Lucene search
K

8 matches found

Veracode
Veracode
added 2026/05/30 7:9 a.m.11 views

Path Traversal

lsfusion.platform, web-client is vulnerable to Path Traversal. The vulnerability is due to improper validation of the sid argument in the UploadFileRequestHandler component, which allows a remote attacker to perform path traversal by manipulating the parameter and accessing files outside the...

9.8CVSS7.2AI score0.00513EPSS
Exploits1References6Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-9375

Malicious code in bioql PyPI...

7.2AI score0.00182EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/04/04 2:58 a.m.4 views

SUSE CVE-2025-21946

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix out-of-bounds in parsesecdesc If osidoffset, gsidoffset and dacloffset could be greater than smbntsd struct size. If it is smaller, It could cause slab-out-of-bounds. And when validating sid, It need to check it includ...

7.1CVSS7.6AI score0.00182EPSS
Exploits0References3
OSV
OSV
added 2025/04/01 4:15 p.m.3 views

DEBIAN-CVE-2025-21946

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix out-of-bounds in parsesecdesc If osidoffset, gsidoffset and dacloffset could be greater than smbntsd struct size. If it is smaller, It could cause slab-out-of-bounds. And when validating sid, It need to check it includ...

7.1CVSS5.6AI score0.00182EPSS
Exploits0References1
NVD
NVD
added 2025/04/01 4:15 p.m.9 views

CVE-2025-21946

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix out-of-bounds in parsesecdesc If osidoffset, gsidoffset and dacloffset could be greater than smbntsd struct size. If it is smaller, It could cause slab-out-of-bounds. And when validating sid, It need to check it includ...

7.1CVSS0.00182EPSS
Exploits0References5
CVE
CVE
added 2025/04/01 3:41 p.m.98 views

CVE-2025-21946

The CVE-2025-21946 entry affects the Linux kernel ksmbd component; the issue is a slab-out-of-bounds in parse_sec_desc() caused by offsets (osidoffset, gsidoffset, dacloffset) exceeding the smb_ntsd structure, and by not verifying the subauth array size when validating a SID. The connected Astra ...

7.1CVSS7.1AI score0.00182EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2025/04/01 3:41 p.m.8 views

CVE-2025-21946 ksmbd: fix out-of-bounds in parse_sec_desc()

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix out-of-bounds in parsesecdesc If osidoffset, gsidoffset and dacloffset could be greater than smbntsd struct size. If it is smaller, It could cause slab-out-of-bounds. And when validating sid, It need to check it includ...

7.1CVSS6AI score0.00182EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2025/02/18 12:0 a.m.6 views

PT-2025-14327

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to an out-of-bounds error in the parse sec desc function within the ksmbd component of the Linux kernel. This occurs when osidoffset, gsidoffset, and dacloffset are...

7.8CVSS6.7AI score0.23278EPSS
Exploits0References457
Rows per page
Query Builder