Lucene search
K

6680 matches found

BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.7 views

The vulnerability of DRM/MSM components in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of DRM/SMM components in the Linux operating system is related to the dereferencing of the NULL pointer. Exploiting this vulnerability can allow an attacker to trigger a service failure...

5.5CVSS6.7AI score0.00216EPSS
Exploits0References12Affected Software4
CNNVD
CNNVD
added 2025/03/27 12:0 a.m.4 views

GitLab Enterprise Edition和GitLab Community Edition 跨站脚本漏洞

GitLab Enterprise Edition EE and GitLab Community Edition CE are both products of GitLab, Inc. GitLab Enterprise Edition is a content management system. GitLab Enterprise Edition is a content management system. A cross-site scripting vulnerability exists in GitLab Enterprise Edition and GitLab...

8.7CVSS5.1AI score0.0028EPSS
Exploits1References3
SUSE Linux
SUSE Linux
added 2025/03/26 3:44 p.m.3 views

Security update for webkit2gtk3

This update for webkit2gtk3 fixes the following issues: CVE-2024-44192: Fixed unexpected process crash due to processing maliciously crafted web content bsc1239863 CVE-2024-54467: Fixed data exilfration cross-origin due to a cookie management issue via a malicious website bsc1239864 Other fixes: ...

7.1CVSS8.1AI score0.0424EPSS
Exploits4References12
Citrix
Citrix
added 2025/03/25 12:0 a.m.22 views

Enabling WPF Rendering for Citrix HDX on Multi-Session VDAs

Overview Windows Presentation Foundation WPF applications can leverage GPU acceleration in Citrix Virtual Apps and Desktops CVAD environments running Windows Multi-session OS. By enabling WPF rendering on the server’s GPU, this reduces CPU load and improves graphics performance for WPF...

7AI score
Exploits0
OSV
OSV
added 2025/03/24 3:15 p.m.3 views

CVE-2025-1558

Mattermost Mobile Apps versions =2.25.0 fail to properly validate GIF images prior to rendering which allows a malicious user to cause the Android application to crash via message containing a maliciously crafted GIF...

6.5CVSS6.8AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/03/24 12:0 a.m.5 views

The vulnerabilities of the functions oppdrm_init() and opngem_deinit() in the DRM driver (drivers/gpu/drm/omapdrm/omap_drv.c) of the Linux kernel allow a hacker to cause a service failure.

The vulnerability of the functions oppdrminit and opngemdeinit in the DRM driver drivers/gpu/drm/omapdrm/omapdrv.c of the Linux kernel is related to the use of pointers. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00249EPSS
Exploits0References18Affected Software6
Fedora
Fedora
added 2025/03/22 2:26 a.m.14 views

[SECURITY] Fedora 40 Update: kitty-0.40.0-2.fc40

Offloads rendering to the GPU for lower system load and buttery smooth scrolling. Uses threaded rendering to minimize input latency. - Supports all modern terminal features: graphics images, unicode, true-col or, OpenType ligatures, mouse protocol, focus tracking, bracketed paste and several new...

4.4CVSS7AI score0.00384EPSS
Exploits2
Fedora
Fedora
added 2025/03/21 12:19 a.m.16 views

[SECURITY] Fedora 42 Update: webkitgtk-2.48.0-1.fc42

WebKitGTK is the port of the WebKit web rendering engine to the GTK platform...

10CVSS7.3AI score0.0424EPSS
Exploits4
BDU FSTEC
BDU FSTEC
added 2025/03/21 12:0 a.m.6 views

The vulnerability of the resource_log_pipe_topology_update() function in the drivers/gpu/drm/amd/display/dc/core/dc_resource.c file of the DRI support driver for AMD graphics cards in Linux operating systems allows a malicious actor to cause a service failure.

The vulnerability of the resourcelogpipetopologyupdate function in the drivers/gpu/drm/amd/display/dc/core/dcresource.c file, a driver for AMD Direct Rendering Infrastructure DRI graphics cards in Linux operating systems, relates to pointer manipulation. Exploiting this vulnerability could allow ...

7.5CVSS6.2AI score0.00198EPSS
Exploits0References11Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/03/21 12:0 a.m.5 views

The vulnerability of the dcn20_get_dcc_compression_cap() function in the drivers/gpu/drm/amd/display/dc/resource/dcn20/dcn20_resource.c driver module allows a malicious actor to trigger a service failure. This vulnerability exists in the Linux operating system’s AMD GPU Direct Rendering Infrastructure (DRI) support driver.

