Lucene search
+L

173 matches found

NVD
NVD
added 2026/06/30 5:16 p.m.10 views

CVE-2026-10652

Zephyr's DNS resolver subsys/net/lib/dns parses resource records from DNS responses in dnsunpackanswer, which validated only the fixed RR header type, class, TTL, rdlength and accepted any attacker-declared rdlength, including one extending past the end of the received datagram. The TXT and SRV...

7.4CVSS0.00252EPSS
Exploits1References2
CVE
CVE
added 2026/06/30 3:50 p.m.15 views

CVE-2026-10652

Zephyr’s DNS resolver (subsys/net/lib/dns) is vulnerable to an out-of-bounds read in TXT/SRV records due to unvalidated rdlength in dns_unpack_answer(). The resolver accepts attacker-declared rdlength that may extend past the datagram end, and dns_validate_record() copies up to rdlength bytes fro...

7.4CVSS5.8AI score0.00252EPSS
Exploits1References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/06/30 3:50 p.m.7 views

CVE-2026-10652

Zephyr's DNS resolver subsys/net/lib/dns parses resource records from DNS responses in dnsunpackanswer, which validated only the fixed RR header type, class, TTL, rdlength and accepted any attacker-declared rdlength, including one extending past the end of the received datagram. The TXT and SRV...

7.4CVSS5.8AI score0.00252EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2026/06/26 8:17 p.m.3 views

DEBIAN-CVE-2026-53313

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid NULL dereference in dcdmubsrv error paths In dcdmubsrvlogdiagnosticdata and dcdmubsrvenabledpiatrace. Both functions check: if !dcdmubsrv || !dcdmubsrv-dmub and then call DCLOGERROR inside that block...

5.5CVSS5.7AI score0.001EPSS
Exploits0References1
OSV
OSV
added 2026/06/26 8:17 p.m.6 views

UBUNTU-CVE-2026-53313

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid NULL dereference in dcdmubsrv error paths In dcdmubsrvlogdiagnosticdata and dcdmubsrvenabledpiatrace. Both functions check: if !dcdmubsrv || !dcdmubsrv-dmub and then call DCLOGERROR inside that block...

5.5CVSS5.7AI score0.001EPSS
Exploits0References5
Debian CVE
Debian CVE
added 2026/06/26 7:41 p.m.10 views

CVE-2026-53313

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Avoid NULL dereference in dcdmubsrv error paths In dcdmubsrvlogdiagnosticdata and dcdmubsrvenabledpiatrace. Both functions check: if !dcdmubsrv || !dcdmubsrv-dmub and then call DCLOGERROR inside that block...

5.5CVSS5.7AI score0.001EPSS
Exploits0
CVE
CVE
added 2026/06/26 7:41 p.m.16 views

CVE-2026-53313

CVE-2026-53313 is a Linux kernel vulnerability in the drm/amd/display path where NULL pointer dereference can occur in logging paths. Specifically, in dc_dmub_srv_log_diagnostic_data() and dc_dmub_srv_enable_dpia_trace(), code checked if (!dc_dmub_srv || !dc_dmub_srv->dmub) and then invoked DC...

5.5CVSS5.8AI score0.001EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/05/26 9:29 p.m.42 views

CVE-2026-42012 Gnutls: gnutls: certificate validation bypass due to improper handling of uri and srv sans

A flaw was found in gnutls. A remote attacker could exploit this vulnerability by presenting a specially crafted certificate that contains Uniform Resource Identifier URI or Service SRV Subject Alternative Names SANs. This could cause the certificate validation process to incorrectly fall back to...

7.1CVSS0.00354EPSS
Exploits0References15
RedhatCVE
RedhatCVE
added 2026/05/06 8:47 p.m.10 views

CVE-2026-43184

A flaw was found in the Linux kernel's rnbd-srv component. This vulnerability arises from the failure to properly clear the response buffer before sending data. A remote client could potentially receive unintended data, leading to information disclosure...

