Lucene search
K

572 matches found

OSV
OSV
added 2025/10/01 12:15 p.m.9 views

AZL-75107 CVE-2023-53509 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: qed: allow sleep in qedmcptracedump By default, qedmcpcmdandunion delays 10us at a time in a loop that can run 500K times, so calls to qedmcpnvmrdcmd may block the current thread for over 5s. We observed thread scheduling delays...

5.5CVSS5.7AI score0.00145EPSS
Exploits0References1
OSV
OSV
added 2025/09/29 5:41 p.m.6 views

CLSA-2025-1759167661 git: Fix of CVE-2025-46835

CVE-2025-46835: prevent malicious creating and overwriting of user's files...

8.5CVSS7.3AI score0.00296EPSS
Exploits0References1
CVE
CVE
added 2025/09/18 4:4 p.m.29 views

CVE-2023-53431

The CVE-2023-53431 entry concerns Linux kernel SCSI SES: the fix ensures graceful handling when an enclosure has a primary component but no secondary components. Previously, devices with one primary enclosure and zero secondary enclosures could cause ses_intf_add() to bail, potentially triggering...

5.5CVSS5.8AI score0.00137EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2025/09/18 2:15 p.m.8 views

UBUNTU-CVE-2023-53397

In the Linux kernel, the following vulnerability has been resolved: modpost: fix off by one in isexecutablesection The comparison should be = to prevent an out of bounds array access...

5.5CVSS5.8AI score0.00136EPSS
Exploits0References11
OSV
OSV
added 2025/09/12 3:59 p.m.3 views

CVE-2025-39795 block: avoid possible overflow for chunk_sectors check in blk_stack_limits()

In the Linux kernel, the following vulnerability has been resolved: block: avoid possible overflow for chunksectors check in blkstacklimits In blkstacklimits, we check that the t-chunksectors value is a multiple of the t-physicalblocksize value. However, by finding the chunksectors value in bytes...

5.5CVSS6.3AI score0.00149EPSS
Exploits0References15
OSV
OSV
added 2025/09/11 5:15 p.m.7 views

UBUNTU-CVE-2025-39763

In the Linux kernel, the following vulnerability has been resolved: ACPI: APEI: send SIGBUS to current task if synchronous memory error not recovered If a synchronous error is detected as a result of user-space process triggering a 2-bit uncorrected error, the CPU will take a synchronous error...

5.5CVSS5.9AI score0.00147EPSS
Exploits0References24
Microsoft CVE
Microsoft CVE
added 2025/09/04 8:7 a.m.5 views

kasan: remove kasan_find_vm_area() to prevent possible deadlock

...

5.5CVSS7AI score0.00137EPSS
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/04 3:38 a.m.4 views

vmci: Prevent the dispatching of uninitialized payloads

...

6.9AI score
Exploits0
Microsoft CVE
Microsoft CVE
added 2025/09/04 2:15 a.m.3 views

dlm: prevent NPD when writing a positive value to event_done

...

5.5CVSS6.8AI score0.00166EPSS
Exploits0
SUSE Linux
SUSE Linux
added 2025/09/03 10:48 a.m.4 views

Security update for munge

This update for munge fixes the following issues: Make logrotate work on log as user munge to prevent local privilege escalation bsc1246088. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you ca...

7AI score
Exploits0References2
CVE
CVE
added 2025/08/20 8:3 a.m.13 views

CVE-2025-53561

CVE-2025-53561: Path traversal vulnerability in WordPress plugin Prevent files / folders access (

6.5CVSS5.9AI score0.00396EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/08/20 8:3 a.m.2 views

CVE-2025-53561 WordPress Prevent files / folders access Plugin <= 2.6.0 - Path Traversal Vulnerability

Path Traversal: '.../...//' vulnerability in miniOrange Prevent files / folders access prevent-file-access allows Path Traversal.This issue affects Prevent files / folders access: from n/a through = 2.6.0...

6.5CVSS4.5AI score0.00396EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/08/20 12:0 a.m.6 views

WordPress plugin Prevent files / folders access security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in the...

6.5CVSS5.8AI score0.00396EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2025/08/07 7:0 a.m.11 views

bcache: fix NULL pointer in cache_set_flush()

...

5.5CVSS6.8AI score0.00147EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2025/08/04 3:19 p.m.2 views

kernel: nvme-tcp: sanitize request list handling

In the Linux kernel, the following vulnerability has been resolved: nvme-tcp: sanitize request list handling Validate the request in nvmetcphandler2t to ensure it's not part of any list, otherwise a malicious R2T PDU might inject a loop in request list processing...

5.5CVSS6.8AI score0.00136EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2025/07/29 11:23 p.m.3 views

SUSE CVE-2025-38436

In the Linux kernel, the following vulnerability has been resolved: drm/scheduler: signal scheduled fence when kill job When an entity from application B is killed, drmschedentitykill removes all jobs belonging to that entity through drmschedentitykilljobswork. If application A's job depends on a...

4.7CVSS6.7AI score0.00126EPSS
Exploits0References23
Trend Micro Simply Security
Trend Micro Simply Security
added 2025/07/28 12:0 a.m.4 views

Unlocking the Power of Amazon Security Lake for Proactive Security

Security is a central challenge in modern application development and maintenance, requiring not just traditional practices but also a deep understanding of application architecture and data flow. While organizations now have access to rich data like logs and telemetry, the real challenge lies in...

7AI score
Exploits0
NVD
NVD
added 2025/07/04 2:15 p.m.4 views

CVE-2025-38230

In the Linux kernel, the following vulnerability has been resolved: jfs: validate AG parameters in dbMount to prevent crashes Validate dbagheight, dbagwidth, and dbagstart in dbMount to catch corrupted metadata early and avoid undefined behavior in dbAllocAG. Limits are derived from L2LPERCTL,...

7.8CVSS0.00157EPSS
Exploits0References10
Debian CVE
Debian CVE
added 2025/07/04 1:37 p.m.4 views

CVE-2025-38230

In the Linux kernel, the following vulnerability has been resolved: jfs: validate AG parameters in dbMount to prevent crashes Validate dbagheight, dbagwidth, and dbagstart in dbMount to catch corrupted metadata early and avoid undefined behavior in dbAllocAG. Limits are derived from L2LPERCTL,...

7.8CVSS6.2AI score0.00157EPSS
Exploits0
OSV
OSV
added 2025/06/27 5:15 p.m.6 views

CVE-2025-46708

Software installed and running inside a Guest VM may conduct improper GPU system calls to prevent other Guests from running work on the GPU...

4.3CVSS5.8AI score0.00165EPSS
Exploits0References1
Rows per page
Query Builder