Lucene search
K

254 matches found

OSV
OSV
added 2025/05/20 4:15 p.m.7 views

DEBIAN-CVE-2025-37945

In the Linux kernel, the following vulnerability has been resolved: net: phy: allow MDIO bus PM ops to start/stop state machine for phylink-controlled PHY DSA has 2 kinds of drivers: 1. Those who call dsaswitchsuspend and dsaswitchresume from their device PM ops: qca8k-8xxx, bcmsf2, microchip ksz...

5.5CVSS5.8AI score0.00159EPSS
Exploits0References1
OSV
OSV
added 2025/05/20 4:15 p.m.2 views

UBUNTU-CVE-2025-37945

In the Linux kernel, the following vulnerability has been resolved: net: phy: allow MDIO bus PM ops to start/stop state machine for phylink-controlled PHY DSA has 2 kinds of drivers: 1. Those who call dsaswitchsuspend and dsaswitchresume from their device PM ops: qca8k-8xxx, bcmsf2, microchip ksz...

5.5CVSS6.2AI score0.00159EPSS
Exploits0References26
Cvelist
Cvelist
added 2025/05/20 3:58 p.m.18 views

CVE-2025-37945 net: phy: allow MDIO bus PM ops to start/stop state machine for phylink-controlled PHY

In the Linux kernel, the following vulnerability has been resolved: net: phy: allow MDIO bus PM ops to start/stop state machine for phylink-controlled PHY DSA has 2 kinds of drivers: 1. Those who call dsaswitchsuspend and dsaswitchresume from their device PM ops: qca8k-8xxx, bcmsf2, microchip ksz...

0.00159EPSS
Exploits0References6
CVE
CVE
added 2025/05/20 3:58 p.m.99 views

CVE-2025-37945

CVE-2025-37945 — Linux kernel (net/phy, DSA) Affects MDIO bus PM ops for phylink-controlled PHYs. In drivers without MAC-managed PM, mdio_bus_phy_suspend() did not call phy_stop_machine() because phylink’s phydev->adjust_link is NULL, so the PHY state machine kept running. Consequently, mdio_b...

5.5CVSS6.9AI score0.00159EPSS
Exploits0References6Affected Software1
Packet Storm News
Packet Storm News
added 2025/05/19 12:0 a.m.12 views

An Automated Blackbox Noncompliance Checker for QUIC Server Implementations

We develop QUICtester, an automated approach for uncovering non-compliant behaviors in the ratified QUIC protocol implementations RFC 9000/9001. QUICtester leverages active automata learning to abstract the behavior of a QUIC implementation into a finite state machine FSM representation. Unlike...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/05/09 12:0 a.m.5 views

Measuring Security in 5G and Future Networks

In today's increasingly interconnected and fast-paced digital ecosystem, mobile networks, such as 5G and future generations such as 6G, play a pivotal role and must be considered as critical infrastructures. Ensuring their security is paramount to safeguard both individual users and the industrie...

6.9AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/04/03 5:36 a.m.3 views

Malicious code in start-state-machine (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 817dc6cbfa89267c683591874924c9aaf14005ca7e5da82c2d7ee55fccb52c76 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

6.9AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.8 views

The vulnerability of the FSM component of Intel microprogramming systems, which allows a hacker to trigger a service failure.

The vulnerability of the FSM component in Intel microprogramming systems relates to the checking of incorrect conditions. Exploiting this vulnerability can allow attackers to cause malfunctions in the system’s operation...

4.7CVSS5.8AI score0.00203EPSS
Exploits0References11Affected Software6
NVD
NVD
added 2025/03/12 5:15 p.m.18 views

CVE-2025-25774

An issue was discovered in Open5GS v2.7.2. When a UE switches between two gNBs and sends a handover request at a specific time, it may cause an exception in the AMF's internal state machine, leading to an AMF crash and resulting in a Denial of Service DoS...

6.5CVSS0.00393EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/03/12 12:0 a.m.6 views

PT-2025-11111 · Open5Gs · Open5Gs

Name of the Vulnerable Software and Affected Versions: Open5GS version 2.7.2 Description: An issue in Open5GS can cause an exception in the AMF's internal state machine when a UE switches between two gNBs and sends a handover request at a specific time. This can lead to an AMF crash, resulting in...

