1617 matches found
CVE-2025-62455 Microsoft Message Queuing (MSMQ) Elevation of Privilege Vulnerability
...
Microsoft Message Queuing (MSMQ) Elevation of Privilege Vulnerability
Improper input validation in Windows Message Queuing allows an authorized attacker to elevate privileges locally...
KLA90812 Multiple vulnerabilities in Microsoft Windows
Multiple vulnerabilities were found in Microsoft Windows. Malicious users can exploit these vulnerabilities to execute arbitrary code, gain privileges, bypass security restrictions, cause denial of service, obtain sensitive information. Below is a complete list of vulnerabilities: 1. A remote cod...
PT-2025-50157
Name of the Vulnerable Software and Affected Versions Windows Message Queuing affected versions not specified Description A flaw in input validation within Windows Message Queuing can allow a local attacker to gain higher privileges on a system. This issue enables an authorized attacker to elevat...
KLA90811 Multiple vulnerabilities in Microsoft Product (ESU)
Multiple vulnerabilities were found in Microsoft Products Extended Security Update. Malicious users can exploit these vulnerabilities to gain privileges, cause denial of service, spoof user interface, obtain sensitive information, bypass security restrictions, execute arbitrary code. Below is a...
Microsoft Message Queuing 输入验证错误漏洞
Microsoft Message Queuing is a Microsoft Corporation USA solution for implementing asynchronous and synchronous scenarios that require high performance. An input validation error vulnerability exists in Microsoft Message Queuing. An attacker could exploit the vulnerability to elevate privileges...
kernel: mptcp: do not queue data on closed subflows
In the Linux kernel, the following vulnerability has been resolved: mptcp: do not queue data on closed subflows Dipanjan reported a syzbot splat at close time: WARNING: CPU: 1 PID: 10818 at net/ipv4/afinet.c:153 inetsockdestruct+0x6d0/0x8e0 net/ipv4/afinet.c:153 Modules linked in: uioivshmemOE ui...
[SECURITY] Fedora 43 Update: persepolis-5.1.1-6.fc43
Persepolis is a Download Manager written in Python. - Multi segment downloading - Scheduling downloads - Download queuing - Finding and downloading video from Youtube, Vimeo, DailyMotion,...
CVE-2025-66217 AIS-catcher Integer Underflow in MQTT Packet Parsing leading to Heap Buffer Overflow
AIS-catcher is a multi-platform AIS receiver. Prior to version 0.64, an integer underflow vulnerability exists in the MQTT parsing logic of AIS-catcher. This vulnerability allows an attacker to trigger a massive Heap Buffer Overflow by sending a malformed MQTT packet with a manipulated Topic Leng...
Digital Twin-Driven Secure Access Strategy for SAGIN-Enabled IoT Networks
In space-air-ground integrated networks SAGIN-enabled IoT networks, secure access has become a significant challenge due to the increasing risks of eavesdropping attacks. To address these threats to data confidentiality, this paper proposes a Digital Twin DT-driven secure access strategy. The...
kernel: net_sched: hfsc: Fix a UAF vulnerability in class handling
In the Linux kernel, the following vulnerability has been resolved: netsched: hfsc: Fix a UAF vulnerability in class handling This patch fixes a Use-After-Free vulnerability in the HFSC qdisc class handling. The issue occurs due to a time-of-check/time-of-use condition in hfscchangeclass when...
CVE-2025-40177 accel/qaic: Fix bootlog initialization ordering
In the Linux kernel, the following vulnerability has been resolved: accel/qaic: Fix bootlog initialization ordering As soon as we queue MHI buffers to receive the bootlog from the device, we could be receiving data. Therefore all the resources needed to process that data need to be setup prior to...
GHSA-9C5Q-W6GR-FXCQ MQTT does not validate hostnames
A flaw was found in Rubygem MQTT. By default, the package used to not have hostname validation, resulting in possible Man-in-the-Middle MITM attack...
Unity Linux 20.1070a Security Update: kernel (UTSA-2025-989739)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-989739 advisory. In the Linux kernel, the following vulnerability has been resolved: bfq: Update cgroup information before merging bio When the process is migrated to a different...
[SECURITY] Fedora 42 Update: qt6-qtmqtt-6.9.3-1.fc42
MQTT is a machine-to-machine M2M protocol utilizing the publish-and-subscri be paradigm, and provides a channel with minimal communication overhead. The Qt MQTT module provides a standard compliant implementation of the MQTT protocol specification. It enables applications to act as telemetry...
kernel: mptcp: do not queue data on closed subflows
In the Linux kernel, the following vulnerability has been resolved: mptcp: do not queue data on closed subflows Dipanjan reported a syzbot splat at close time: WARNING: CPU: 1 PID: 10818 at net/ipv4/afinet.c:153 inetsockdestruct+0x6d0/0x8e0 net/ipv4/afinet.c:153 Modules linked in: uioivshmemOE ui...
CVE-2025-40083 net/sched: sch_qfq: Fix null-deref in agg_dequeue
In the Linux kernel, the following vulnerability has been resolved: net/sched: schqfq: Fix null-deref in aggdequeue To prevent a potential crash in aggdequeue net/sched/schqfq.c when cl-qdisc-ops-peekcl-qdisc returns NULL, we check the return value before using it, similar to the existing approac...
Dyson App 安全漏洞
Dyson App is a mobile application for remote control of smart devices from Dyson Singapore. A security vulnerability exists in Dyson App versions v6.1.23041 through 23595, which originates from an unauthenticated attacker being able to remotely control another user's Dyson IoT device via MQTT...
CVE-2025-40041
CVE-2025-40041 describes a LoongArch-specific Linux kernel fix for BPF: sign-extension of struct ops return values (instead of treating the pointer as a 32-bit value). The issue caused a kernel panic during the ns_bpf_qdisc selftest due to sign-extension being incorrect for LoongArch ABI. Public ...
EUVD-2022-55666
In the Linux kernel, the following vulnerability has been resolved: tpm: acpi: Call acpiputtable to fix memory leak The start and length of the event log area are obtained from TPM2 or TCPA table, so we call acpigettable to get the ACPI information, but the acpigettable should be coupled with...