413 matches found
EUVD-2025-29586
Malicious code in bioql PyPI...
EUVD-2023-59866
Malicious code in bioql PyPI...
EUVD-2025-28954
Malicious code in bioql PyPI...
EUVD-2022-55277
Malicious code in bioql PyPI...
CVE-2025-39913
In the Linux kernel, the following vulnerability has been resolved: tcpbpf: Call skmsgfree when tcpbpfsendverdict fails to allocate psock-cork. syzbot reported the splat below. 0 The repro does the following: 1. Load a skmsg prog that calls bpfmsgcorkbytesmsg, corkbytes 2. Attach the prog to a...
AZL-74757 CVE-2025-39913 affecting package kernel for versions less than 5.15.200.1-1
In the Linux kernel, the following vulnerability has been resolved: tcpbpf: Call skmsgfree when tcpbpfsendverdict fails to allocate psock-cork. syzbot reported the splat below. 0 The repro does the following: 1. Load a skmsg prog that calls bpfmsgcorkbytesmsg, corkbytes 2. Attach the prog to a...
CVE-2025-10707
A weakness has been identified in JeecgBoot up to 3.8.2. Affected is an unknown function of the file /message/sysMessageTemplate/sendMsg. Executing manipulation can lead to improper authorization. The attack may be launched remotely. The exploit has been made available to the public and could be...
Incorrect User Management
Overview jeecgboot-vue3 is an Agent =============== 当前最新版本: 3.8.1(预计发布时间:2025-04-21) Affected versions of this package are vulnerable to Incorrect User Management via the sendMsg function in the /message/sysMessageTemplate/sendMsg path. An attacker can gain unauthorized access to sensitive...
CVE-2025-10707 JeecgBoot sendMsg improper authorization
A weakness has been identified in JeecgBoot up to 3.8.2. Affected is an unknown function of the file /message/sysMessageTemplate/sendMsg. Executing manipulation can lead to improper authorization. The attack may be launched remotely. The exploit has been made available to the public and could be...
CVE-2025-10707 JeecgBoot sendMsg improper authorization
A weakness has been identified in JeecgBoot up to 3.8.2. Affected is an unknown function of the file /message/sysMessageTemplate/sendMsg. Executing manipulation can lead to improper authorization. The attack may be launched remotely. The exploit has been made available to the public and could be...
PT-2025-38525
Name of the Vulnerable Software and Affected Versions JeecgBoot versions through 3.8.2 Description A weakness exists in JeecgBoot that may lead to improper authorization. The issue affects an unknown function within the /message/sysMessageTemplate/sendMsg file. The exploit for this issue has been...
CVE-2022-50409
In the Linux kernel, the following vulnerability has been resolved: net: If sock is dead don't access sock's skwq in skstreamwaitmemory Fixes the below NULL pointer dereference: ... 14.471200 Call Trace: 14.471562 14.471882 lockacquire+0x245/0x2e0 14.472416 ? removewaitqueue+0x12/0x50 14.473014 ?...
CVE-2022-50397
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...
DEBIAN-CVE-2022-50397
In the Linux kernel, the following vulnerability has been resolved: net/ieee802154: reject zero-sized rawsendmsg syzbot is hitting skbassertlen warning at rawsendmsg for ieee802154 socket. What commit dc633700f00f726e "net/afpacket: check len when minheaderlen equals to 0" does also applies to...
PT-2025-38345
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue where zero-sized raw sendmsg calls are not properly rejected in the ieee802154 socket. This can lead to a skb assert len warning during message...
PT-2025-40627
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the Linux kernel's crypto/af alg component where a crash can occur if an error interrupts the af alg sendmsg function. Specifically, if an error causes the function to...
Linux Distros Unpatched Vulnerability : CVE-2025-39828
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - atm: atmtcp: Prevent arbitrary write in atmtcprecvcontrol. syzbot reported the splat below. 0 When atmtcpvopen or atmtcpvclose is called via connect or close,...
SUSE CVE-2025-39828
In the Linux kernel, the following vulnerability has been resolved: atm: atmtcp: Prevent arbitrary write in atmtcprecvcontrol. syzbot reported the splat below. 0 When atmtcpvopen or atmtcpvclose is called via connect or close, atmtcpsendcontrol is called to send an in-kernel special message. The...
DEBIAN-CVE-2025-39828
In the Linux kernel, the following vulnerability has been resolved: atm: atmtcp: Prevent arbitrary write in atmtcprecvcontrol. syzbot reported the splat below. 0 When atmtcpvopen or atmtcpvclose is called via connect or close, atmtcpsendcontrol is called to send an in-kernel special message. The...
AZL-67392 CVE-2025-39828 affecting package kernel for versions less than 6.6.104.2-1
In the Linux kernel, the following vulnerability has been resolved: atm: atmtcp: Prevent arbitrary write in atmtcprecvcontrol. syzbot reported the splat below. 0 When atmtcpvopen or atmtcpvclose is called via connect or close, atmtcpsendcontrol is called to send an in-kernel special message. The...