7.5CVSS5.9AI score0.00444EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/06 12:30 p.m.8 views

EUVD-2026-27744

In the Linux kernel, the following vulnerability has been resolved: rnbd-srv: Zero the rsp buffer before using it Before using the data buffer to send back the response message, zero it completely. This prevents any stray bytes to be picked up by the client side when there the message is exchange...

5.8AI score0.00444EPSS
Exploits0References9
ATTACKERKB
ATTACKERKB
added 2026/05/06 11:27 a.m.6 views

CVE-2026-43184

In the Linux kernel, the following vulnerability has been resolved: rnbd-srv: Zero the rsp buffer before using it Before using the data buffer to send back the response message, zero it completely. This prevents any stray bytes to be picked up by the client side when there the message is exchange...

5.8AI score0.00444EPSS
Exploits0References9Affected Software1
Cvelist
Cvelist
added 2026/05/06 11:27 a.m.32 views

CVE-2026-43184 rnbd-srv: Zero the rsp buffer before using it

In the Linux kernel, the following vulnerability has been resolved: rnbd-srv: Zero the rsp buffer before using it Before using the data buffer to send back the response message, zero it completely. This prevents any stray bytes to be picked up by the client side when there the message is exchange...

7.5CVSS0.00444EPSS
Exploits0References8
OSV
OSV
added 2026/05/06 11:27 a.m.4 views

CVE-2026-43184 rnbd-srv: Zero the rsp buffer before using it

In the Linux kernel, the following vulnerability has been resolved: rnbd-srv: Zero the rsp buffer before using it Before using the data buffer to send back the response message, zero it completely. This prevents any stray bytes to be picked up by the client side when there the message is exchange...

7.5CVSS6.6AI score0.00444EPSS
Exploits0References11
CNNVD
CNNVD
added 2026/05/06 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the kernel used by the Linux operating system developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the fact that the rnbd-srv component does not clear the data buffer before sending a response,...

7.5CVSS5.9AI score0.00444EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/05/06 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2026-43184

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - rnbd-srv: Zero the rsp buffer before using it Before using the data buffer to send back the response message, zero it completely. This prevents any stray bytes ...

7.5CVSS7AI score0.00444EPSS
Exploits0References2
NVD
NVD
added 2026/02/05 12:15 a.m.5 views

CVE-2019-25272

TexasSoft CyberPlanet 6.4.131 contains an unquoted service path vulnerability in the CCSrvProxy service that allows local attackers to execute arbitrary code. Attackers can exploit the unquoted path in 'C:\Program Files x86\TenaxSoft\CyberPlanet\SrvProxy.exe' to inject malicious executables and...

8.5CVSS0.0015EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/01/13 2:1 p.m.4 views

Astra Linux – Vulnerability in python-kdcproxy

If kdcproxy receives a request for a realm whose configuration does not define any server addresses, it will, by default, query DNS zone records that match the requested realm name. This creates a server-side request-forgery vulnerability, as an attacker could send a request for a realm that...

8.6CVSS7.3AI score0.00447EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/12/08 12:0 a.m.8 views

Amazon Linux 2 : python-kdcproxy, --advisory ALAS2-2025-3085 (ALAS-2025-3085)

The version of python-kdcproxy installed on the remote host is prior to 0.3.3-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2025-3085 advisory. If kdcproxy receives a request for a realm which does not have server addresses defined in its configuration, by...

8.6CVSS6.2AI score0.00511EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2025/11/20 8:10 a.m.5 views

python-kdcproxy: Unauthenticated SSRF via Realm‑Controlled DNS SRV

If kdcproxy receives a request for a realm which does not have server addresses defined in its configuration, by default, it will query SRV records in the DNS zone matching the requested realm name. This creates a server-side request forgery vulnerability, since an attacker could send a request f...

8.6CVSS5.9AI score0.00447EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/11/12 4:35 p.m.5 views

CVE-2025-59088

If kdcproxy receives a request for a realm which does not have server addresses defined in its configuration, by default, it will query SRV records in the DNS zone matching the requested realm name. This creates a server-side request forgery vulnerability, since an attacker could send a request f...

8.6CVSS6.6AI score0.00447EPSS
Exploits0References4
Rows per page
Query Builder