Lucene search
+L

204 matches found

Cvelist
Cvelist
added 2025/07/03 8:35 a.m.12 views

CVE-2025-38123 net: wwan: t7xx: Fix napi rx poll issue

In the Linux kernel, the following vulnerability has been resolved: net: wwan: t7xx: Fix napi rx poll issue When driver handles the napi rx polling requests, the netdev might have been released by the dellink logic triggered by the disconnect operation on user plane. However, in the logic of...

0.00155EPSS
Exploits0References4
OSV
OSV
added 2025/07/03 8:35 a.m.4 views

CVE-2025-38123 net: wwan: t7xx: Fix napi rx poll issue

In the Linux kernel, the following vulnerability has been resolved: net: wwan: t7xx: Fix napi rx poll issue When driver handles the napi rx polling requests, the netdev might have been released by the dellink logic triggered by the disconnect operation on user plane. However, in the logic of...

5.5CVSS6.2AI score0.00155EPSS
Exploits0References7
BDU FSTEC
BDU FSTEC
added 2025/07/03 12:0 a.m.8 views

The vulnerability in the driver/gpu/drm/xe/xe_exec.c component of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability in the drivers/gpu/drm/xe/xeexec.c kernel module of the Linux operating system is related to improper memory release before deleting the last reference. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00186EPSS
Exploits0References8Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.8 views

Vulnerability of the mkiss_close() function in the drivers/net/hamradio/mkiss.c module – A Linux kernel network adapter driver that allows attackers to compromise the confidentiality and accessibility of protected information.

Vulnerability of the mkissclose function in the drivers/net/hamradio/mkiss.c module – The Linux kernel-based network adapter driver has a vulnerability related to improper memory release before deleting the last reference „memory leak“. Exploiting this vulnerability could allow an attacker to...

5.5CVSS5.9AI score0.00226EPSS
Exploits0References20Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/06/23 12:0 a.m.10 views

Vulnerability of the fec_enet_init() function in the drivers/net/ethernet/freescale/fec_main.c module – The driver for supporting Ethernet adapter devices in the Freescale Linux operating system, which allows an attacker to gain access to protected information.

Vulnerability of the fecenetinit function in the drivers/net/ethernet/freescale/fecmain.c module – The driver for supporting Ethernet adapter devices in the Freescale Linux operating system is vulnerable due to improper memory release before deleting the last reference memory leak. Exploiting thi...

5.5CVSS6.4AI score0.00225EPSS
Exploits0References14Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/06/19 5:35 p.m.11 views

Security Bulletin: Multiple vulnerabilities affect IBM Data Virtualization on Cloud Pak for Data (June 2025)

Summary Multiple vulnerabilities have been addressed in IBM Data Virtualization on Cloud Pak for Data. Note that IBM Data Virtualization was named Watson Query in IBM Cloud Pak for Data version 4.6, 4.7, and 4.8. Vulnerability Details CVEID:CVE-2024-8184 DESCRIPTION: There exists a security...

7.5CVSS10AI score0.0266EPSS
Exploits1Affected Software1
CNNVD
CNNVD
added 2025/06/19 12:0 a.m.4 views

jq 资源管理错误漏洞

jq is a lightweight and flexible command-line JSON processor from jqlang open source. A resource management error vulnerability exists in jq version 1.8.0, which stems from a post-release reuse issue in the function fstrflocaltime in the file /src/builtin.c. The vulnerability is caused by the use...

6.9CVSS6.6AI score0.00321EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/06/18 11:3 a.m.11 views

CVE-2022-50217 fuse: write inode in fuse_release()

In the Linux kernel, the following vulnerability has been resolved: fuse: write inode in fuserelease A race between write2 and close2 allows pages to be dirtied after fuseflush - writeinodenow. If these pages are not flushed from fuserelease, then there might not be a writable open file later. So...

