2242 matches found
Microsoft Windows Push Notifications 安全漏洞
Microsoft Windows Push Notifications is a push notification service from Microsoft Corporation USA. It provides a reliable way to deliver new updates. A security vulnerability exists in Microsoft Windows Push Notifications. An attacker could exploit the vulnerability to elevate privileges. The...
Microsoft Windows Push Notifications 安全漏洞
Microsoft Windows Push Notifications is a push notification service from Microsoft Corporation USA. It provides a reliable way to deliver new updates. A security vulnerability exists in Microsoft Windows Push Notifications. An attacker could exploit the vulnerability to elevate privileges. The...
Microsoft Windows Push Notifications 安全漏洞
Microsoft Windows Push Notifications is a push notification service from Microsoft Corporation USA. It provides a reliable way to deliver new updates. A security vulnerability exists in Microsoft Windows Push Notifications. An attacker could exploit the vulnerability to elevate privileges. The...
Microsoft Windows Push Notifications 安全漏洞
Microsoft Windows Push Notifications is a push notification service from Microsoft Corporation USA. It provides a reliable way to deliver new updates. A security vulnerability exists in Microsoft Windows Push Notifications. An attacker could exploit the vulnerability to elevate privileges. The...
PT-2025-32831 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Windows affected versions not specified Description: A type confusion issue exists in Windows Push Notifications. This allows an authorized attacker to elevate privileges locally. Recommendations: At the moment, there is no information about ...
PT-2025-32685 · Hydra · Hydra
Name of the Vulnerable Software and Affected Versions: Hydra versions prior to commit f7bda02 Description: Hydra is a continuous integration service for Nix based projects. The /api/push-github and /api/push-gitea API endpoints were called by their respective forges without HTTP Basic...
PT-2025-32778 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Windows versions affected versions not specified Description: An issue exists in Windows Push Notifications related to access of a resource using an incompatible type, also known as a 'type confusion'. This can allow an authorized attacker to...
PT-2025-32829 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Windows versions affected versions not specified Description: An issue exists in Windows Push Notifications where access of a resource using an incompatible type 'type confusion' can allow an authorized attacker to elevate privileges locally...
PT-2025-32830 · Microsoft · Windows
Name of the Vulnerable Software and Affected Versions: Windows versions affected versions not specified Description: An issue exists in Windows Push Notifications related to access of a resource using an incompatible type 'type confusion'. This allows an authorized attacker to elevate privileges...
Linux Distros Unpatched Vulnerability : CVE-2025-38234
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - sched/rt: Fix race in pushrttask Overview ======== When a CPU chooses to call pushrttask and picks a task to push to another CPU's runqueue then it will call...
Linux Distros Unpatched Vulnerability : CVE-2025-38459
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - atm: clip: Fix infinite recursive call of clippush. syzbot reported the splat below. 0 This happens if we call ioctlATMARPMKIP more than once. During the first...
Linux Distros Unpatched Vulnerability : CVE-2024-10466
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - By sending a specially crafted push message, a remote server could have hung the parent process, causing the browser to become unresponsive. This vulnerability...
atm: clip: prevent NULL deref in clip_push()
...
Linux Distros Unpatched Vulnerability : CVE-2023-4580
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Push notifications stored on disk in private browsing mode were not being encrypted potentially allowing the leak of sensitive information. This vulnerability...
CVE-2025-54583
GitProxy is an application that stands between developers and a Git remote endpoint e.g., github.com. Versions 1.19.1 and below allow users to push to remote repositories while bypassing policies and explicit approvals. Since checks and plugins are skipped, code containing secrets or unwanted...
CVE-2025-8264
Versions of the package z-push/z-push-dev before 2.7.6 are vulnerable to SQL Injection due to unparameterized queries in the IMAP backend. An attacker can inject malicious commands by manipulating the username field in basic authentication. This allows the attacker to access and potentially modif...
The vulnerability of the r535_gsp_rpc_push() function in the nouveau kernel component of Linux operating systems allows a hacker to trigger a service failure.
The vulnerability of the r535gsprpcpush function in the nouveau kernel of Linux operating systems is related to the use of memory after it is freed. Exploiting this vulnerability could allow an attacker to trigger a service denial...
Misinterpretation of Input
Overview @finos/git-proxy is a Deploy custom push protections and policies on top of Git. Affected versions of this package are vulnerable to Misinterpretation of Input via the parsePush.ts file. An attacker can bypass approval mechanisms or hide commits by crafting a malicious Git packfile that...
CVE-2025-54583
GitProxy is an application that stands between developers and a Git remote endpoint e.g., github.com. Versions 1.19.1 and below allow users to push to remote repositories while bypassing policies and explicit approvals. Since checks and plugins are skipped, code containing secrets or unwanted...
CVE-2025-54583 GitProxy bypasses approvals when pushing multiple branches
GitProxy is an application that stands between developers and a Git remote endpoint e.g., github.com. Versions 1.19.1 and below allow users to push to remote repositories while bypassing policies and explicit approvals. Since checks and plugins are skipped, code containing secrets or unwanted...