7500 matches found
Unspecified Vulnerability in Oracle E-Business Suite (CNVD-2025-24084)
Oracle E-Business Suite is a fully integrated set of global business management software from Oracle USA. The software provides customer relationship management, service management, financial management and other functions. A security vulnerability exists in Oracle Universal Work Queue for Oracle...
TOTOLINK T6 安全漏洞
TOTOLINK T6 is a wireless dual-band router from China's TOTOLINK, which supports MQTT protocol and Telnet service, and is mainly used for home and small business networking. The TOTOLINK T6 suffers from a buffer overflow vulnerability, which originates from the failure of parameter s in the MQTT...
SUSE CVE-2025-38350
In the Linux kernel, the following vulnerability has been resolved: net/sched: Always pass notifications when child class becomes empty Certain classful qdiscs may invoke their classes' dequeue handler on an enqueue operation. This may unexpectedly empty the child qdisc and thus make an in-flight...
AZL-72593 CVE-2025-38350 affecting package kernel for versions less than 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: net/sched: Always pass notifications when child class becomes empty Certain classful qdiscs may invoke their classes' dequeue handler on an enqueue operation. This may unexpectedly empty the child qdisc and thus make an in-flight...
DEBIAN-CVE-2025-38350
In the Linux kernel, the following vulnerability has been resolved: net/sched: Always pass notifications when child class becomes empty Certain classful qdiscs may invoke their classes' dequeue handler on an enqueue operation. This may unexpectedly empty the child qdisc and thus make an in-flight...
CVE-2025-38350 net/sched: Always pass notifications when child class becomes empty
In the Linux kernel, the following vulnerability has been resolved: net/sched: Always pass notifications when child class becomes empty Certain classful qdiscs may invoke their classes' dequeue handler on an enqueue operation. This may unexpectedly empty the child qdisc and thus make an in-flight...
OESA-2025-1874 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: pfifotailenqueue: Drop new packet when sch-limit == 0 Expected behaviour: In case we reach scheduler's limit, pfifotailenqueue will drop a packet in scheduler's...
OESA-2025-1869 kernel security update
The Linux Kernel, the operating system core itself. Security Fixes: In the Linux kernel, the following vulnerability has been resolved: pfifotailenqueue: Drop new packet when sch-limit == 0 Expected behaviour: In case we reach scheduler's limit, pfifotailenqueue will drop a packet in scheduler's...
CVE-2025-50105
Vulnerability in the Oracle Universal Work Queue product of Oracle E-Business Suite component: Work Provider Administration. Supported versions that are affected are 12.2.3-12.2.14. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...
CVE-2025-50107
Vulnerability in the Oracle Universal Work Queue product of Oracle E-Business Suite component: Request handling. Supported versions that are affected are 12.2.5-12.2.14. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Universal Wo...
PT-2025-33567
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A race condition exists in the rxrpc subsystem where a call can be processed by multiple threads concurrently. This occurs when a call is placed on the socket queue and multiple thread...
kernel: misc/vmw_vmci: fix an infoleak in vmci_host_do_receive_datagram()
In the Linux kernel, the following vulnerability has been resolved: misc/vmwvmci: fix an infoleak in vmcihostdoreceivedatagram struct vmcieventqp allocated by qpnotifypeer contains padding, which may carry uninitialized data to the userspace, as observed by KMSAN: BUG: KMSAN: kernel-infoleak in...
The vulnerability of the DumpScreen2RGB() function (gif2rgb.c) in the GIFLIB library allows a hacker to trigger a service denial.
The vulnerability of the DumpScreen2RGB function gif2rgb.c in the GIFLIB library is related to buffer overflow in the queue. Exploiting this vulnerability can allow an attacker to cause a service failure...
CVE-2025-50107
Vulnerability in the Oracle Universal Work Queue product of Oracle E-Business Suite component: Request handling. Supported versions that are affected are 12.2.5-12.2.14. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Universal Wo...
CVE-2025-50105
Vulnerability in the Oracle Universal Work Queue product of Oracle E-Business Suite component: Work Provider Administration. Supported versions that are affected are 12.2.3-12.2.14. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...
CVE-2025-50105
Vulnerability in the Oracle Universal Work Queue product of Oracle E-Business Suite component: Work Provider Administration. Supported versions that are affected are 12.2.3-12.2.14. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...
CVE-2025-50105
Vulnerability in the Oracle Universal Work Queue product of Oracle E-Business Suite component: Work Provider Administration. Supported versions that are affected are 12.2.3-12.2.14. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Oracle...
PT-2025-29658 · Oracle · Oracle Universal Work Queue +1
Name of the Vulnerable Software and Affected Versions: Oracle Universal Work Queue versions 12.2.3 through 12.2.14 Description: An easily exploitable issue exists in the Oracle Universal Work Queue component of Oracle E-Business Suite. A low-privileged attacker with network access via HTTP can...
Oracle E-Business Suite 访问控制错误漏洞
Oracle E-Business Suite is a fully integrated set of global business management software from Oracle USA. The software provides customer relationship management, service management, financial management and other functions. A security vulnerability exists in Oracle Universal Work Queue for Oracle...
PT-2025-29660
Name of the Vulnerable Software and Affected Versions Oracle Universal Work Queue versions 12.2.5 through 12.2.14 Description This issue relates to flaws in access control within the request handling component of Oracle Universal Work Queue. Successful exploitation allows an unauthenticated remot...