CVE-2025-14993

A vulnerability was detected in Tenda AC18 15.03.05.05. This affects the function sprintf of the file /goform/SetDlnaCfg of the component HTTP Request Handler. The manipulation of the argument scanList results in stack-based buffer overflow. The attack can be executed remotely. The exploit is now...

CVE-2023-53696

CVE-2023-53696 affects the Linux kernel scsi/qla2xxx driver. The root cause is an error-path leak in qla2x00_probe_one(): when base_vha initialization fails, the fab_scan_rp (scan.l) allocated in qla2x00_create_host() is not released in the probe_failed path, causing a memory leak reported by kme...

EUVD-2025-15853

Malicious code in bioql PyPI...

SUSE CVE-2025-37974

In the Linux kernel, the following vulnerability has been resolved: s390/pci: Fix missing check for zpcicreatedevice error return The zpcicreatedevice function returns an error pointer that needs to be checked before dereferencing it as a struct zpcidev pointer. Add the missing check in clpadd...

DEBIAN-CVE-2025-37974

In the Linux kernel, the following vulnerability has been resolved: s390/pci: Fix missing check for zpcicreatedevice error return The zpcicreatedevice function returns an error pointer that needs to be checked before dereferencing it as a struct zpcidev pointer. Add the missing check in clpadd...

UBUNTU-CVE-2025-37974

In the Linux kernel, the following vulnerability has been resolved: s390/pci: Fix missing check for zpcicreatedevice error return The zpcicreatedevice function returns an error pointer that needs to be checked before dereferencing it as a struct zpcidev pointer. Add the missing check in clpadd...

CVE-2025-37974

CVE-2025-37974: Linux kernel s390/pci vulnerability where zpci_create_device() may return an error pointer that is not checked before dereferencing it as a struct zpci_dev in __clp_add(); the fix adds a missing check so the device is not added to the scan_list, preventing the previous behavior. T...

CVE-2025-37974 s390/pci: Fix missing check for zpci_create_device() error return

In the Linux kernel, the following vulnerability has been resolved: s390/pci: Fix missing check for zpcicreatedevice error return The zpcicreatedevice function returns an error pointer that needs to be checked before dereferencing it as a struct zpcidev pointer. Add the missing check in clpadd...

DEBIAN-CVE-2024-53055

In the Linux kernel, the following vulnerability has been resolved: wifi: iwlwifi: mvm: fix 6 GHz scan construction If more than 255 colocated APs exist for the set of all APs found during 2.4/5 GHz scanning, then the 6 GHz scan construction will loop forever since the loop variable has type u8,...

CVE-2024-10661

A vulnerability has been found in Tenda AC15 15.03.05.19 and classified as critical. This vulnerability affects the function SetDlnaCfg of the file /goform/SetDlnaCfg. The manipulation of the argument scanList leads to stack-based buffer overflow. The attack can be initiated remotely. The exploit...

SQL Injection Vulnerability in Hongyu Multi-User Mall System scan_list.php Page

Hongyu multi-user mall system is a B2B2C new retail e-commerce system. A SQL injection vulnerability exists in the scli.php page of Hongyu Multi-User Mall System, which can be exploited by attackers to obtain sensitive information...