Lucene search
K

735 matches found

OSSF Malicious Packages
OSSF Malicious Packages
added 2026/03/18 1:7 p.m.9 views

Malicious code in ref-selector (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0eccb0ad0032090e5db9e517390d5f67fec7413858f4422498155a54ed1260ce The package ref-selector was found to contain malicious code...

5.8AI score
Exploits0
OSV
OSV
added 2026/03/18 1:7 p.m.6 views

MAL-2026-1840 Malicious code in ref-selector (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 0eccb0ad0032090e5db9e517390d5f67fec7413858f4422498155a54ed1260ce The package ref-selector was found to contain malicious code...

5.8AI score
Exploits0
CNNVD
CNNVD
added 2026/03/11 12:0 a.m.9 views

OpenEMR 跨站脚本漏洞

OpenEMR is a set of open-source medical management systems developed by the OpenEMR community. This system can be used for medical practice management, electronic medical records, prescription writing, and medical billing applications. Versions of OpenEMR prior to 8.0.0.1 contained a cross-site...

5.4CVSS5.8AI score0.00162EPSS
Exploits1References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/03/10 1:4 a.m.11 views

Malicious code in iron-selector (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b219543968961b0fe1a0bd84edace79d5f998e51149888798e20f08acd032d4 The package iron-selector was found to contain malicious code. Source: ghsa-malware 7cf6c5d1914db2c2a15acb98795a4adddfd3847f9e921c75e4b9f0e2a1890946...

5.7AI score
Exploits0References1
OSV
OSV
added 2026/03/10 1:4 a.m.5 views

MAL-2026-1314 Malicious code in iron-selector (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b219543968961b0fe1a0bd84edace79d5f998e51149888798e20f08acd032d4 The package iron-selector was found to contain malicious code. Source: ghsa-malware 7cf6c5d1914db2c2a15acb98795a4adddfd3847f9e921c75e4b9f0e2a1890946...

5.7AI score
Exploits0References1
Snyk
Snyk
added 2026/03/10 1:4 a.m.3 views

Malicious Package

Overview iron-selector is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...

9.8CVSS5.8AI score
Exploits0References2
Packet Storm
Packet Storm
added 2026/02/02 12:0 a.m.121 views

📄 Serendipity 1.6.2 Cross Site Scripting

Multiple cross site scripting vulnerabilities exist in Serendipity version 1.6.2. These vulnerabilities allow remote attackers to inject arbitrary web script or HTML. This issue is older research added to the archive. Serendipity 1.6.2 - Cross-site Scripting Advisory ID: RO-13-002 Severity: Mediu...

5.2AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/27 12:0 a.m.4 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005190)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005190 advisory. In the Linux kernel, the following vulnerability has been resolved: xfrm: validate new SA's prefixlen using SA family when sel.family is unset This expands the...

5.5CVSS5.8AI score0.00259EPSS
Exploits0References3
SUSE CVE
SUSE CVE
added 2025/12/25 12:54 a.m.3 views

SUSE CVE-2023-54141

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: Add missing hwops-getringselector for IPQ5018 During sending data after clients connected, hwops-getringselector will be called. But for IPQ5018, this member isn't set, and the following NULL pointer exception will ...

5.5CVSS6.4AI score0.00173EPSS
Exploits0References17
EUVD
EUVD
added 2025/12/24 3:30 p.m.5 views

EUVD-2023-60304

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: Add missing hwops-getringselector for IPQ5018 During sending data after clients connected, hwops-getringselector will be called. But for IPQ5018, this member isn't set, and the following NULL pointer exception will ...

5.9AI score0.00173EPSS
Exploits0References4
NVD
NVD
added 2025/12/24 1:16 p.m.5 views

CVE-2023-54141

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: Add missing hwops-getringselector for IPQ5018 During sending data after clients connected, hwops-getringselector will be called. But for IPQ5018, this member isn't set, and the following NULL pointer exception will ...

0.00173EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/12/24 1:16 p.m.4 views

CVE-2023-54141

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: Add missing hwops-getringselector for IPQ5018 During sending data after clients connected, hwops-getringselector will be called. But for IPQ5018, this member isn't set, and the following NULL pointer exception will ...

5.7AI score0.00173EPSS
Exploits0References4
OSV
OSV
added 2025/12/24 1:16 p.m.2 views

UBUNTU-CVE-2023-54141

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: Add missing hwops-getringselector for IPQ5018 During sending data after clients connected, hwops-getringselector will be called. But for IPQ5018, this member isn't set, and the following NULL pointer exception will ...

5.7AI score0.00173EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/12/24 1:6 p.m.25 views

CVE-2023-54141 wifi: ath11k: Add missing hw_ops->get_ring_selector() for IPQ5018

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: Add missing hwops-getringselector for IPQ5018 During sending data after clients connected, hwops-getringselector will be called. But for IPQ5018, this member isn't set, and the following NULL pointer exception will ...

0.00173EPSS
Exploits0References3
CVE
CVE
added 2025/12/24 1:6 p.m.17 views

CVE-2023-54141

CVE-2023-54141 describes a Linux kernel issue in the wifi driver for ath11k on IPQ5018. The root cause is a missing hw_ops->get_ring_selector() implementation; after clients connect, the code calls get_ring_selector() but the member is not set for IPQ5018, causing a NULL pointer dereference in...

6AI score0.00173EPSS
Exploits0References3
OSV
OSV
added 2025/12/24 1:6 p.m.6 views

CVE-2023-54141 wifi: ath11k: Add missing hw_ops->get_ring_selector() for IPQ5018

In the Linux kernel, the following vulnerability has been resolved: wifi: ath11k: Add missing hwops-getringselector for IPQ5018 During sending data after clients connected, hwops-getringselector will be called. But for IPQ5018, this member isn't set, and the following NULL pointer exception will ...

6.3AI score0.00173EPSS
Exploits0References6
CNNVD
CNNVD
added 2025/12/24 12:0 a.m.5 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the lack of the hwops-getringselector function, which could lead to a null pointer dereference...

6AI score0.00173EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/12/24 12:0 a.m.6 views

PT-2025-53218

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the ath11k module related to the handling of data transmission after client connections. Specifically, the hw ops-get ring selector function is...

5.9AI score0.00173EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2025/12/24 12:0 a.m.2 views

Linux Distros Unpatched Vulnerability : CVE-2023-54141

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - wifi: ath11k: Add missing hwops-getringselector for IPQ5018 During sending data after clients connected, hwops-getringselector will be called. But for IPQ5018,...

5.8AI score0.00173EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2025/12/19 9:32 p.m.6 views

Tuta Mail has DOM attribute and CSS injection in its Contact Viewer feature

Impact Users importing contacts from untrusted sources. Specifically crafted contact data can lead to some of DOM modifications for the link button next to the field e.g. the link address can be overriden. CSS can be manipulated to give the button arbitrary look and change it's size so that any...

6.9AI score
Exploits0References8Affected Software1
Rows per page
Query Builder