Lucene search
K

2529 matches found

CNNVD
CNNVD
added 2025/02/10 12:0 a.m.2 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel, which stems from a missing boundary check in the read/write system call in the vfio/platform driver...

7.8CVSS6.3AI score0.00219EPSS
Exploits0References9
Cvelist
Cvelist
added 2025/02/05 4:39 p.m.17 views

CVE-2025-20174

A vulnerability in the SNMP subsystem of Cisco IOS Software and Cisco IOS XE Software could allow an authenticated, remote attacker to cause a DoS condition on an affected device. This vulnerability is due to improper error handling when parsing SNMP requests. An attacker could exploit this...

7.7CVSS0.00706EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 5:24 a.m.14 views

CVE-2024-1638

The documentation specifies that the BTGATTPERMREADLESC and BTGATTPERMWRITELESC defines for a Bluetooth characteristic: Attribute read/write permission with LE Secure Connection encryption. If set, requires that LE Secure Connections is used for read/write access, however this is only true when i...

9.1CVSS9.2AI score0.0035EPSS
Exploits1References1
VulnCheck KEV
VulnCheck KEV
added 2025/02/04 12:0 a.m.5 views

VulnCheck KEV: CVE-2018-19410

Paessler PRTG Network Monitor contains a local file inclusion vulnerability that allows a remote, unauthenticated attacker to create users with read-write privileges including administrator...

9.8CVSS5.8AI score0.8646EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/01/31 12:0 a.m.2 views

Imagination GPU Driver 安全漏洞

Imagination GPU Driver is a graphics driver from Imagination. A security vulnerability exists in Imagination GPU Driver. An attacker exploiting this vulnerability could perform incorrect read and write operations...

7.8CVSS6.6AI score0.00153EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/27 11:28 p.m.19 views

CVE-2022-31749 Authenticated arbitrary file read/write in WatchGuard Fireware OS

An argument injection vulnerability in the diagnose and import pac commands in WatchGuard Fireware OS before 12.8.1, 12.1.4, and 12.5.10 allows an authenticated remote attacker with unprivileged credentials to upload or read files to limited, arbitrary locations on WatchGuard Firebox and XTM...

6.5CVSS0.01242EPSS
Exploits2References2
Positive Technologies
Positive Technologies
added 2025/01/27 12:0 a.m.3 views

PT-2025-5296 · Apple · Apple Macos

Name of the Vulnerable Software and Affected Versions: macOS versions prior to 13.7.3 macOS versions prior to 14.7.3 macOS versions prior to 15.3 Description: A downgrade issue affecting Intel-based Mac computers was addressed with additional code-signing restrictions. This issue allows an app to...

5.5CVSS6.4AI score0.00244EPSS
Exploits0References9
OSV
OSV
added 2025/01/21 9:15 p.m.5 views

CVE-2025-21538

Vulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards component: Web Runtime SEC. Supported versions that are affected are Prior to 9.2.9.2. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise JD Edwards...

6.1CVSS5.8AI score0.00182EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/01/13 12:0 a.m.7 views

Cfx.re FXServer 安全漏洞

Cfx.re FXServer is a platform server from Cfx.re, Inc. A security vulnerability exists in Cfx.re FXServer v9601 and prior versions, which stems from faulty access control and allows an unauthenticated user to modify and read arbitrary user data via a publicly available API endpoint...

9.1CVSS6.5AI score0.02392EPSS
Exploits3References2
BDU FSTEC
BDU FSTEC
added 2025/01/13 12:0 a.m.5 views

The vulnerability of the Palo Alto Networks Expedition configuration migration tool lies in the lack of protection for the SQL query structure. This allows attackers to extract the contents of the database of the software tool and gain access to write and read arbitrary files.

The vulnerability of the Palo Alto Networks Expedition configuration migration tool lies in the lack of security measures for SQL query structures. Exploiting this vulnerability allows an attacker to remotely access and manipulate the database content of the software platform, as well as gain...

9.3CVSS8.3AI score0.00596EPSS
Exploits0References2Affected Software1
SUSE CVE
SUSE CVE
added 2025/01/12 12:22 a.m.3 views

SUSE CVE-2024-41935

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to shrink read extent node in batches We use rwlock to protect core structure data of extent tree during its shrink, however, if there is a huge number of extent nodes in extent tree, during shrink of extent tree, it ma...

7.1CVSS7.5AI score0.00221EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/01/12 12:18 a.m.7 views

SUSE CVE-2024-48875

In the Linux kernel, the following vulnerability has been resolved: btrfs: don't take devreplace rwsem on task already holding it Running fstests btrfs/011 with MKFSOPTIONS="-O rst" to force the usage of the RAID stripe-tree, we get the following splat from lockdep: BTRFS info device sdd:...

5.5CVSS7.6AI score0.00143EPSS
Exploits0References3
OSV
OSV
added 2025/01/11 1:15 p.m.6 views

AZL-56255 CVE-2024-48875 affecting package kernel for versions less than 6.6.76.1-1

In the Linux kernel, the following vulnerability has been resolved: btrfs: don't take devreplace rwsem on task already holding it Running fstests btrfs/011 with MKFSOPTIONS="-O rst" to force the usage of the RAID stripe-tree, we get the following splat from lockdep: BTRFS info device sdd:...

5.5CVSS6.6AI score0.00143EPSS
Exploits0References1
OSV
OSV
added 2025/01/11 1:15 p.m.5 views

DEBIAN-CVE-2024-41935

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to shrink read extent node in batches We use rwlock to protect core structure data of extent tree during its shrink, however, if there is a huge number of extent nodes in extent tree, during shrink of extent tree, it ma...

7.1CVSS5.7AI score0.00221EPSS
Exploits0References1
OSV
OSV
added 2025/01/11 1:15 p.m.1 views

UBUNTU-CVE-2024-41935

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to shrink read extent node in batches We use rwlock to protect core structure data of extent tree during its shrink, however, if there is a huge number of extent nodes in extent tree, during shrink of extent tree, it ma...

7.1CVSS6.2AI score0.00221EPSS
Exploits0References20
Vulnrichment
Vulnrichment
added 2025/01/11 12:25 p.m.5 views

CVE-2024-48875 btrfs: don't take dev_replace rwsem on task already holding it

In the Linux kernel, the following vulnerability has been resolved: btrfs: don't take devreplace rwsem on task already holding it Running fstests btrfs/011 with MKFSOPTIONS="-O rst" to force the usage of the RAID stripe-tree, we get the following splat from lockdep: BTRFS info device sdd:...

7.5AI score0.00143EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/01/11 12:0 a.m.6 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel, which stems from the possibility that the F2FS file system may hold an rwlock for an extended period of time when shrinking...

7.1CVSS6.4AI score0.00221EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/01/11 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the Btrfs filesystem attempting to fetch the devreplace rwsem again when the task is already in possession o...

5.5CVSS6.5AI score0.00143EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/01/11 12:0 a.m.14 views

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : gstreamer-plugins-base (SUSE-SU-2025:0065-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2025:0065-1 advisory. - CVE-2024-47538: Fixed a stack-buffer overflow in vorbishandleidentificationpacket. bsc1234415 ...

9.8CVSS7.2AI score0.01298EPSS
Exploits2References22
NVD
NVD
added 2025/01/07 6:15 p.m.11 views

CVE-2024-55410

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

Exploits0
Rows per page
Query Builder