CVE-2026-5686

Summary: CVE-2026-5686 affects Tenda CX12L 16.03.53.12. The vulnerability targets the function fromRouteStatic in the file /goform/RouteStatic, where manipulating the argument page causes a stack-based buffer overflow. Exploitation can be performed remotely, and a public exploit has been released...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989837)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989837 advisory. In the Linux kernel, the following vulnerability has been resolved: ubifs: Fix to add refcount once page is set private MM defined the rule 1 very clearly that once...

Unity Linux 20.1070e Security Update: kernel (UTSA-2025-987656)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-987656 advisory. In the Linux kernel, the following vulnerability has been resolved: ubifs: Fix to add refcount once page is set private MM defined the rule 1 very clearly that once...

EUVD-2007-2545

Malware in sbrugna...

SUSE CVE-2023-53584

In the Linux kernel, the following vulnerability has been resolved: ubifs: ubifsreleasepage: Remove ubifsassert0 to valid this process There are two states for ubifs writing pages: 1. Dirty, Private 2. Not Dirty, Not Private The normal process cannot go to ubifsreleasepage which means there exist...

EUVD-2021-31661

Malicious code in bioql PyPI...

SUSE CVE-2021-47635

In the Linux kernel, the following vulnerability has been resolved: ubifs: Fix to add refcount once page is set private MM defined the rule 1 very clearly that once page was set with PGprivate flag, we should increment the refcount in that page, also main flows like pageout, migratepage will assu...

DEBIAN-CVE-2021-47635

In the Linux kernel, the following vulnerability has been resolved: ubifs: Fix to add refcount once page is set private MM defined the rule 1 very clearly that once page was set with PGprivate flag, we should increment the refcount in that page, also main flows like pageout, migratepage will assu...

SUSE-SU-2023:1710-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security and bugfixes. - CVE-2022-3523: Fixed a use after free related to device private page handling bsc1204363. - CVE-2022-36280: Fixed out-of-bounds memory access vulnerability found in vmwgfx driver bsc1203332. -...

CVE-2022-26159

The auto-completion plugin in Ametys CMS before 4.5.0 allows a remote unauthenticated attacker to read documents such as plugins/web/service/search/auto-completion//en.xml and similar pathnames for other languages, which contain all characters typed by all users, including the content of private...

Ian Dunn: XSSI: Quick Navigation Interface - leak of private page/post titles

CVSS ---- Medium 4.3 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N Description ----------- The Quick Navigation Interface plugin includes the names of all posts and pages in an automatically generated JavaScript file. By including this file in their own page, an attacker can view all post titles -...

ciaasp.cfins.com XSS vulnerability

Vulnerable URL: https://ciaasp.cfins.com/private/announce.asp?Version=1"...