Lucene search
K

150 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.4 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15

In the Linux kernel, the following vulnerability has been resolved: Firmware: armscpi: Ensure that scpiinfo is not assigned if the probe fails. When the scpi probe fails at any point, we need to ensure that scpiinfo is not set and will remain NULL until the probe succeeds. If this issue is not...

7.8CVSS5.4AI score0.00161EPSS
Exploits0References2
OSV
OSV
added 2026/05/22 9:5 a.m.24 views

CLSA-2026-1779375889 kernel: Fix of 95 CVEs

perf/x86/intel/uncore: Fix die ID init and look up bugs CVE-2026-43344 - x86/apic: Disable x2apic on resume if the kernel expects so CVE-2026-43363 - drm/amdgpu: Fix use-after-free race in VM acquire CVE-2026-43370 - dm: remove fake timeout to avoid leak request CVE-2026-43314 - md/bitmap: fix...

7.8CVSS5.9AI score0.00283EPSS
Exploits0References1
Redos
Redos
added 2026/02/02 12:0 a.m.5 views

ROS-20260202-73-0034

A vulnerability in the scpi-cpufreq.c component of the Linux kernel is related to pointer dereferencing errors. Exploitation of the vulnerability could allow an attacker to cause a denial of service...

5.5CVSS5.4AI score0.00164EPSS
Exploits0
NVD
NVD
added 2026/01/23 4:16 a.m.8 views

CVE-2025-15349

Anritsu ShockLine SCPI Race Condition Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Anritsu ShockLine. Authentication is not required to exploit this vulnerability. The specific flaw exists within t...

7.5CVSS0.00414EPSS
Exploits0References1
OSV
OSV
added 2026/01/23 4:16 a.m.4 views

CVE-2025-15349

Anritsu ShockLine SCPI Race Condition Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Anritsu ShockLine. Authentication is not required to exploit this vulnerability. The specific flaw exists within t...

7.5CVSS6.2AI score0.00414EPSS
Exploits0References1
CVE
CVE
added 2026/01/23 3:31 a.m.11 views

CVE-2025-15349

CVE-2025-15349 covers a race-condition vulnerability in the SCPI component of Anritsu ShockLine. The flaw arises from insufficient locking when operating on objects, allowing network-adjacent attackers to execute arbitrary code in the current process without authentication. Multiple sources confi...

7.5CVSS6.4AI score0.00414EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/01/23 3:31 a.m.3 views

CVE-2025-15349

Anritsu ShockLine SCPI Race Condition Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Anritsu ShockLine. Authentication is not required to exploit this vulnerability. The specific flaw exists within t...

7.5CVSS6.3AI score0.00414EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/01/23 12:0 a.m.5 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-004871)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004871 advisory. In the Linux kernel, the following vulnerability has been resolved: firmware: armscpi: Ensure scpiinfo is not assigned if the probe fails When scpi probe fails, at a...

7.8CVSS7AI score0.00161EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.8 views

MiracleLinux 8 : kernel-4.18.0-553.77.1.el8_10 (AXSA:2025-10931:75)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10931:75 advisory. kernel: nfsd: don't ignore the return code of svcprocregister CVE-2025-22026 kernel: netsched: hfsc: Fix a UAF vulnerability in class handling...

7.8CVSS7.3AI score0.00174EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.8 views

MiracleLinux 9 : kernel-5.14.0-611.9.1.el9_7 (AXSA:2025-11506:95)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-11506:95 advisory. kernel: firmware: armscpi: Ensure scpiinfo is not assigned if the probe fails CVE-2022-50087 kernel: sunrpc: fix client side handling of tls alerts...

7.8CVSS7.5AI score0.00528EPSS
Exploits0References23
RedhatCVE
RedhatCVE
added 2026/01/09 12:41 p.m.10 views

CVE-2023-25366

In Siglent SDS 1104X-E SDS1xx4X-EV6.1.37R9.ADS, insecure SCPI interface discloses web password...

9.8CVSS7AI score0.00408EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:41 p.m.7 views

CVE-2023-25367

Siglent SDS 1104X-E SDS1xx4X-EV6.1.37R9.ADS allows unfiltered user input resulting in Remote Code Execution RCE with SCPI interface or web server...

9.8CVSS7.7AI score0.0172EPSS
Exploits1References1
OSV
OSV
added 2026/01/08 9:25 a.m.14 views

CLSA-2026-1767864313 kernel: Fix of 46 CVEs

mm: hugetlb: fix UAF in hugetlbhandleuserfault CVE-2022-50630 - drm/amdkfd: fix potential kgdmem UAFs CVE-2023-53816 - net/mlx5e: Fix deadlock in tc route query code CVE-2023-53591 - PCI: Fix pcideviceispresent for VFs by checking PF CVE-2022-50636 - wifi: ath11k: fix monitor mode bringup crash...

7.8CVSS5.9AI score0.00272EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/12/31 12:0 a.m.1 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993066)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993066 advisory. In the Linux kernel, the following vulnerability has been resolved: firmware: armscpi: Ensure scpiinfo is not assigned if the probe fails When scpi probe fails, at a...

7.8CVSS6.2AI score0.00161EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/12/31 12:0 a.m.3 views

Unity Linux 20.1060a / 20.1070a Security Update: kernel (UTSA-2025-993020)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-993020 advisory. In the Linux kernel, the following vulnerability has been resolved: cpufreq: scpi: Fix null-ptr-deref in scpicpufreqgetrate cpufreqcpugetraw can return NULL when the...

5.5CVSS6.2AI score0.00164EPSS
Exploits0References4
Zero Day Initiative
Zero Day Initiative
added 2025/12/30 12:0 a.m.4 views

(0Day) Anritsu ShockLine SCPI Race Condition Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Anritsu ShockLine. Authentication is not required to exploit this vulnerability. The specific flaw exists within the SCPI component. The issue results from the lack of proper locking when...

7.5CVSS7.3AI score0.00414EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/12/30 12:0 a.m.2 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992695)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992695 advisory. In the Linux kernel, the following vulnerability has been resolved: cpufreq: scpi: Fix null-ptr-deref in scpicpufreqgetrate cpufreqcpugetraw can return NULL when the...

5.5CVSS6.2AI score0.00164EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/12/30 12:0 a.m.2 views

Unity Linux 20.1060e / 20.1070e Security Update: kernel (UTSA-2025-992388)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-992388 advisory. In the Linux kernel, the following vulnerability has been resolved: firmware: armscpi: Ensure scpiinfo is not assigned if the probe fails When scpi probe fails, at a...

7.8CVSS6.2AI score0.00161EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2025/12/04 12:50 p.m.5 views

kernel: firmware: arm_scpi: Ensure scpi_info is not assigned if the probe fails

In the Linux kernel, the following vulnerability has been resolved: firmware: armscpi: Ensure scpiinfo is not assigned if the probe fails When scpi probe fails, at any point, we need to ensure that the scpiinfo is not set and will remain NULL until the probe succeeds. If it is not taken care, the...

7.8CVSS6.8AI score0.00161EPSS
Exploits0References5
F5 Networks
F5 Networks
added 2025/11/25 2:37 p.m.6 views

K000157961: Linux kernel (SCPI) vulnerability CVE-2022-50087

Security Advisory Description In the Linux kernel, the following vulnerability has been resolved: firmware: armscpi: Ensure scpiinfo is not assigned if the probe fails When scpi probe fails, at any point, we need to ensure that the scpiinfo is not set and will remain NULL until the probe succeeds...

7.8CVSS5.4AI score0.00161EPSS
Exploits0
Rows per page
Query Builder