Lucene search
K

6680 matches found

BDU FSTEC
BDU FSTEC
added 2025/04/07 12:0 a.m.5 views

Vulnerability of the auto_active() function in the drivers/gpu/drm/i915/i915_active.c module – A driver for supporting Linux kernel’s Direct Rendering Infrastructure (DRI), which allows a hacker to trigger a service failure.

Vulnerability of the autoactive function in the drivers/gpu/drm/i915/i915active.c module – The driver for Linux’s Direct Rendering Infrastructure DRI kernel is vulnerable due to improper input validation. Exploiting this vulnerability could allow an attacker to cause system failures...

5.5CVSS6.6AI score0.00232EPSS
Exploits0References16Affected Software4
OSV
OSV
added 2025/04/03 3:31 p.m.9 views

GHSA-2RRX-PPHC-QFV9 pgAdmin 4 Vulnerable to Cross-Site Scripting (XSS) via Query Result Rendering

pgAdmin = 9.1 is affected by a security vulnerability with Cross-Site ScriptingXSS. If attackers execute any arbitrary HTML/JavaScript in a user's browser through query result rendering, then HTML/JavaScript runs on the browser...

9.1CVSS7.2AI score0.00302EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2025/04/03 3:31 p.m.26 views

pgAdmin 4 Vulnerable to Cross-Site Scripting (XSS) via Query Result Rendering

pgAdmin = 9.1 is affected by a security vulnerability with Cross-Site ScriptingXSS. If attackers execute any arbitrary HTML/JavaScript in a user's browser through query result rendering, then HTML/JavaScript runs on the browser...

9.1CVSS7.2AI score0.00302EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2025/04/03 12:23 p.m.10 views

CVE-2025-2946 Cross-Site Vulnerability(XSS) due to arbitrary HTML/JavaScript gets executed while query result rendering in Query Tool and View/Edit Data Tool of pgAdmin 4

pgAdmin = 9.1 is affected by a security vulnerability with Cross-Site ScriptingXSS. If attackers execute any arbitrary HTML/JavaScript in a user's browser through query result rendering, then HTML/JavaScript runs on the browser...

9.1CVSS7.3AI score0.00302EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/04/03 12:0 a.m.6 views

The vulnerability of the dpu_encoder_virt_atomic_mode_set() function in the Linux kernel’s Direct Rendering Infrastructure (DRI) support driver allows a malicious actor to cause a system crash.

The vulnerability of the dpuencodervirtatomicmodeset function in the Linux kernel’s Direct Rendering Infrastructure Support driver is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a system failure...

5.5CVSS6.4AI score0.00208EPSS
Exploits0References9Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/04/02 12:0 a.m.4 views

The vulnerability of the `dm_update_mst_vcpi_slots_for_dsc()` function in the Direct Rendering Infrastructure (DRI) driver for AMD kernel-based Linux operating systems allows a attacker to cause a service failure.

The vulnerability of the dmupdatemstvcpislotsfordsc function in the Direct Rendering Infrastructure DRI driver for AMD kernel-based Linux operating systems is related to insufficient validation of input data during division by zero. Exploiting this vulnerability can allow an attacker to cause a...

5.5CVSS6.7AI score0.00239EPSS
Exploits0References14Affected Software4
BDU FSTEC
BDU FSTEC
added 2025/04/02 12:0 a.m.5 views

The vulnerability of the amdgpu_device_gpu_recover() function in the DRI driver allows a hacker to induce a service failure. This vulnerability is related to AMD graphics cards and Linux operating systems.

The vulnerability of the amdgpudevicegpurecover function in the DRI support driver for AMD graphics cards in Linux operating systems is related to pointer manipulation. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.0022EPSS
Exploits0References15Affected Software5
CNNVD
CNNVD
added 2025/04/01 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the drm hyperv module not unmapping MMIO space when removing a device...

5.5CVSS6.5AI score0.00164EPSS
Exploits0References6
BDU FSTEC
BDU FSTEC
added 2025/04/01 12:0 a.m.6 views

The vulnerability of the construct Phy() function in the DRI support driver for AMD graphics cards in Linux operating systems allows a hacker to cause a service failure.