6.5CVSS6AI score0.00393EPSS
Exploits1References9
SUSE CVE
SUSE CVE
added 2025/02/27 3:3 a.m.2 views

SUSE CVE-2022-49655

In the Linux kernel, the following vulnerability has been resolved: fscache: Fix invalidation/lookup race If an NFS file is opened for writing and closed, fscacheinvalidate will be asked to invalidate the file - however, if the cookie is in the LOOKINGUP state or the CREATING state, then request ...

5.5CVSS6.8AI score0.0014EPSS
Exploits0References5
OSV
OSV
added 2025/02/26 7:1 a.m.1 views

DEBIAN-CVE-2022-49730

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Resolve NULL ptr dereference after an ELS LOGO is aborted A use-after-free crash can occur after an ELS LOGO is aborted. Specifically, a nodelist structure is freed and then ndlp-vport-cfglogverbose is dereferenced in...

7.8CVSS4.7AI score0.0003EPSS
Exploits0References1
OSV
OSV
added 2025/02/26 7:1 a.m.3 views

DEBIAN-CVE-2022-49655

In the Linux kernel, the following vulnerability has been resolved: fscache: Fix invalidation/lookup race If an NFS file is opened for writing and closed, fscacheinvalidate will be asked to invalidate the file - however, if the cookie is in the LOOKINGUP state or the CREATING state, then request ...

4.7CVSS5.3AI score0.0014EPSS
Exploits0References1
OSV
OSV
added 2025/02/26 7:1 a.m.3 views

UBUNTU-CVE-2022-49655

In the Linux kernel, the following vulnerability has been resolved: fscache: Fix invalidation/lookup race If an NFS file is opened for writing and closed, fscacheinvalidate will be asked to invalidate the file - however, if the cookie is in the LOOKINGUP state or the CREATING state, then request ...

4.7CVSS6.1AI score0.0014EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2025/02/26 2:24 a.m.8 views

CVE-2022-49730 scsi: lpfc: Resolve NULL ptr dereference after an ELS LOGO is aborted

In the Linux kernel, the following vulnerability has been resolved: scsi: lpfc: Resolve NULL ptr dereference after an ELS LOGO is aborted A use-after-free crash can occur after an ELS LOGO is aborted. Specifically, a nodelist structure is freed and then ndlp-vport-cfglogverbose is dereferenced in...

7.4AI score0.0003EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/02/12 12:0 a.m.3 views

Intel Processors 安全漏洞

Intel Processors are a family of processors from Intel Corporation USA. A security vulnerability exists in Intel Processors that stems from a Finite State Machine FSM design flaw that could allow a privileged user to trigger a denial of service via local access...

5.6CVSS5.3AI score0.00211EPSS
Exploits0References2
NVD
NVD
added 2025/02/03 10:15 p.m.15 views

CVE-2025-24371

CometBFT is a distributed, Byzantine fault-tolerant, deterministic state machine replication engine. In the blocksync protocol peers send their base and latest heights when they connect to a new node A, which is syncing to the tip of a network. base acts as a lower ground and informs A that the...

7.1CVSS0.00447EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/01/15 12:0 a.m.6 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from an FSM command timeout...

5.5CVSS6.6AI score0.00217EPSS
Exploits0References7
BDU FSTEC
BDU FSTEC
added 2024/10/29 12:0 a.m.13 views

The vulnerability of the FSM component of Intel microprogramming systems, which allows a hacker to trigger a service failure.

The vulnerability of the FSM component in Intel microprogramming systems relates to the checking of incorrect conditions. Exploiting this vulnerability can allow attackers to cause malfunctions in the system’s operation...

5.3CVSS6.2AI score0.00184EPSS
Exploits0References10Affected Software5
SUSE CVE
SUSE CVE
added 2024/10/25 3:6 a.m.7 views

SUSE CVE-2024-49998

In the Linux kernel, the following vulnerability has been resolved: net: dsa: improve shutdown sequence Alexander Sverdlin presents 2 problems during shutdown with the lan9303 driver. One is specific to lan9303 and the other just happens to reproduce there. The first problem is that lan9303 is...

5.5CVSS7.2AI score0.00173EPSS
Exploits0References15
Rows per page
Query Builder