Lucene search
K

8 matches found

Cvelist
Cvelist
added 2026/06/24 4:28 p.m.29 views

CVE-2026-52982 net: usb: rtl8150: fix use-after-free in rtl8150_start_xmit()

In the Linux kernel, the following vulnerability has been resolved: net: usb: rtl8150: fix use-after-free in rtl8150startxmit syzbot reported a KASAN slab-use-after-free read in rtl8150startxmit when accessing skb-len for tx statistics after usbsubmiturb has been called: BUG: KASAN:...

9.8CVSS0.00543EPSS
Exploits0References8
OSV
OSV
added 2025/04/16 3:15 p.m.3 views

DEBIAN-CVE-2025-22050

In the Linux kernel, the following vulnerability has been resolved: usbnet:fix NPE during rxcomplete Missing usbnetgoingaway Check in Critical Path. The usbsubmiturb function lacks a usbnetgoingaway validation, whereas usbnetqueueskb includes this check. This inconsistency creates a race conditio...

4.7CVSS5.5AI score0.00157EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2023/08/10 7:0 a.m.5 views

Kernel: smsusb: use-after-free caused by do_submit_urb()

...

5.5CVSS7.3AI score0.00255EPSS
Exploits0
wpexploit
wpexploit
added 2023/05/22 12:0 a.m.145 views

Icegram Engage < 3.1.12 - Reflected XSS

The plugin does not escape a parameter before outputting it back in an attribute, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin Make a logged in admin open a page with the code below...

6.1CVSS5.7AI score0.00486EPSS
Exploits2
wpexploit
wpexploit
added 2022/04/04 12:0 a.m.80 views

Menubar < 5.8 - Reflected Cross-Site Scripting

The plugin does not sanitise and escape the command parameter before outputting it back in the response via the menubar AJAX action available to any authenticated users, leading to a Reflected Cross-Site Scripting " /...

5.4CVSS0.6AI score0.0058EPSS
Exploits2
OSV
OSV
added 2018/01/12 11:29 p.m.2 views

CVE-2017-13210

In CameraDeviceClient::submitRequestList of CameraDeviceClient.cpp, there is an out-of-bounds write if metadataSize is too small. This could lead to a local elevation of privilege enabling code execution as a privileged process with no additional execution privileges needed. User interaction is n...

7.8CVSS6.2AI score0.00215EPSS
Exploits0References3
CNVD
CNVD
added 2017/09/08 12:0 a.m.2 views

Google Chrome Type Obfuscation Vulnerability (CNVD-2017-31823)

Google Chrome is an open source web browser. A type obfuscation vulnerability exists in Google Chrome V8, which allows remote attackers to exploit the vulnerability to submit a special request and execute arbitrary code...

8.8CVSS8.9AI score0.26331EPSS
Exploits0References1
CNVD
CNVD
added 2016/01/23 12:0 a.m.5 views

Unspecified Vulnerability in Oracle E-Business Suite Oracle Interaction Center Intelligence Business Intelligence Component

Oracle E-Business Suite is a new generation of e-business suite from Oracle. An unspecified security vulnerability in the Oracle E-Business Suite Oracle Interaction Center Intelligence Business Intelligence component allows remote attackers to exploit the vulnerability to submit a special request...

6.4CVSS6.8AI score0.01748EPSS
Exploits0References1
Rows per page
Query Builder