Lucene search
K

248 matches found

OSV
OSV
added 2026/02/13 7:30 p.m.8 views

CLSA-2026-1771011008 Update of nss

update to CKBI 2.82 from NSS 3.120 - updated certificates: - Certificate "ePKI Root Certification Authority" - Certificate "GlobalSign Root CA" - Certificate "Entrust.net Premium 2048 Secure Server CA" - Certificate "Comodo AAA Services root" - Certificate "XRamp Global CA Root" - Certificate "Go...

5.8AI score
Exploits0References1
Snyk
Snyk
added 2026/02/03 1:59 a.m.3 views

Malicious Package

Overview roots-cms-client is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS5.4AI score
Exploits0References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/01/31 5:27 p.m.10 views

Malicious code in roots-cms-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9670a58bdf8573b9c7d94a74cf58593a55692bfcf33d931693680389b981f89c The package roots-cms-client was found to contain malicious code. Source: ghsa-malware 88007d193d64ac8d7a2a970903353601b1f620a48f22c3cd3c7a838da0cce4...

5.4AI score
Exploits0References1
OSV
OSV
added 2026/01/31 5:27 p.m.3 views

MAL-2026-617 Malicious code in roots-cms-client (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 9670a58bdf8573b9c7d94a74cf58593a55692bfcf33d931693680389b981f89c The package roots-cms-client was found to contain malicious code. Source: ghsa-malware 88007d193d64ac8d7a2a970903353601b1f620a48f22c3cd3c7a838da0cce4...

5.5AI score
Exploits0References1
NVD
NVD
added 2026/01/13 11:15 p.m.10 views

CVE-2021-47751

CuteEditor for PHP now referred to as Rich Text Editor 6.6 contains a directory traversal vulnerability in the browse template feature that allows attackers to write files to arbitrary web root directories. Attackers can exploit the ServerMapPath function by renaming uploaded HTML files using...

7.5CVSS0.00715EPSS
Exploits1References3
AstraLinux
AstraLinux
added 2026/01/13 2:1 p.m.2 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: btrfs: Directly freeing partially initialized fsinfo in btrfscheckleakedroots If fsinfo-supercopy or fsinfo-superforcommit was allocated and failed in btrfsgettreesubvol, then there is no need to call btrfsfreefsinfo. Otherwise,...

5.9AI score0.00172EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2025/12/31 10:5 p.m.59 views

serverless MCP Server vulnerable to Command Injection in list-projects tool

Summary A command injection vulnerability exists in the Serverless Framework's built-in MCP server package @serverless/mcp. This vulnerability only affects users of the experimental MCP server feature serverless mcp, which represents less than 0.1% of Serverless Framework users. The core Serverle...

7.5CVSS9.4AI score0.01944EPSS
Exploits2References6Affected Software1
OSV
OSV
added 2025/12/31 10:5 p.m.6 views

GHSA-RWC2-F344-Q6W6 serverless MCP Server vulnerable to Command Injection in list-projects tool

Summary A command injection vulnerability exists in the Serverless Framework's built-in MCP server package @serverless/mcp. This vulnerability only affects users of the experimental MCP server feature serverless mcp, which represents less than 0.1% of Serverless Framework users. The core Serverle...

7.5CVSS9.3AI score0.01944EPSS
Exploits2References6
SUSE CVE
SUSE CVE
added 2025/12/25 12:57 a.m.6 views

SUSE CVE-2023-54032

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix race when deleting quota root from the dirty cow roots list When disabling quotas we are deleting the quota root from the list fsinfo-dirtycowonlyroots without taking the lock that protects it, which is struct...

5.5CVSS6.2AI score0.00172EPSS
Exploits0References18
NVD
NVD
added 2025/12/24 1:16 p.m.4 views

CVE-2023-54067

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix race when deleting free space root from the dirty cow roots list When deleting the free space tree we are deleting the free space root from the list fsinfo-dirtycowonlyroots without taking the lock that protects it,...

0.00166EPSS
Exploits0References3
NVD
NVD
added 2025/12/24 1:16 p.m.5 views

CVE-2022-50737

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Validate index root when initialize NTFS security This enhances the sanity check for $SDH and $SII while initializing NTFS security, guarantees these index root are legit. 162.459513 BUG: KASAN: use-after-free in...

0.002EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/12/24 1:16 p.m.3 views

CVE-2023-54067

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix race when deleting free space root from the dirty cow roots list When deleting the free space tree we are deleting the free space root from the list fsinfo-dirtycowonlyroots without taking the lock that protects it,...

5.7AI score0.00166EPSS
Exploits0References4
OSV
OSV
added 2025/12/24 1:16 p.m.5 views

UBUNTU-CVE-2023-54067

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix race when deleting free space root from the dirty cow roots list When deleting the free space tree we are deleting the free space root from the list fsinfo-dirtycowonlyroots without taking the lock that protects it,...

5.7AI score0.00166EPSS
Exploits0References5
OSV
OSV
added 2025/12/24 12:23 p.m.4 views

CVE-2023-54067 btrfs: fix race when deleting free space root from the dirty cow roots list

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix race when deleting free space root from the dirty cow roots list When deleting the free space tree we are deleting the free space root from the list fsinfo-dirtycowonlyroots without taking the lock that protects it,...

6.1AI score0.00166EPSS
Exploits0References6
CVE
CVE
added 2025/12/24 12:23 p.m.17 views

CVE-2023-54067

CVE-2023-54067 concerns a race in the Linux kernel’s Btrfs code. The vulnerability arises when deleting the free space root from the dirty_cowonly_roots list without holding the trans_lock, allowing concurrent manipulations (e.g., adding a root via add_root_to_dirty_list) to interleave with the d...

5.8AI score0.00166EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/12/24 12:23 p.m.25 views

CVE-2023-54067 btrfs: fix race when deleting free space root from the dirty cow roots list

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix race when deleting free space root from the dirty cow roots list When deleting the free space tree we are deleting the free space root from the list fsinfo-dirtycowonlyroots without taking the lock that protects it,...

0.00166EPSS
Exploits0References3
NVD
NVD
added 2025/12/24 11:15 a.m.5 views

CVE-2023-54032

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix race when deleting quota root from the dirty cow roots list When disabling quotas we are deleting the quota root from the list fsinfo-dirtycowonlyroots without taking the lock that protects it, which is struct...

0.00172EPSS
Exploits0References8
OSV
OSV
added 2025/12/24 10:55 a.m.7 views

CVE-2023-54032 btrfs: fix race when deleting quota root from the dirty cow roots list

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix race when deleting quota root from the dirty cow roots list When disabling quotas we are deleting the quota root from the list fsinfo-dirtycowonlyroots without taking the lock that protects it, which is struct...

6.1AI score0.00172EPSS
Exploits0References11
Cvelist
Cvelist
added 2025/12/24 10:55 a.m.24 views

CVE-2023-54032 btrfs: fix race when deleting quota root from the dirty cow roots list

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix race when deleting quota root from the dirty cow roots list When disabling quotas we are deleting the quota root from the list fsinfo-dirtycowonlyroots without taking the lock that protects it, which is struct...

0.00172EPSS
Exploits0References8
CVE
CVE
added 2025/12/24 10:55 a.m.35 views

CVE-2023-54032

CVE-2023-54032 affects the Linux kernel’s btrfs quota handling. The root cause is a race in deleting a quota root from the dirty_cowonly_roots list without acquiring trans_lock, which can race with concurrent list manipulation (e.g., add_root_to_dirty_list). This unsynchronized access may trigger...

5.9AI score0.00172EPSS
Exploits0References8
Rows per page
Query Builder