PT-2025-32834

Name of the Vulnerable Software and Affected Versions: Azure File Sync affected versions not specified Description: Improper access control in Azure File Sync can allow an authorized attacker to elevate privileges locally. Recommendations: At the moment, there is no information about a newer...

Microsoft Azure 安全漏洞

Microsoft Azure is a suite of open, enterprise-grade cloud computing platforms from Microsoft Corporation USA. A security vulnerability exists in Microsoft Azure File Sync. An attacker can exploit the vulnerability to elevate privileges. The following products and versions are affected: Azure Fil...

PT-2025-35990

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A race condition was identified in the kcm unattach function within the kernel's networking subsystem. Specifically, the function lacked a check of the kcm-tx stopped flag before calling...

Linux Distros Unpatched Vulnerability : CVE-2023-53009

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/amdkfd: Add sync after creating vram bo There will be data corruption on vram allocated by svm if the initialization is not complete and application is...

Azure File Sync Agent v21.2 Release – July 2025 (KB5063825)

Update Rollup for Azure File Sync agent version 21.2.0.0. For more details, see the associated Microsoft Knowledge Base article...

Azure File Sync Agent v21.2 Release – July 2025 (KB5063825)

Update Rollup for Azure File Sync agent version 21.2.0.0. For more details, see the associated Microsoft Knowledge Base article...

Azure File Sync Agent v21.2 Release – July 2025 (KB5063825)

Update Rollup for Azure File Sync agent version 21.2.0.0. For more details, see the associated Microsoft Knowledge Base article...

Azure File Sync Agent v21.2 Release – July 2025 (KB5063825)

Update Rollup for Azure File Sync agent version 21.2.0.0. For more details, see the associated Microsoft Knowledge Base article...

Linux Distros Unpatched Vulnerability : CVE-2021-47357

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - atm: iphase: fix possible use-after-free in iamoduleexit This module's remove path calls deltimer. However, that function does not wait until the timer handler...

Linux Distros Unpatched Vulnerability : CVE-2025-38114

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: e1000: Move cancelworksync to avoid deadlock Previously, e1000down called cancelworksync for...

Linux Distros Unpatched Vulnerability : CVE-2021-47324

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - watchdog: Fix possible use-after-free in wdtstartup This module's remove path calls deltimer. However, that function does not wait until the timer handler...

Linux Distros Unpatched Vulnerability : CVE-2022-50005

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: nfc: pn533: Fix use-after-free bugs caused by pn532cmdtimeout When the pn532 uart device is...

Linux Distros Unpatched Vulnerability : CVE-2021-47323

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - watchdog: sc520wdt: Fix possible use-after-free in wdtturnoff This module's remove path calls deltimer. However, that function does not wait until the timer...

CVE-2025-53544 Trilium Notes is Vulnerable to Brute-force Protection Bypass via Initial Sync Seed Retrieval

Trilium Notes is an open-source, cross-platform hierarchical note taking application with focus on building large personal knowledge bases. In versions below 0.97.0, a brute-force protection bypass in the initial sync seed retrieval endpoint allows unauthenticated attackers to guess the login...

CVE-2025-53544

CVE-2025-53544 concerns Trilium Notes prior to 0.97.0, where a brute-force protection bypass in the initial sync seed retrieval endpoint allows unauthenticated attackers to guess the login password without triggering rate limiting. The app is described as a single-user, username-less system, with...

xorg-x11-server: reattaching to different master device may lead to out-of-bounds memory access

An out-of-bounds memory access flaw was found in the X.Org server. This issue can be triggered when a device frozen by a sync grab is reattached to a different master device. This issue may lead to an application crash, local privilege escalation if the server runs with extended privileges, or...

MAL-2025-47452 Malicious code in secmeasure (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: google-open-source-security f566db2e1359b455ca36524d9c066854754e71ac92deca9706f69d3d71cc8414 This package installs the SilentSync remote access trojan and allows remote code execution and data exfiltration. Windows machines are...

CVE-2025-52490

An issue was discovered in Couchbase Sync Gateway before 3.2.6. In sgcollectinfooptions.log and syncgateway.log, there are cleartext passwords in redacted and unredacted output...

PT-2025-34383

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 6.16.0+ 94 Description: A flaw exists in the Linux kernel related to the md Multiple Devices subsystem. A test case triggers a kernel panic due to a NULL pointer dereference within the rdev addable function. The...

SUSE CVE-2025-38409

In the Linux kernel, the following vulnerability has been resolved: drm/msm: Fix another leak in the submit error path putunusedfd doesn't free the installed file, if we've already done fdinstall. So we need to also free the syncfile. Patchwork: https://patchwork.freedesktop.org/patch/653583/...