Lucene search
+L

167 matches found

nvd
nvd
added yesterday7 views

CVE-2026-42936

The installer of HYPER SBI 2 insecurely loads Dynamic Link Libraries. If there is a crafted DLL at the same directory when invoking the affected installer, arbitrary code may be executed with the privilege of the user invoking the installer...

8.4CVSS0.00142EPSS
Exploits0References1
cvelist
cvelist
added yesterday27 views

CVE-2026-42936

The installer of HYPER SBI 2 insecurely loads Dynamic Link Libraries. If there is a crafted DLL at the same directory when invoking the affected installer, arbitrary code may be executed with the privilege of the user invoking the installer...

8.4CVSS0.00142EPSS
Exploits0References1
attackerkb
attackerkb
added yesterday7 views

CVE-2026-42936

The installer of HYPER SBI 2 insecurely loads Dynamic Link Libraries. If there is a crafted DLL at the same directory when invoking the affected installer, arbitrary code may be executed with the privilege of the user invoking the installer...

8.4CVSS7.1AI score0.00142EPSS
Exploits0References2
cve
cve
added 2026/07/08 12:33 p.m.13 views

CVE-2026-12002

The CVE-2026-12002 entry concerns the Smash Balloon Social Photo Feed – Easy Social Feeds Plugin for WordPress. A CSRF vulnerability exists in all versions up to and including 6.11.1 due to missing/incorrect nonce validation in the maybe_connection_data function. This allows unauthenticated attac...

4.7CVSS5.8AI score0.00102EPSS
Exploits0References2
susecve
susecve
added 2026/06/28 1:8 a.m.9 views

SUSE CVE-2026-53303

In the Linux kernel, the following vulnerability has been resolved: f2fs: protect extensionlist reading with sblock in f2fssbishow In f2fssbishow, the extensionlist, extensioncount and hotextcount are read without holding sbi-sblock. If a concurrent sysfs store modifies the extension list via...

5.8AI score0.00126EPSS
Exploits0References3
cve
cve
added 2026/06/26 7:40 p.m.16 views

CVE-2026-53303

Technical details for CVE-2026-53303 are not publicly provided in the supplied documents; monitoring for updates is advised.

7.1CVSS5.8AI score0.00126EPSS
Exploits0References6Affected Software1
euvd
euvd
added 2026/06/26 7:40 p.m.7 views

EUVD-2026-39838

In the Linux kernel, the following vulnerability has been resolved: f2fs: protect extensionlist reading with sblock in f2fssbishow In f2fssbishow, the extensionlist, extensioncount and hotextcount are read without holding sbi-sblock. If a concurrent sysfs store modifies the extension list via...

5.8AI score0.00126EPSS
Exploits0References6
attackerkb
attackerkb
added 2026/06/26 7:40 p.m.6 views

CVE-2026-53303

In the Linux kernel, the following vulnerability has been resolved: f2fs: protect extensionlist reading with sblock in f2fssbishow In f2fssbishow, the extensionlist, extensioncount and hotextcount are read without holding sbi-sblock. If a concurrent sysfs store modifies the extension list via...

5.7AI score0.00126EPSS
Exploits0References7Affected Software1
susecve
susecve
added 2026/06/26 2:7 a.m.7 views

SUSE CVE-2026-53272

In the Linux kernel, the following vulnerability has been resolved: erofs: fix use-after-free on sbi-syncdecompress zerofsdecompresskickoff can race with filesystem unmount, causing a use-after-free on sbi-syncdecompress. When I/O completes, zerofsendio calls zerofsdecompresskickoff to queue...

5.8AI score0.00125EPSS
Exploits0References3
ptsecurity
ptsecurity
added 2026/06/25 12:0 a.m.10 views

PT-2026-52367

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue exists in the erofs component. The z erofs decompress kickoff function can race with the filesystem unmount process, leading to a use-after-free on sbi-sync...

7.8CVSS6.1AI score0.00125EPSS
Exploits0References18
redhatcve
redhatcve
added 2026/06/05 7:44 p.m.9 views

CVE-2026-8292

A security vulnerability has been detected in Open5GS up to 2.7.7. The affected element is the function yuarelparse in the library /lib/sbi/conv.c of the component NRF. Such manipulation of the argument hnrf-uri leads to denial of service. The attack may be performed from remote. The exploit has...