The vulnerability of the dcn20getdcccompressioncap function in the drivers/gpu/drm/amd/display/dc/resource/dcn20/dcn20resource.c driver is related to the assignment of the NULL pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

7.5CVSS6.1AI score0.00211EPSS
Exploits0References11Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/03/21 12:0 a.m.6 views

The vulnerability of the `nvkm_client_new()` function in the `drivers/gpu/drm/nouveau/nvkm/core/client.c` file of the Nouveau driver module allows a hacker to cause a service failure. This vulnerability relates to the Direct Rendering Infrastructure (DRI) support in NVIDIA’s Linux kernel-based graphics drivers.

The vulnerability of the nvkmclientnew function in the drivers/gpu/drm/nouveau/nvkm/core/client.c file of the Nouveau driver, a driver for supporting Direct Rendering Infrastructure DRI in NVIDIA graphics cards and Linux operating systems, is related to improper resource locking. Exploiting this...

7.5CVSS6.8AI score0.00172EPSS
Exploits0References10Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/03/21 12:0 a.m.6 views

The vulnerability of the dcn10_log_color_state() function in the drivers/gpu/drm/amd/display/dc/hwss/dcn10/dcn10_hwseq.c driver module allows a hacker to cause a service failure. This vulnerability is related to the Direct Rendering Infrastructure (DRI) support in AMD graphics cards for Linux operating systems.

The vulnerability of the dcn10logcolorstate function in the drivers/gpu/drm/amd/display/dc/hwss/dcn10/dcn10hwseq.c driver module relates to the assignment of pointers. Exploiting this vulnerability could allow an attacker to cause a service failure...

7.5CVSS5.9AI score0.0018EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2025/03/20 12:32 p.m.5 views

GHSA-6MF6-7J75-2M6F AgentScope stored cross-site scripting (XSS) vulnerability

A stored cross-site scripting XSS vulnerability exists in modelscope/agentscope, as of the latest commit 21161fe on the main branch. The vulnerability occurs in the view for inspecting detailed run information, where a user-controllable string run ID is appended and rendered as HTML. This allows ...

6.1CVSS5.8AI score0.00389EPSS
Exploits1References4
OSV
OSV
added 2025/03/20 10:15 a.m.4 views

CVE-2024-8556

A stored cross-site scripting XSS vulnerability exists in modelscope/agentscope, as of the latest commit 21161fe on the main branch. The vulnerability occurs in the view for inspecting detailed run information, where a user-controllable string run ID is appended and rendered as HTML. This allows ...

6.1CVSS6AI score
Exploits0References1
NVD
NVD
added 2025/03/20 10:15 a.m.8 views

CVE-2024-8101

A stored cross-site scripting XSS vulnerability exists in the Text Explorer component of aimhubio/aim version 3.23.0. The vulnerability arises due to the use of dangerouslySetInnerHTML without proper sanitization, allowing arbitrary JavaScript execution when rendering tracked texts. This can be...

7.2CVSS0.00401EPSS
Exploits1References1
CVE
CVE
added 2025/03/20 10:11 a.m.50 views

CVE-2024-8101

CVE-2024-8101 affects aimhubio/aim v3.23.0, specifically the Text Explorer component. The issue is a stored XSS due to dangerouslySetInnerHTML being used without proper sanitization, enabling arbitrary JavaScript execution when rendering tracked texts (during the training process). Connected sour...

7.2CVSS6.5AI score0.00401EPSS
Exploits1References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/03/19 12:0 a.m.5 views

The vulnerability of the amdgpu_dm_fini() function in the drivers/gpu/drm/amd/display/amdgpu_dm/amdgpu_dm.c driver module allows a hacker to cause a service failure in Linux-based AMD graphics cards that support Direct Rendering Infrastructure (DRI).

The vulnerability of the amdgpudmfini function in the drivers/gpu/drm/amd/display/amdgpudm/amdgpudm.c driver module is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...

7.5CVSS5.9AI score0.00272EPSS
Exploits0References12Affected Software2
RedHat Linux
RedHat Linux
added 2025/03/18 9:12 a.m.25 views

Important: Red Hat Security Advisory: webkit2gtk3 security update

An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.4 Telecommunications Update Service. Red Hat Product Security has rated this update ...

10CVSS7.5AI score0.0424EPSS
Exploits4References2
RedHat Linux
RedHat Linux
added 2025/03/18 2:28 a.m.16 views

Important: Red Hat Security Advisory: webkit2gtk3 security update

An update for webkit2gtk3 is now available for Red Hat Enterprise Linux 9.4 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available...

10CVSS7.5AI score0.0424EPSS
Exploits4References2
Zero Day Initiative
Zero Day Initiative
added 2025/03/18 12:0 a.m.10 views

Apple SceneKit Out-Of-Bounds Read Information Disclosure Vulnerability

This vulnerability allows remote attackers to disclose sensitive information on affected installations of Apple SceneKit. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the renderi...

3.3CVSS5.8AI score0.00327EPSS
Exploits0References1
Rows per page
Query Builder