0.00186EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/06/12 5:6 p.m.6 views

CVE-2025-29828

Missing release of memory after effective lifetime in Windows Cryptographic Services allows an unauthorized attacker to execute code over a network...

8.1CVSS8.2AI score0.01112EPSS
Exploits0References1
NVD
NVD
added 2025/06/10 5:21 p.m.7 views

CVE-2025-29828

Missing release of memory after effective lifetime in Windows Cryptographic Services allows an unauthorized attacker to execute code over a network...

8.1CVSS0.01112EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:41 p.m.9 views

CVE-2022-29515

Missing release of memory after effective lifetime in firmware for IntelR SPS before versions SPSE306.00.03.035.0 may allow a privileged user to potentially enable denial of service via local access...

6CVSS6.6AI score0.00169EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:42 p.m.8 views

CVE-2021-40047

There is a vulnerability of memory not being released after effective lifetime in the Bastet module. Successful exploitation of this vulnerability may affect integrity...

7.8CVSS6.9AI score0.006EPSS
Exploits0
OpenVAS
OpenVAS
added 2025/05/15 12:0 a.m.13 views

Eclipse Jetty Information Disclosure Vulnerability (GHSA-q4rv-gq96-w7c5) - Linux

Eclipse Jetty is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:eclipse:jetty"...

7.2CVSS6.9AI score0.00453EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2025/05/13 8:28 a.m.4 views

kernel: Bluetooth: btmtk: avoid UAF in btmtk_process_coredump

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btmtk: avoid UAF in btmtkprocesscoredump hcidevcdappend may lead to the release of the skb, so it cannot be accessed once it is called. ================================================================== BUG: KASAN:...

7.8CVSS6.8AI score0.00216EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/10 6:8 p.m.16 views

CVE-2024-13009

A flaw was found in Eclipse Jetty. This vulnerability allows corrupted and inadvertent data sharing between requests via a gzip error when inflating a request body. If the request body is malformed, the gzip decompression process can fail, resulting in the application inadvertently using data fro...

7.2CVSS6.6AI score0.00453EPSS
Exploits0References5
NVD
NVD
added 2025/05/08 6:15 p.m.16 views

CVE-2024-13009

In Eclipse Jetty versions 9.4.0 to 9.4.56 a buffer can be incorrectly released when confronted with a gzip error when inflating a request body. This can result in corrupted and/or inadvertent sharing of data between requests...

7.2CVSS0.00453EPSS
Exploits0References2
Debian CVE
Debian CVE
added 2025/05/08 5:29 p.m.20 views

CVE-2024-13009

In Eclipse Jetty versions 9.4.0 to 9.4.56 a buffer can be incorrectly released when confronted with a gzip error when inflating a request body. This can result in corrupted and/or inadvertent sharing of data between requests...

7.2CVSS7.2AI score0.00453EPSS
Exploits0
NVD
NVD
added 2025/05/06 9:15 a.m.17 views

CVE-2025-22886

in OpenHarmony v5.0.3 and prior versions allow a local attacker case DOS through missing release of memory...

5.5CVSS0.00121EPSS
Exploits0References1
NVD
NVD
added 2025/05/05 5:18 p.m.15 views

CVE-2025-1992

IBM Db2 for Linux, UNIX and Windows includes DB2 Connect Server 11.5.0 through 11.5.9 and 12.1.0 through 12.1.1 could allow an authenticated user in federation environment, to cause a denial of service due to insufficient release of allocated memory after usage...

6.5CVSS0.00315EPSS
Exploits0References2
NVD
NVD
added 2025/05/01 3:16 p.m.13 views

CVE-2022-49820

In the Linux kernel, the following vulnerability has been resolved: mctp i2c: don't count unused / invalid keys for flow release We're currently hitting the WARNON in mctpi2cflowrelease: if midev-releasecount midev-i2clockcount WARNONCE1, "release count overflow"; This may be hit if we expire a...

5.5CVSS0.0014EPSS
Exploits0References2
Rows per page
Query Builder