Lucene search
K

10 matches found

Hacker One
Hacker One
added 2026/04/11 5:52 p.m.12 views

curl: Negotiate Authentication Premature on Connection Reuse

Summary: Curl 8.19.0+ inappropriately sends Negotiate authentication headers on reused keep-alive connections where authentication was already completed. Commit ab650379a8 June 2025 moved negotiate auth context to on-demand metadata storage, but during connection reuse the metadata gets cleared...

5.6AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/03/16 12:0 a.m.13 views

EulerOS 2.0 SP11 : kernel (EulerOS-SA-2026-1610)

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A transient execution vulnerability in some AMD processors may allow an attacker to infer data in the L1D cache, potentially resulting in the...

7.8CVSS7.5AI score0.00517EPSS
Exploits6References241
OSV
OSV
added 2025/09/23 2:35 p.m.2 views

SUSE-SU-2025:03310-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security bugfixes. The following security bugs were fixed: - CVE-2022-49492: nvme-pci: fix a NULL pointer dereference in nvmeallocadmintags bsc1238954. - CVE-2022-50116: tty: ngsm: fix deadlock and link starvation in outgoing...

7.8CVSS6.9AI score0.04947EPSS
Exploits10References52
Tenable Nessus
Tenable Nessus
added 2025/08/12 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2024-58088

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: bpf: Fix deadlock when freeing cgroup storage The following commit bc235cdb423a bpf: Prevent...

5.5CVSS6.2AI score0.00151EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2022/07/25 2:15 p.m.5 views

CVE-2022-1305

Use after free in storage in Google Chrome prior to 100.0.4896.88 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS7.3AI score0.00725EPSS
Exploits1References4
OSV
OSV
added 2022/07/25 2:15 p.m.1 views

DEBIAN-CVE-2022-1312

Use after free in storage in Google Chrome prior to 100.0.4896.88 allowed an attacker who convinced a user to install a malicious extension to potentially perform a sandbox escape via a crafted Chrome Extension...

9.6CVSS7.5AI score0.0052EPSS
Exploits1References1
OSV
OSV
added 2022/02/12 12:15 a.m.1 views

DEBIAN-CVE-2022-0096

Use after free in Storage in Google Chrome prior to 97.0.4692.71 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page...

8.8CVSS8.9AI score0.01361EPSS
Exploits1References1
OSV
OSV
added 2020/05/21 4:15 a.m.1 views

UBUNTU-CVE-2020-6461

Use after free in storage in Google Chrome prior to 81.0.4044.129 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page...

9.6CVSS7.2AI score0.01177EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2020/04/30 9:55 a.m.3 views

chromium-browser: Use after free in storage

Use after free in storage in Google Chrome prior to 81.0.4044.129 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page...

9.6CVSS7.4AI score0.01177EPSS
Exploits0References5
OSV
OSV
added 2018/06/11 9:29 p.m.4 views

CVE-2017-5411

A use-after-free can occur during buffer storage operations within the ANGLE graphics library, used for WebGL content. The buffer storage can be freed while still in use in some circumstances, leading to a potentially exploitable crash. Note: This issue is in "libGLES", which is only in use on...

7.5CVSS7.3AI score
Exploits0References5
Rows per page
Query Builder