Lucene search
K

68 matches found

RedhatCVE
RedhatCVE
added 2026/06/29 1:7 p.m.6 views

CVE-2026-53022

In the Linux kernel, the following vulnerability has been resolved: platform/x86: dell-wmi-sysman: bound enumeration string aggregation populateenumdata aggregates firmware-provided value-modifier and possible-value strings into fixed 512-byte struct members. The current code bounds each individu...

7CVSS5.8AI score0.00172EPSS
Exploits0References4
Microsoft CVE
Microsoft CVE
added 2026/06/27 8:9 a.m.5 views

platform/x86: dell-wmi-sysman: bound enumeration string aggregation

...

5.5CVSS6.1AI score0.00172EPSS
Exploits0
EUVD
EUVD
added 2026/06/24 6:32 p.m.4 views

EUVD-2026-38890

In the Linux kernel, the following vulnerability has been resolved: platform/x86: dell-wmi-sysman: bound enumeration string aggregation populateenumdata aggregates firmware-provided value-modifier and possible-value strings into fixed 512-byte struct members. The current code bounds each individu...

5.8AI score0.00172EPSS
Exploits0References8
NVD
NVD
added 2026/06/24 5:17 p.m.4 views

CVE-2026-53022

In the Linux kernel, the following vulnerability has been resolved: platform/x86: dell-wmi-sysman: bound enumeration string aggregation populateenumdata aggregates firmware-provided value-modifier and possible-value strings into fixed 512-byte struct members. The current code bounds each individu...

5.5CVSS0.00172EPSS
Exploits0References7
CVE
CVE
added 2026/06/24 4:29 p.m.12 views

CVE-2026-53022

CVE-2026-53022 concerns the Linux kernel component platform/x86 dell-wmi-sysman where firmware-provided value-modifier and possible-value strings are aggregated into fixed buffers. The root cause is that while individual source strings are bounded, the code uses strcat to append strings and separ...

5.5CVSS5.8AI score0.00172EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2026/06/24 4:29 p.m.3 views

CVE-2026-53022 platform/x86: dell-wmi-sysman: bound enumeration string aggregation

In the Linux kernel, the following vulnerability has been resolved: platform/x86: dell-wmi-sysman: bound enumeration string aggregation populateenumdata aggregates firmware-provided value-modifier and possible-value strings into fixed 512-byte struct members. The current code bounds each individu...

5.5CVSS5.8AI score0.00172EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2026/06/24 12:0 a.m.8 views

PT-2026-51916

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the populate enum data function within the dell-wmi-sysman module. The function aggregates firmware-provided value-modifier and possible-value strings into fixed...

6.2AI score0.00172EPSS
Exploits0References16
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: Platform/x86: dell-wmi-sysman: Do not perform hex dumping of plaintext password data. setnewpassword performs hex dumping of the entire buffer, which contains plaintext password data, including current and new passwords. Remove...

5.5CVSS6AI score0.00123EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.7 views

Astra Linux – Vulnerabilities in Linux 5.10, Linux 5.15, Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: Platform/x86: dell-sysman: Fixed reference leak If a duplicate attribute is found using ksetfindobj, a reference to that attribute is returned. This means that we need to dispose of the duplicate attribute accordingly. Use...

5.5CVSS6.1AI score0.00189EPSS
Exploits0References2
Microsoft CVE
Microsoft CVE
added 2026/03/26 8:1 a.m.5 views

platform/x86: dell-wmi-sysman: Don't hex dump plaintext password data

...

5.5CVSS5.8AI score0.00123EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/03/25 4:55 p.m.8 views

SUSE CVE-2026-23370

In the Linux kernel, the following vulnerability has been resolved: platform/x86: dell-wmi-sysman: Don't hex dump plaintext password data setnewpassword hex dumps the entire buffer, which contains plaintext password data, including current and new passwords. Remove the hex dump to avoid leaking...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References16
RedhatCVE
RedhatCVE
added 2026/03/25 3:0 p.m.5 views

CVE-2026-23370

A flaw was found in the dell-wmi-sysman component of the Linux kernel. This vulnerability occurs because the setnewpassword function incorrectly hex dumps the entire buffer, which includes sensitive plaintext password data. A local attacker could exploit this to disclose user credentials, leading...

4.4CVSS5.7AI score0.00123EPSS
Exploits0References4
EUVD
EUVD
added 2026/03/25 12:30 p.m.4 views

EUVD-2026-15355

In the Linux kernel, the following vulnerability has been resolved: platform/x86: dell-wmi-sysman: Don't hex dump plaintext password data setnewpassword hex dumps the entire buffer, which contains plaintext password data, including current and new passwords. Remove the hex dump to avoid leaking...

5.6AI score0.00123EPSS
Exploits0References7
NVD
NVD
added 2026/03/25 11:16 a.m.3 views

CVE-2026-23370

In the Linux kernel, the following vulnerability has been resolved: platform/x86: dell-wmi-sysman: Don't hex dump plaintext password data setnewpassword hex dumps the entire buffer, which contains plaintext password data, including current and new passwords. Remove the hex dump to avoid leaking...

5.5CVSS0.00123EPSS
Exploits0References9
UbuntuCve
UbuntuCve
added 2026/03/25 11:16 a.m.10 views

CVE-2026-23370

In the Linux kernel, the following vulnerability has been resolved: platform/x86: dell-wmi-sysman: Don't hex dump plaintext password data setnewpassword hex dumps the entire buffer, which contains plaintext password data, including current and new passwords. Remove the hex dump to avoid leaking...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References8
OSV
OSV
added 2026/03/25 11:16 a.m.5 views

UBUNTU-CVE-2026-23370

In the Linux kernel, the following vulnerability has been resolved: platform/x86: dell-wmi-sysman: Don't hex dump plaintext password data setnewpassword hex dumps the entire buffer, which contains plaintext password data, including current and new passwords. Remove the hex dump to avoid leaking...

5.5CVSS5.7AI score0.00123EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2026/03/25 10:27 a.m.5 views

CVE-2026-23370

In the Linux kernel, the following vulnerability has been resolved: platform/x86: dell-wmi-sysman: Don't hex dump plaintext password data setnewpassword hex dumps the entire buffer, which contains plaintext password data, including current and new passwords. Remove the hex dump to avoid leaking...

5.5CVSS5.2AI score0.00123EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/03/25 10:27 a.m.2 views

CVE-2026-23370

In the Linux kernel, the following vulnerability has been resolved: platform/x86: dell-wmi-sysman: Don't hex dump plaintext password data setnewpassword hex dumps the entire buffer, which contains plaintext password data, including current and new passwords. Remove the hex dump to avoid leaking...

5.6AI score0.00123EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2026/03/25 10:27 a.m.25 views

CVE-2026-23370 platform/x86: dell-wmi-sysman: Don't hex dump plaintext password data

In the Linux kernel, the following vulnerability has been resolved: platform/x86: dell-wmi-sysman: Don't hex dump plaintext password data setnewpassword hex dumps the entire buffer, which contains plaintext password data, including current and new passwords. Remove the hex dump to avoid leaking...

0.00123EPSS
Exploits0References7
CVE
CVE
added 2026/03/25 10:27 a.m.22 views

CVE-2026-23370

CVE-2026-23370 concerns a Linux kernel vulnerability in platform/x86: dell-wmi-sysman where set_new_password() hex dumps the buffer containing plaintext passwords (including current/new passwords). The issue could leak credentials locally and is mitigated by removing the hex dump; upstream kernel...

5.5CVSS5.6AI score0.00123EPSS
Exploits0References9Affected Software1
Rows per page
Query Builder