CVE-2025-8090 Vulnerability in the QNX Neutrino Kernel impacts the QNX Software Development Platform and QNX OS for Safety

Null pointer dereference in the MsgRegisterEvent system call could allow an attacker with local access and code execution abilities to crash the QNX Neutrino kernel...

CLSA-2025-1766617167 kernel: Fix of 27 CVEs

xfrm: Duplicate SPI Handling CVE-2025-39965 - xfrm: state: use atomicincnotzero to increment refcount - padata: Fix pd UAF once and for all CVE-2025-38584 - padata: Remove broken queue flushing CVE-2023-52854 - padata: ensure padatadoserial runs on the correct CPU - Bluetooth: L2CAP: Fix...

CVE-2025-38265

In the Linux kernel, the following vulnerability has been resolved: serial: jsm: fix NPE during jsmuartportinit No device was set which caused serialbasectrladd to crash. BUG: kernel NULL pointer dereference, address: 0000000000000050 Oops: Oops: 0000 1 PREEMPT SMP NOPTI CPU: 16 UID: 0 PID: 368...

Do Not Install the NIS Client

Network Information Service NIS works in client-server mode. NIS clients running the ypbind daemon obtain information from a server. NIS is inherently insecure and is vulnerable to DoS and buffer overflow attacks. Therefore, do not install the NIS client in the service scenario where NIS is not...

SUSE: Security Advisory (SUSE-SU-2025:1241-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

RHSA-2025:2874 Red Hat Security Advisory: tigervnc security update

Bulletin has no description...

Hitachi Energy MACH GWS products

SUMMARY Hitachi Energy is aware of the multiple vulnerabilities that affect the MACH GWS product versions listed in this document. An attacker successfully exploiting these vulnerabilities can cause confidentiality, integrity and availability impacts. Please refer to the Recommended Immediate...

RHSA-2025:1676 Red Hat Security Advisory: bind9.16 security update

Bulletin has no description...

Ubuntu: Security Advisory (USN-7194-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Schneider Electric EcoStruxure

GENERAL SECURITY RECOMMENDATIONS We strongly recommend the following industry cybersecurity best practices. https://www.se.com/us/en/download/document/7EN52-0390/ Locate control and safety system networks and remote devices behind firewalls and isolate them from the business network. Install...

aterteramo.it Cross Site Scripting vulnerability OBB-2848491

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Privilege Escalation

xen is vulnerable to privilege escalation. The vulnerability exists due to non-coherent mappings allowing an attacker to control the whole system because the system safety logic doesn't account for CPU-induced cache...

Exploit for Expression Language Injection in Atlassian Confluence_Data_Center

CVE-2022-26134 （CVE-2022-26134）an unauthenticated and remote O...

CVE-2021-32025

An elevation of privilege vulnerability in the QNX Neutrino Kernel of affected versions of QNX Software Development Platform versions 6.4.0 to 7.0, QNX Momentics all 6.3.x versions, QNX OS for Safety versions 1.0.0 to 1.0.2, QNX OS for Safety versions 2.0.0 to 2.0.1, QNX for Medical versions 1.0....

SUSE-SU-2022:0768-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP1 kernel was updated to receive various security and bugfixes. Transient execution side-channel attacks attacking the Branch History Buffer BHB, named 'Branch Target Injection' and 'Intra-Mode Branch History Injection' are now mitigated. The following security bugs...

PT-2022-1737 · Blackberry · Qnx Os For Safety +4

Name of the Vulnerable Software and Affected Versions: QNX Software Development Platform versions 6.4.0 through 7.0 QNX Momentics versions 6.3.x QNX OS for Safety versions 1.0.0 through 1.0.2 QNX OS for Safety versions 2.0.0 through 2.0.1 QNX for Medical versions 1.0.0 through 1.1.1 QNX OS for...

Impact of 62 million devices: the interpretation I is how to find the Marvell Avastar Wi-Fi remote code execution vulnerability-vulnerability warning-the black bar safety net

One, overview In the present study, I will mainly analyze the Marvell WiFi-FullMAC SoC security. Since we have not yet completed the product with a chip of a wireless device of research, and therefore which may contain large amounts of unaudited code, which might appear serious security problems...

【Bug fix】Report: 2 0 1 4 years Microsoft 9 7% of the vulnerabilities with administrator permissions for-vulnerability warning-the black bar safety net

This week, the British company called Avecto, a security company released a latest security Report, 2 0 1 4 year Microsoft released and repair of the 2 4 0 one security breach, more than 9 7 per cent with administrator privileges is the use of related. At the same time, the company to the user of...

Enterprise to food industry website source code 1.0 injection vulnerabilities and fixes-vulnerability warning-the black bar safety net

by Mr. DzY from www.0855.tv This system seems to be in the 0 to 5 year development. Is not the original work, to research it! The modified switch. Source code download: Demo address: Default backend: system/index. asp EXP: the union select 1,2,3,username,password,6,7,8,9,1 0,1 1,1 2 from nwebadmi...

Breakthrough Proactive Defense registry monitoring review(updated)-vulnerability warning-the black bar safety net

Currently active Defense concept has been firmly established, many antivirus, software, fire protection, and HIPS are having a registry monitoring function, to prevent from startup items and IE-related key value is modified, to guard against viruses Trojans and malware and other malicious program...