Lucene search
+L

811 matches found

UbuntuCve
UbuntuCve
added 2025/12/24 1:16 p.m.4 views

CVE-2022-50753

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on summary info As Wenqing Liu reported in bugzilla: https://bugzilla.kernel.org/showbug.cgi?id=216456 BUG: KASAN: use-after-free in recoverdata+0x63ae/0x6ae0 f2fs Read of size 4 at addr...

5.9AI score0.00206EPSS
Exploits0References7
OSV
OSV
added 2025/12/24 1:16 p.m.5 views

UBUNTU-CVE-2022-50753

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on summary info As Wenqing Liu reported in bugzilla: https://bugzilla.kernel.org/showbug.cgi?id=216456 BUG: KASAN: use-after-free in recoverdata+0x63ae/0x6ae0 f2fs Read of size 4 at addr...

5.7AI score0.00206EPSS
Exploits0References8
CVE
CVE
added 2025/12/24 1:5 p.m.16 views

CVE-2022-50753

CVE-2022-50753 affects the Linux kernel F2FS recovery paths. Public details in connected documents show a use-after-free in recover_data due to an SSA table corruption (ofs_in_node > ADDRS_PER_PAGE) leading to out-of-bounds access during mount for a fuzzed image. The patch adds sanity checks o...

6.2AI score0.00206EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/12/24 1:5 p.m.28 views

CVE-2022-50753 f2fs: fix to do sanity check on summary info

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on summary info As Wenqing Liu reported in bugzilla: https://bugzilla.kernel.org/showbug.cgi?id=216456 BUG: KASAN: use-after-free in recoverdata+0x63ae/0x6ae0 f2fs Read of size 4 at addr...

0.00206EPSS
Exploits0References6
OSV
OSV
added 2025/12/24 1:5 p.m.5 views

CVE-2022-50753 f2fs: fix to do sanity check on summary info

In the Linux kernel, the following vulnerability has been resolved: f2fs: fix to do sanity check on summary info As Wenqing Liu reported in bugzilla: https://bugzilla.kernel.org/showbug.cgi?id=216456 BUG: KASAN: use-after-free in recoverdata+0x63ae/0x6ae0 f2fs Read of size 4 at addr...

6.4AI score0.00206EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2025/12/24 12:0 a.m.4 views

PT-2025-53119

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.0.0-rc4 Description The Linux kernel contains a flaw within the f2fs file system related to sanity checks on summary information. This issue can lead to a use-after-free condition, specifically triggered by...

6.5AI score0.00206EPSS
Exploits0References8
Wolfi
Wolfi
added 2025/12/23 7:48 p.m.4 views

GHSA-9FJM-6W64-76R7 vulnerabilities

Vulnerabilities for packages: chromium...

7AI score
Exploits0
EUVD
EUVD
added 2025/12/18 4:43 p.m.4 views

EUVD-2025-204382

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in AmentoTech Tuturn allows Path Traversal.This issue affects Tuturn: from n/a before 3.6...

6.5CVSS6.3AI score0.00302EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2025/11/22 1:1 a.m.9 views

f2fs: zone: fix to avoid inconsistence in between SIT and SSA

...

5.5CVSS7AI score0.00138EPSS
Exploits0
CNVD
CNVD
added 2025/11/20 12:0 a.m.3 views

Online Shopping Portal product-details.php file SQL Injection Vulnerability

Online Shopping Portal is an online store system. Online Shopping Portal suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements for the name, summary, review, quality, price, and value parameters in product-details.php. An attacker c...

6.5CVSS8.3AI score0.00235EPSS
Exploits1References1
Packet Storm
Packet Storm
added 2025/11/19 12:0 a.m.218 views

📄 Fortinet FortiWeb 8.0.0 Authentication Bypass

Analysis write up of the Fortinet FortiWeb version 8.0.0 authentication bypass vulnerability that can be leveraged for remote code execution. Titles: Fortinet FortiWeb Auth-8.0.0 Bypass CVE-2025-64446 Author: nu11secur1ty Date: 11/17/2025 Vendor: https://www.fortinet.com/ Software: v8.0.0...

9.8CVSS8.5AI score0.8936EPSS
Exploits17
CNNVD
CNNVD
added 2025/11/17 12:0 a.m.7 views

PHPGurukul Online Shopping Portal 安全漏洞

Online Shopping Portal is an online store system. Online Shopping Portal suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements for the name, summary, review, quality, price, and value parameters in product-details.php. An attacker c...

6.5CVSS8.2AI score0.00235EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/11/17 12:0 a.m.3 views

CVE-2024-44664

PHPGurukul Online Shopping Portal 2.0 is vulnerable to SQL Injection via the name, summary, review, quality, price, and value parameters in product-details.php...

7.6AI score0.00235EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/11/06 9:57 p.m.13 views

CVE-2025-64179 lakeFS: Unauthenticated access to API usage metrics

lakeFS is an open-source tool that transforms object storage into a Git-like repositories. In versions 1.69.0 and below, missing authentication in the /api/v1/usage-report/summary endpoint allows anyone to retrieve aggregate API usage counts. While no sensitive data is disclosed, the endpoint may...

5.3CVSS0.00274EPSS
Exploits0References2
CVE
CVE
added 2025/11/06 9:57 p.m.11 views

CVE-2025-64179

lakeFS versions

5.3CVSS6.2AI score0.00274EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/11/06 9:57 p.m.1 views

CVE-2025-64179 lakeFS: Unauthenticated access to API usage metrics

lakeFS is an open-source tool that transforms object storage into a Git-like repositories. In versions 1.69.0 and below, missing authentication in the /api/v1/usage-report/summary endpoint allows anyone to retrieve aggregate API usage counts. While no sensitive data is disclosed, the endpoint may...

5.3CVSS6.2AI score0.00274EPSS
Exploits0References2
OSV
OSV
added 2025/11/06 9:57 p.m.8 views

CVE-2025-64179 lakeFS: Unauthenticated access to API usage metrics

lakeFS is an open-source tool that transforms object storage into a Git-like repositories. In versions 1.69.0 and below, missing authentication in the /api/v1/usage-report/summary endpoint allows anyone to retrieve aggregate API usage counts. While no sensitive data is disclosed, the endpoint may...

5.3CVSS6.7AI score0.00274EPSS
Exploits0References4
Hacker One
Hacker One
added 2025/11/03 5:38 a.m.20 views

curl: Hi Hacker

Hi Hacker Impact Summary:...

7AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/10/31 10:7 p.m.9 views

CVE-2024-14001

Nagios XI versions prior to 2024R1.1.3 are vulnerable to cross-site scripting XSS via the Executive Summary Report component. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in the context of a victim's browser...

5.4CVSS6.2AI score0.00535EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/31 12:30 a.m.5 views

EUVD-2024-55045

Nagios XI versions prior to 2024R1.1.3 are vulnerable to cross-site scripting XSS via the Executive Summary Report component. Insufficient validation or escaping of user-supplied input may allow an attacker to inject and execute arbitrary script in the context of a victim's browser...

5.1CVSS5.7AI score0.00535EPSS
Exploits0References4
Rows per page
Query Builder