBUNTU-CVE-2023-54285

In the Linux kernel, the following vulnerability has been resolved: iomap: Fix possible overflow condition in iomapwritedelallocscan folionextindex returns an unsigned long value which left shifted by PAGESHIFT could possibly cause an overflow on 32-bit system. Instead use folioposfolio +...

7.8CVSS5.8AI score0.00161EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/12/30 1:16 p.m.5 views

CVE-2023-54285

In the Linux kernel, the following vulnerability has been resolved: iomap: Fix possible overflow condition in iomapwritedelallocscan folionextindex returns an unsigned long value which left shifted by PAGESHIFT could possibly cause an overflow on 32-bit system. Instead use folioposfolio +...

7.8CVSS6.7AI score0.00161EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/12/30 12:23 p.m.22 views

CVE-2023-54285 iomap: Fix possible overflow condition in iomap_write_delalloc_scan

In the Linux kernel, the following vulnerability has been resolved: iomap: Fix possible overflow condition in iomapwritedelallocscan folionextindex returns an unsigned long value which left shifted by PAGESHIFT could possibly cause an overflow on 32-bit system. Instead use folioposfolio +...

0.00161EPSS
Exploits0References3
CVE
CVE
added 2025/12/30 12:23 p.m.20 views

CVE-2023-54285

CVE-2023-54285 : In the Linux kernel, a vulnerability in iomap_write_delalloc_scan could overflow when folio_next_index() (unsigned long) is left shifted by PAGE_SHIFT on 32-bit systems. The fix replaces the overflow-prone calculation with folio_pos(folio) + folio_size(folio), ensuring correct ov...

7.8CVSS6.4AI score0.00161EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2025/12/30 12:23 p.m.6 views

CVE-2023-54285

In the Linux kernel, the following vulnerability has been resolved: iomap: Fix possible overflow condition in iomapwritedelallocscan folionextindex returns an unsigned long value which left shifted by PAGESHIFT could possibly cause an overflow on 32-bit system. Instead use folioposfolio +...

5.3AI score0.00161EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2025/12/30 12:23 p.m.4 views

CVE-2023-54285 iomap: Fix possible overflow condition in iomap_write_delalloc_scan

In the Linux kernel, the following vulnerability has been resolved: iomap: Fix possible overflow condition in iomapwritedelallocscan folionextindex returns an unsigned long value which left shifted by PAGESHIFT could possibly cause an overflow on 32-bit system. Instead use folioposfolio +...

7.8CVSS6.7AI score0.00161EPSS
Exploits0References6
EUVD
EUVD
added 2025/12/28 9:30 a.m.6 views

EUVD-2025-205500

A weakness has been identified in JeecgBoot up to 3.9.0. Affected by this vulnerability is the function getPositionUserList of the file /sys/position/getPositionUserList. This manipulation of the argument positionId causes improper authorization. The attack may be initiated remotely. The complexi...

3.1CVSS5.8AI score0.00334EPSS
Exploits1References5
CVE
CVE
added 2025/12/28 7:32 a.m.18 views

CVE-2025-15126

JeecgBoot up to version 3.9.0 is affected by an authorization issue in the getPositionUserList function (/sys/position/getPositionUserList). Manipulating the positionId parameter can lead to improper authorization and information exposure. Attacks may be remotely executable; exploitation is descr...

7.5CVSS4AI score0.00334EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder