177 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-46195
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - smb: client: validate dacloffset before building DACL pointers parsesecdesc, buildsecdesc, and the chown path in idmodetocifsacl all add the server-supplied...
Linux kernel 安全漏洞
The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from an array entry processing error in the reflink cleanup mechanism of ocfs2, potentially leading to...
Node.js: Node.js: Denial of Service due to crafted HTTP `__proto__` header
A flaw was found in Node.js. A remote attacker can exploit this vulnerability by sending a specially crafted HTTP request that includes a header named proto. When a Node.js application processes this request and attempts to access distinct headers, it encounters an unhandled error, leading to an...
Samsung多款产品 安全漏洞
SAMSUNG Mobile Processors are products of South Korea’s Samsung Corporation. SAMSUNG Mobile Processors are a series of mobile processors. SAMSUNG Wearable Processors are a series of wearable processors. SAMSUNG Modem Exynos is a series of modem chips. Several Samsung products have security...
CVE-2026-29905
Kirby CMS through 5.1.4 allows an authenticated user with 'Editor' permissions to cause a persistent Denial of Service DoS via a malformed image upload. The application fails to properly validate the return value of the PHP getimagesize function. When the system attempts to process this file for...
CVE-2025-15606
A Denial-of-Service DoS vulnerability in the httpd component of TP-Link's TD-W8961N v4.0 due to improper input sanitization, allows crafted requests to trigger a processing error that causes the httpd service to crash. Successful exploitation may allow the attacker to cause service interruption,...
CVE-2016-10829
cPanel before 55.9999.141 allows arbitrary file-read operations because of a multipart form processing error SEC-99...
CVE-2025-40760
A vulnerability has been identified in Altair Grid Engine All versions V2026.0.0. Affected products do not properly handle error messages and discloses sensitive password hash information when processing user authentication requests. This could allow a local attacker to extract password hashes fo...
kernel: usbnet: ipheth: fix DPE OoB read
In the Linux kernel, the following vulnerability has been resolved: usbnet: ipheth: fix DPE OoB read Fix an out-of-bounds DPE read, limit the number of processed DPEs to the amount that fits into the fixed-size NDP16 header...
EUVD-2025-37893
A vulnerability in the RADIUS setting Reject RADIUS requests from clients with repeated failures on Cisco Identity Services Engine ISE could allow an unauthenticated, remote attacker to cause Cisco ISE to restart unexpectedly. This vulnerability is due to a logic error when processing a RADIUS...
Cisco Identity Services Engine (cisco-sa-ise-radsupress-dos-8YF3JThh)
According to its self-reported version, Cisco ISE is affected by a vulnerability. - A vulnerability in the RADIUS setting Reject RADIUS requests from clients with repeated failures on Cisco Identity Services Engine ISE could allow an unauthenticated, remote attacker to cause Cisco ISE to restart...
Protection Mechanism Failure
picklescan is vulnerable to Protection Mechanism Failure. The vulnerability is due to improper error handling in the ZIP archive scanning component when processing files with a bad Cyclic Redundancy Check CRC, which allows an attacker to craft a malicious ZIP archive that halts the scan and...
CVE-2025-58298
Data processing error vulnerability in the package management module. Successful exploitation of this vulnerability may affect availability...
EUVD-2025-33830
Data processing error vulnerability in the package management module. Successful exploitation of this vulnerability may affect availability...
CVE-2025-58298
Data processing error vulnerability in the package management module. Successful exploitation of this vulnerability may affect availability...
CVE-2025-58298
Data processing error vulnerability in the package management module. Successful exploitation of this vulnerability may affect availability...
CVE-2025-58298
Huawei HarmonyOS is affected by a data handling error in the package management module that can affect availability. The vulnerability is reported as a local issue (local attack vector) with low attack complexity, and may be exploitable without user interaction or elevated privileges according to...
CVE-2025-58298
Data processing error vulnerability in the package management module. Successful exploitation of this vulnerability may affect availability...
CVE-2025-58298
Data processing error vulnerability in the package management module. Successful exploitation of this vulnerability may affect availability...
PT-2025-41659
Name of the Vulnerable Software and Affected Versions versions prior to 2025-58298 Description A data processing error exists within a package management module. Exploitation of this issue can impact system availability. The issue can be exploited locally without requiring user interaction or...