The vulnerability of the construct Phy function in the DRI support driver for AMD graphics cards in Linux operating systems is related to pointer manipulation. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.4AI score0.00237EPSS
Exploits0References9Affected Software2
RedhatCVE
RedhatCVE
added 2025/03/29 12:43 p.m.20 views

CVE-2025-0811

An issue has been discovered in GitLab CE/EE affecting all versions from 17.7 before 17.8.6, 17.9 before 17.9.3, and 17.10 before 17.10.1. Improper rendering of certain file types leads to cross-site scripting...

8.7CVSS6.8AI score0.0028EPSS
Exploits1References1
OSV
OSV
added 2025/03/29 1:50 a.m.7 views

OESA-2025-1332 zvbi security update

The ZVBI library provides functions to read from Linux V4L, V4L2 and FreeBSD BKTR raw VBI capture devices, from Linux DVB devices and from a VBI proxy to share V4L and V4L2 VBI devices between multiple applications. It can demodulate raw to sliced VBI data in software, with support for a wide ran...

7.5CVSS6.5AI score0.00563EPSS
Exploits0References2
Fedora
Fedora
added 2025/03/28 3:7 p.m.18 views

[SECURITY] Fedora 41 Update: webkitgtk-2.48.0-1.fc41

WebKitGTK is the port of the WebKit web rendering engine to the GTK platform...

10CVSS7.3AI score0.0424EPSS
Exploits4
SUSE CVE
SUSE CVE
added 2025/03/28 3:3 a.m.2 views

SUSE CVE-2024-58091

In the Linux kernel, the following vulnerability has been resolved: drm/fbdev-dma: Add shadow buffering for deferred I/O DMA areas are not necessarily backed by struct page, so we cannot rely on it for deferred I/O. Allocate a shadow buffer for drivers that require deferred I/O and use it as...

5.5CVSS7.7AI score0.00187EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2025/03/27 2:7 p.m.4 views

CVE-2025-27793

Vega is a visualization grammar, a declarative format for creating, saving, and sharing interactive visualization designs. In Vega prior to version 5.32.0, corresponding to vega-functions prior to version 5.17.0, users running Vega/Vega-lite JSON definitions could run unexpected JavaScript code...

5.3CVSS5.7AI score0.00477EPSS
Exploits0
NVD
NVD
added 2025/03/27 1:15 p.m.18 views

CVE-2025-0811

An issue has been discovered in GitLab CE/EE affecting all versions from 17.7 before 17.8.6, 17.9 before 17.9.3, and 17.10 before 17.10.1. Improper rendering of certain file types leads to cross-site scripting...

8.7CVSS0.0028EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2025/03/27 12:31 p.m.9 views

CVE-2025-0811

Removed by vendor...

8.7CVSS6AI score0.0028EPSS
Exploits1
OSV
OSV
added 2025/03/27 12:31 p.m.14 views

CVE-2025-0811 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab

An issue has been discovered in GitLab CE/EE affecting all versions from 17.7 before 17.8.6, 17.9 before 17.9.3, and 17.10 before 17.10.1. Improper rendering of certain file types leads to cross-site scripting...

8.7CVSS5AI score0.0028EPSS
Exploits1References5
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.4 views

The vulnerability of DRM/VMWGFX components in Linux kernel allows a perpetrator to trigger a service failure.

The vulnerability of DRM/VMWGFX components in Linux operating systems is related to incorrect calculations in their functions. Exploiting this vulnerability can allow a perpetrator to cause service failures...

5.5CVSS6.6AI score0.00209EPSS
Exploits0References11Affected Software5
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.6 views

The vulnerability of the DRM/i915 kernel components of the Linux operating system allows a hacker to increase their privileges within the system.

The vulnerability of DRM/i915 kernel components in the Linux operating system is related to errors that occur after the release of the component. Exploiting this vulnerability can allow a hacker to increase their privileges within the system...

5.5CVSS5.9AI score0.00239EPSS
Exploits0References5Affected Software2
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.5 views

Vulnerability of the ttm_transferedDestroy() function in the drivers/gpu/drm/ttm/ttm_bo_util.c module – The DRI driver for Linux kernel’s direct rendering infrastructure allows a hacker to trigger a service failure.

Vulnerability of the ttmtransferedDestroy function in the drivers/gpu/drm/ttm/ttmboutil.c module – The Linux kernel’s Direct Rendering Infrastructure DRI driver has a vulnerability related to improper memory release before deleting the last reference memory leak. Exploiting this vulnerability cou...

5.5CVSS5.7AI score0.00208EPSS
Exploits0References17Affected Software4
Rows per page
Query Builder