6.5CVSS5AI score0.00372EPSS
Exploits1References1
redhatcve
redhatcve
added 2026/06/01 4:3 p.m.16 views

CVE-2026-10116

A security flaw has been discovered in Open5GS up to 2.7.7. This vulnerability affects the function ogssbixactadd in the library /lib/core/ogs-timer.c of the component ue-authentications Endpoint. Performing a manipulation results in denial of service. The attack may be initiated remotely. The...

5.3CVSS5.4AI score0.00391EPSS
Exploits0References1
cvelist
cvelist
added 2026/05/30 11:0 a.m.53 views

CVE-2026-10116 Open5GS ue-authentications Endpoint ogs-timer.c ogs_sbi_xact_add denial of service

A security flaw has been discovered in Open5GS up to 2.7.7. This vulnerability affects the function ogssbixactadd in the library /lib/core/ogs-timer.c of the component ue-authentications Endpoint. Performing a manipulation results in denial of service. The attack may be initiated remotely. The...

5.3CVSS0.00391EPSS
Exploits0References6
cve
cve
added 2026/05/30 11:0 a.m.28 views

CVE-2026-10116

Technical details are not publicly available in the provided documents. Monitor for updates. The description notes a denial‑of‑service vulnerability in Open5GS (ogs_sbi_xact_add in ogs-timer.c).

5.3CVSS5.4AI score0.00391EPSS
Exploits0References6
cve
cve
added 2026/05/30 10:0 a.m.37 views

CVE-2026-10114

Open5GS up to 2.7.7 is affected by an out-of-bounds write in handle_scp_info (lib/sbi/nnrf-handler.c) within the Shared NF-profile Parser. The issue can be triggered remotely and is linked to a publicly disclosed exploit. Remediation guidance in the sources is to deploy an official patch; no addi...

5.3CVSS5.4AI score0.00276EPSS
Exploits0References5
cnnvd
cnnvd
added 2026/05/30 12:0 a.m.10 views

Open5GS 安全漏洞

Open5GS is an open-source implementation of 5G Core and EPC in C language, which serves as the core network for LTE/NR networks. Versions of Open5GS 2.7.7 and earlier contain security vulnerabilities. These vulnerabilities stem from the ue-authentications Endpoint component’s ogssbixactadd...

5.3CVSS5.8AI score0.00391EPSS
Exploits0References6
ptsecurity
ptsecurity
added 2026/05/30 12:0 a.m.29 views

PT-2026-45093

A security flaw has been discovered in Open5GS up to 2.7.7. This vulnerability affects the function ogs sbi xact add in the library /lib/core/ogs-timer.c of the component ue-authentications Endpoint. Performing a manipulation results in denial of service. The attack may be initiated remotely. The...

5.3CVSS5.4AI score0.00391EPSS
Exploits0References7
astralinux
astralinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerabilities in Linux, Linux-5.15, Linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: f2fs: checked the validation of faultattrs in f2fsbuildfaultattr. It failed to check the validation of faultattrs in parseoptions; we will fix this by adding a check condition in f2fsbuildfaultattr. Also, use f2fsbuildfaultatt...

7.8CVSS6.8AI score0.00239EPSS
Exploits0References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: riscv: trace: fix snapshot deadlock with sbi ecall If the functions in sbiecall.c are traceable, the command: echo "sbiecall:snapshot" /sys/kernel/tracing/setftracefilter can cause the kernel to enter a deadlock. Functions in...

5.5CVSS5.3AI score0.0008EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/05/19 1:58 a.m.15 views

CVE-2026-8731

A vulnerability has been found in Open5GS up to 2.7.7. Affected is the function ogssbiclientadd in the library /lib/sbi/client.c of the component NRF. The manipulation of the argument clientpool leads to denial of service. It is possible to initiate the attack remotely. The exploit has been...

6.5CVSS5.4AI score0.0038EPSS
Exploits1References1
Rows per page
Query Builder