Astra Linux - уязвимость в linux-5.10, linux-6.1

In the Linux kernel, the following vulnerabilities have been resolved: hwmon: w83791d Convert macros to functions to avoid Time-of-Check to Time-of-Use race conditions. The macro FANFROMREG evaluates its arguments multiple times. When used in lockless contexts involving shared driver data, this...

PT-2026-34941

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue exists in the Linux kernel within the folio unmap invalidate function. The problem occurs when filemap free folio is called without a reference to or a lock on the...

CVE-2026-5686

Summary: CVE-2026-5686 affects Tenda CX12L 16.03.53.12. The vulnerability targets the function fromRouteStatic in the file /goform/RouteStatic, where manipulating the argument page causes a stack-based buffer overflow. Exploitation can be performed remotely, and a public exploit has been released...

EUVD-2026-8518

A vulnerability was identified in Tenda F453 1.0.0.3. The affected element is the function fromRouteStatic of the file /goform/RouteStatic of the component httpd. Such manipulation of the argument page leads to buffer overflow. The attack can be launched remotely. The exploit is publicly availabl...

CVE-2026-3166

A vulnerability was identified in Tenda F453 1.0.0.3. The affected element is the function fromRouteStatic of the file /goform/RouteStatic of the component httpd. Such manipulation of the argument page leads to buffer overflow. The attack can be launched remotely. The exploit is publicly availabl...

SUSE CVE-2025-71111

In the Linux kernel, the following vulnerability has been resolved: hwmon: w83791d Convert macros to functions to avoid TOCTOU The macro FANFROMREG evaluates its arguments multiple times. When used in lockless contexts involving shared driver data, this leads to Time-of-Check to Time-of-Use TOCTO...

UBUNTU-CVE-2025-71111

In the Linux kernel, the following vulnerability has been resolved: hwmon: w83791d Convert macros to functions to avoid TOCTOU The macro FANFROMREG evaluates its arguments multiple times. When used in lockless contexts involving shared driver data, this leads to Time-of-Check to Time-of-Use TOCTO...

CVE-2025-12271

A vulnerability was identified in Tenda CH22 1.0.0.1. This affects the function fromRouteStatic of the file /goform/RouteStatic. Such manipulation of the argument page leads to buffer overflow. The attack can be launched remotely. The exploit is publicly available and might be used...

PT-2026-2872

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A Time-of-Check to Time-of-Use TOCTOU race condition exists in the Linux kernel due to the repeated evaluation of arguments within the FAN FROM REG macro. This can lead to divide-by-zero...

CVE-2024-46046

Tenda FH451 v1.0.0.9 has a stack overflow vulnerability located in the RouteStatic function...

Privilege Escalation

sinatra is vulnerable to Privilege Escalation. The vulnerability exists in static! function in base.rb because it doesn't validate expanded path matches publicdir when serving static files which allows an attacker to gain access to the system and perform unauthorized actions...

PT-2020-17372 · Mediawiki +1 · Mediawiki +2

Name of the Vulnerable Software and Affected Versions: MediaWiki versions through 1.35.1 Widgets extension for MediaWiki versions through 1.35.1 Description: An issue was discovered in the Widgets extension for MediaWiki, where any user with the ability to edit pages within the Widgets namespace...