NetScaler HA sync on AWS fails when using Policy Based Routing (PBR)

HA sync between Primary NetScaler node and Secondary NetScaler node will fail when Policy Based Routing is configured, when NetScaler is hosted on Amazon Web Services AWS...

PT-2025-22387 · Drupal · Drupal Single Content Sync

Name of the Vulnerable Software and Affected Versions: Drupal Single Content Sync versions 0.0.0 through 1.4.11 Description: The issue is related to a Missing Authorization vulnerability in Drupal Single Content Sync, which allows functionality misuse. Recommendations: For versions 0.0.0 through...

PT-2025-27691

Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: A vulnerability in the Linux kernel's USB-audio MIDI code has been identified. The issue arises when the driver is freed without the disconnect call, leaving a timer in an active state...

The vulnerability of the Microsoft Azure File Sync data synchronization service, related to access control deficiencies, allows attackers to escalate their privileges.

The vulnerability of the Microsoft Azure File Sync data synchronization service is related to lack of access control. Exploiting this vulnerability can allow attackers to enhance their privileges...

CVE-2025-47792

Nextcloud Desktop is the desktop sync client for Nextcloud. In versions of Nextcloud Desktop prior to 3.15, 3rdparty applications already installed on a user machine can create link shares for almost all data via the socket API. These shares can then be easily sent off to an external service...

CVE-2025-29973

Improper access control in Azure File Sync allows an authorized attacker to elevate privileges locally...

Single Content Sync - Moderately critical - Access bypass - SA-CONTRIB-2025-060

This module enables you to seamlessly migrate and deploy content across environments, eliminating manual steps. It simplifies the process by exporting content to a YML file or a ZIP archive, which can be imported into another environment effortlessly. While the export feature rightfully bypasses...

Drupal Single Content Sync module < 1.4.12 - Authenticated Broken Access Control vulnerability

Authenticated Broken Access Control vulnerability discovered by Dezső Biczó mxr576 in WordPress Module Single Content Sync versions 1.4.12...

CVE-2025-29973

Improper access control in Azure File Sync allows an authorized attacker to elevate privileges locally...

CVE-2025-29973

Improper access control in Azure File Sync allows an authorized attacker to elevate privileges locally...

CVE-2025-29973 Microsoft Azure File Sync Elevation of Privilege Vulnerability

...

CVE-2025-29973

Azure File Sync Elevation of Privilege (CVE-2025-29973): improper access control allows an authorized local attacker to escalate privileges. Affected product: Microsoft Azure File Sync. CVSS v3.1 base score 7.0 (HIGH). Remediation: patch/update from Microsoft; NCSC confirms fixes have been releas...

CVE-2025-29973 Microsoft Azure File Sync Elevation of Privilege Vulnerability

...

xorg: xwayland: Use-after-free in SyncInitTrigger()

A use-after-free flaw was found in X.Org and Xwayland. When changing an alarm, the values of the change mask are evaluated one after the other, changing the trigger values as requested, and eventually, SyncInitTrigger is called. If one of the changes triggers an error, the function will return...

kernel: Bluetooth: MGMT: Fix slab-use-after-free Read in set_powered_sync

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: MGMT: Fix slab-use-after-free Read in setpoweredsync This fixes the following crash: ================================================================== BUG: KASAN: slab-use-after-free in setpoweredsync+0x3a/0xc0...

kernel: dm-raid: Fix WARN_ON_ONCE check for sync_thread in raid_resume

In the Linux kernel, the following vulnerability has been resolved: dm-raid: Fix WARNONONCE check for syncthread in raidresume rm-raid devices will occasionally trigger the following warning when being resumed after a table load because DMRECOVERYRUNNING is set: WARNING: CPU: 7 PID: 5660 at...

kernel: Bluetooth: Ignore too large handle values in BIG

A vulnerability was found in the Linux kernel's bluetooth subsystem in the function hcilebigsyncestablishedevt where a lack of proper checks does not validate whether a received connection handle exceeds the maximum allowed value. This could lead to system instability or crashes...

kernel: Bluetooth: HCI: Fix potential null-ptr-deref

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: HCI: Fix potential null-ptr-deref Fix potential null-ptr-deref in hcilebigsyncestablishedevt...

kernel: Bluetooth: hci_conn: Fix UAF in hci_enhanced_setup_sync

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: hciconn: Fix UAF in hcienhancedsetupsync This checks if the ACL connection remains valid as it could be destroyed while hcienhancedsetupsync is pending on cmdsync leading to the following trace: BUG: KASAN:...

kernel: usb: typec: fix potential array underflow in ucsi_ccg_sync_control()

In the Linux kernel, the following vulnerability has been resolved: usb: typec: fix potential array underflow in ucsiccgsynccontrol The "command" variable can be controlled by the user via debugfs. The worry is that if conindex is zero then "&uc-ucsi-connectorconindex - 1" would be an array...