Lucene search
+L

716 matches found

Cvelist
Cvelist
added 5 hours ago4 views

CVE-2026-64142 ksmbd: close durable scavenger races against m_fp_list lookups

In the Linux kernel, the following vulnerability has been resolved: ksmbd: close durable scavenger races against mfplist lookups ksmbddurablescavenger has two related races against any walker that iterates fci-mfplist, including ksmbdlookupfdinode used by ksmbdvfsrename and the share-mode checks ...

Exploits0References5
CVE
CVE
added 5 hours ago3 views

CVE-2026-64138

The CVE affects the Linux kernel’s ksmbd component, addressing a vulnerability in ACL inheritance where the Owner/Group SIDs in the NT Security Descriptor could be mishandled. The fix adds a dedicated helper, smb_validate_ntsd_sid(), to safely validate the Owner SID and Group SID inside the NT Se...

5.3AI score
Exploits0References4
NVD
NVD
added 9 hours ago3 views

CVE-2026-53383

In the Linux kernel, the following vulnerability has been resolved: ksmbd: reject non-VALID session in compound request branch smb2checkusersession takes a shortcut for any operation that is not the first in a COMPOUND request: it reuses work-sess the session bound by the first operation and...

Exploits0References8
Positive Technologies
Positive Technologies
added 21 hours ago4 views

PT-2026-61455

In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate SID in parent security descriptor during ACL inheritance Introduce smb validate ntsd sid helper to safely validate Owner SID and Group SID inside the NT Security Descriptor smb ntsd retrieved from the parent...

5.3AI score
Exploits0References5
Microsoft CVE
Microsoft CVE
added 5 days ago14 views

Windows SMB Server Network Transport Driver (srvnet.sys) Remote Code Execution Vulnerability

Use after free in Windows SMB Server Network Transport Driver srvnet.sys allows an unauthorized attacker to execute code over a network...

9.8CVSS6.2AI score0.0061EPSS
Exploits0
BDU FSTEC
BDU FSTEC
added 2026/07/07 12:0 a.m.4 views

The vulnerability of the smb2_sess_setup() function in the fs/smb/server/smb2pdu.c module, which is part of the SMB server support in Linux kernel, allows a hacker to cause a service failure.

The vulnerability of the smb2sesssetup function in the fs/smb/server/smb2pdu.c module of the SMB server implementation in Linux operating systems is related to errors during link counters updates. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS5.2AI score0.00162EPSS
Exploits0References10Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/06/28 12:0 a.m.6 views

The vulnerability of the smb2_read() function in the fs/smb/server/smb2pdu.c module of the SMB server support module in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the smb2read function in the fs/smb/server/smb2pdu.c module of the SMB server module in the Linux operating system is related to improper memory release memory leak. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS5.8AI score0.00162EPSS
Exploits0References10Affected Software2
Tenable Nessus
Tenable Nessus
added 2026/06/28 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2026-52996

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ksmbd: fix durable fd leak on ClientGUID mismatch in durable v2 open ksmbdlookupfdcguid returns a ksmbdfile with its refcount incremented via ksmbdfpget...

5.5CVSS5.8AI score0.00135EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.4 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: smb/server: Fixed the refcount leak in parsedurablehandlecontext. When the command is a replay operation and -ENOEXEC is returned, the refcount of ksmbdfile must be released...

5.5CVSS5.7AI score0.00122EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.13 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: smb: Server: Fixed a leak of activenumconn in ksmbdtcpnewconnection. When ksmbdtcpnewconnection fails due to a kthreadrun failure, the transport is freed using freetransport, which does not decrement activenumconn, resulting in a...

5.5CVSS5.7AI score0.00118EPSS
Exploits0References2
Snyk
Snyk
added 2026/06/15 5:18 p.m.11 views

External Control of File Name or Path

Overview launch-editor is a launch editor from node.js Affected versions of this package are vulnerable to External Control of File Name or Path in the handling of UNC paths on Windows systems. An attacker can obtain NTLMv2 password hashes by tricking a user into accessing a malicious SMB server...

8.3CVSS5.4AI score0.00322EPSS
Exploits0References2
OSV
OSV
added 2026/06/15 5:18 p.m.6 views

GHSA-V6WH-96G9-6WX3 launch-editor: NTLMv2 hash disclosure via UNC path handling on Windows

Summary The launch-editor NPM package accesses arbitrary paths including Windows UNC paths. When a UNC path is opened, Windows automatically attempts NTLM authentication to the remote host, causing the user’s NTLMv2 password hash to be leaked to an attacker-controlled SMB server. This can result ...

5.5CVSS5.8AI score0.00322EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/06/15 12:0 a.m.20 views

PT-2026-49575

Name of the Vulnerable Software and Affected Versions launch-editor versions prior to 2.14.1 Description The launch-editor NPM package allows the access of arbitrary paths, including Windows UNC Universal Naming Convention paths. On Windows systems, accessing a UNC path triggers an automatic NTLM...

5.5CVSS6AI score0.00322EPSS
Exploits0References4
Spring Security Advisories
Spring Security Advisories
added 2026/06/10 12:0 a.m.12 views

cve-2026-40987 - HIGH - Remote-file synchronizer in Spring Integration writes server-supplied filename under localDirectory without canonicalization

cve-2026-40987 - HIGH - Remote-file synchronizer in Spring Integration writes server-supplied filename under localDirectory without canonicalization...

7.1CVSS6.1AI score0.0021EPSS
Exploits0
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: smb: server: avoid double-free in smbdirectfreesendmsg after smbdirectFlushsendlist smbdirectFlushsendlist already calls smbdirectfreesendmsg; therefore, we should not call it again after postsendmsg. It has been moved to the...

9.8CVSS5.8AI score0.00457EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: smb: server: The use of smbdirectsocketrecvio.credits.available has been removed. The logic for managing recv credits by counting posted recvio and granted credits is flawed. This is because the peer might have already consumed a...

7.5CVSS5.7AI score0.00426EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.11 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: smb: server: Fixed a leak in activenumconn when there is a failure in transport allocation. The commit 77ffbcac4e56 “smb: server: fixed the leak in activenumconn in ksmbdtcpnewconnection” addresses the failure path in kthreadrun...

7.5CVSS6AI score0.00542EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: smb: server: The senddone handler now handles completion without using IBSENDSIGNALED. With smbdirectsendbatch, we likely have requests that do not include IBSENDSIGNALED. These requests will be destroyed during the final request...

9.8CVSS5.7AI score0.00442EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: smb/server: The function ksmbdsessionrpcclose is called on the error path in the createsmb2pipe function. When the ksmbdiovpinrsp function fails, we should call ksmbdsessionrpcclose...

7.8CVSS6AI score0.0013EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerability found in Linux 5.10, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: ksmbd: Fixed a reference count leak when an invalid session is found during session lookup. When a session is found, but its state is not SMB2SESSIONVALID, it indicates that no valid session was found. However, the reference coun...

5.5CVSS6.1AI score0.00118EPSS
Exploits0References1
Rows per page
Query Builder