CVE-2023-4553 Unauthenticated Access to AppBuilder Configuration Files

Improper Input Validation vulnerability in OpenText AppBuilder on Windows, Linux allows Probe System Files. AppBuilder configuration files are viewable by unauthenticated users. This issue affects AppBuilder: from 21.2 before 23.2...

CVE-2023-4553 Unauthenticated Access to AppBuilder Configuration Files

Improper Input Validation vulnerability in OpenText AppBuilder on Windows, Linux allows Probe System Files. AppBuilder configuration files are viewable by unauthenticated users. This issue affects AppBuilder: from 21.2 before 23.2...

kernel: ath9k: fix use-after-free in ath9k_hif_usb_rx_cb

In the Linux kernel, the following vulnerability has been resolved: ath9k: fix use-after-free in ath9khifusbrxcb Syzbot reported use-after-free Read in ath9khifusbrxcb 0. The problem was in incorrect htchandle-drvpriv initialization. Probable call trace which can trigger use-after-free:...

PT-2024-9956

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to the cadence-quadspi driver in the Linux kernel. The -runtime suspend and -runtime resume implementations start with incorrect assignments, leading to memory...

Probe Agent can not communicate with Citrix Gateway with port 5000

Error "Failed to authenticate Citrix Gateway credentials" raises if non 443 port is used in the FQDN of Citrix Gateway URL...

probe.education Improper Access Control vulnerability OBB-3825249

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

CVE-2023-7163

A security issue exists in D-Link D-View 8 v2.0.2.89 and prior that could allow an attacker to manipulate the probe inventory of the D-View service. This could result in the disclosure of information from other probes, denial of service conditions due to the probe inventory becoming full, or the...

CVE-2023-7163

A security issue exists in D-Link D-View 8 v2.0.2.89 and prior that could allow an attacker to manipulate the probe inventory of the D-View service. This could result in the disclosure of information from other probes, denial of service conditions due to the probe inventory becoming full, or the...

Design/Logic Flaw

A security issue exists in D-Link D-View 8 v2.0.2.89 and prior that could allow an attacker to manipulate the probe inventory of the D-View service. This could result in the disclosure of information from other probes, denial of service conditions due to the probe inventory becoming full, or the...

CVE-2023-7163

The CVE-2023-7163 issue affects D-Link D-View 8, versions 2.0.2.89 and earlier. The root cause described across sources is manipulation of the probe inventory in the D-View service, enabling an attacker to disclose information from other probes, cause denial-of-service when the inventory becomes ...

CVE-2023-7163 D-Link D-View 8 Unauthenticated Probe-Core Server Communication

A security issue exists in D-Link D-View 8 v2.0.2.89 and prior that could allow an attacker to manipulate the probe inventory of the D-View service. This could result in the disclosure of information from other probes, denial of service conditions due to the probe inventory becoming full, or the...

PT-2023-32916

Name of the Vulnerable Software and Affected Versions D-Link D-View 8 versions 2.0.2.89 and prior Description A security issue exists that could allow an attacker to manipulate the probe inventory of the D-View service. This could result in the disclosure of information from other probes, denial ...

kernel: i40e: Fix kernel crash during reboot when adapter is in recovery mode

A flaw was found in the i40e module in the Linux kernel. When the firmware is in recovery mode during the probe phase, some probe functions are skipped, causing a NULL pointer dereference when the system shuts down or is rebooted. This issue results in a denial of service...

PT-2023-8713 · Linux +3 · Linux Kernel +3

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a null pointer dereference in the smb2 probe function. This can be exploited to cause a denial of service. The devm kasprintf and devm kzalloc functions return ...

kernel: drm/client: Fix memory leak in drm_client_modeset_probe

In the Linux kernel, the following vulnerability has been resolved: drm/client: Fix memory leak in drmclientmodesetprobe When a new mode is set to modeset-mode, the previous mode should be freed. This fixes the following kmemleak report: drmmodeduplicate+0x45/0x220 drm...

kernel: Linux kernel: Denial of Service in iwlwifi due to NULL pointer dereference

A flaw was found in the Linux kernel's iwlwifi driver. This vulnerability allows a local attacker with low privileges to cause a denial of service DoS by triggering a NULL pointer dereference. This occurs when the iwlpciprobe function fails and frees a transaction structure, but the iwlpciremove...

kernel: ALSA: ymfpci: Fix BUG_ON in probe function

An assertion failure was found in the Linux kernel's Yamaha YMF sound card driver during buffer validation. The probe function includes a BUGON assertion that compares DMA buffer sizes without accounting for alignment, causing the assertion to fail when the aligned buffer size doesn't exactly mat...

kernel: HID: intel-ish-hid: ipc: Fix potential use-after-free in work function

In the Linux kernel, the following vulnerability has been resolved: HID: intel-ish-hid: ipc: Fix potential use-after-free in work function When a reset notify IPC message is received, the ISR schedules a work function and passes the ISHTP device to it via a global pointer ishtpdev. If ishprobe...

kernel: drm/bridge: megachips: Fix a null pointer dereference bug

In the Linux kernel, the following vulnerability has been resolved: drm/bridge: megachips: Fix a null pointer dereference bug When removing the module we will get the following warning: 31.911505 i2c-core: driver stdp2690-ge-b850v3-fw unregistered 31.912484 general protection fault, probably for...

kernel: ALSA: ymfpci: Fix BUG_ON in probe function

An assertion failure was found in the Linux kernel's Yamaha YMF sound card driver during buffer validation. The probe function includes a BUGON assertion that compares DMA buffer sizes without accounting for alignment, causing the assertion to fail when the aligned buffer size doesn't exactly mat...