Lucene search
+L

470 matches found

UbuntuCve
UbuntuCve
added 2025/07/03 9:15 a.m.9 views

CVE-2025-38105

In the Linux kernel, the following vulnerability has been resolved: ALSA: usb-audio: Kill timer properly at removal The USB-audio MIDI code initializes the timer, but in a rare case, the driver might be freed without the disconnect call. This leaves the timer in an active state while the assigned...

5.5CVSS6.2AI score0.00157EPSS
Exploits0References21
ICS
ICS
added 2025/07/03 6:0 a.m.5 views

Mitsubishi Electric MELSEC iQ-F Series

RISK EVALUATION Successful exploitation of this vulnerability could result in a denial-of-service condition for legitimate users for a certain period by repeatedly attempting to log in with incorrect passwords. When the product repeatedly receives unauthorized logins from an attacker, legitimate...

5.3CVSS7AI score0.00373EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2025/07/02 12:15 p.m.7 views

CVE-2024-35164

The terminal emulator of Apache Guacamole 1.5.5 and older does not properly validate console codes received from servers via text-based protocols like SSH. If a malicious user has access to a text-based connection, a specially-crafted sequence of console codes could allow arbitrary code to be...

7.5CVSS7.2AI score0.00424EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2025/07/01 6:15 p.m.3 views

CVE-2025-53103

JUnit is a testing framework for Java and the JVM. From version 5.12.0 to 5.13.1, JUnit's support for writing Open Test Reporting XML files can leak Git credentials. The impact depends on the level of the access token exposed through the OpenTestReportGeneratingListener. If these test reports are...

5.8CVSS5.9AI score0.00099EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/06/30 3:15 a.m.4 views

CVE-2025-53076

Improper Input Validation vulnerability in Samsung Open Source rLottie allows Overread Buffers.This issue affects rLottie: V0.2...

9.8CVSS5.9AI score0.00333EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/06/27 2:15 p.m.4 views

CVE-2025-52991

The Nix, Lix, and Guix package managers default to using temporary build directories in a world-readable and world-writable location. This allows standard users to deceive the package manager into using directories with pre-existing content, potentially leading to unauthorized actions or data...

3.2CVSS5.9AI score0.00144EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2025/06/26 5:31 a.m.28 views

CVE-2025-3279

Removed by vendor...

6.5CVSS5.8AI score0.00311EPSS
Exploits0
Ubuntu
Ubuntu
added 2025/06/25 5:18 p.m.11 views

USN-7596-2: Linux kernel (Azure, N-Series) vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - GPIO subsystem; - GPU drivers; - InfiniBand drivers; - IRQ chip drivers; - Network drivers; - Mellanox network...

7.8CVSS7AI score0.00596EPSS
Exploits1
ICS
ICS
added 2025/06/24 6:0 a.m.5 views

ControlID iDSecure On-premises

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to bypass authentication, retrieve information, leak arbitrary data, or perform SQL injections. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of exploitation of...

8.4AI score
Exploits0References10
ICS
ICS
added 2025/06/24 6:0 a.m.7 views

Kaleris Navis N4 Terminal Operating System

RISK EVALUATION Successful exploitation of these vulnerabilities could allow an attacker to remotely exploit the operating system, achieve remote code execution, or extract sensitive information. 2. RECOMMENDED PRACTICES CISA recommends users take defensive measures to minimize the risk of...

8.6AI score
Exploits0References10
UbuntuCve
UbuntuCve
added 2025/06/24 12:0 a.m.4 views

CVE-2025-6032

A flaw was found in Podman. The podman machine init command fails to verify the TLS certificate when downloading the VM images from an OCI registry. This issue results in a Man In The Middle attack...

8.3CVSS6.3AI score0.00397EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/06/22 10:15 p.m.2 views

CVE-2025-6493

A weakness has been identified in CodeMirror up to 5.65.20. Affected is an unknown function of the file mode/markdown/markdown.js of the component Markdown Mode. This manipulation causes inefficient regular expression complexity. It is possible to initiate the attack remotely. The exploit has bee...

6.9CVSS6.1AI score0.00451EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/06/18 11:15 a.m.2 views

CVE-2022-50082

In the Linux kernel, the following vulnerability has been resolved: ext4: fix warning in ext4iomapbegin as race between bmap and write We got issue as follows: ------------ cut here ------------ WARNING: CPU: 3 PID: 9310 at fs/ext4/inode.c:3441 ext4iomapbegin+0x182/0x5d0 RIP:...

7CVSS6.1AI score0.00159EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/06/18 11:15 a.m.2 views

CVE-2022-50161

In the Linux kernel, the following vulnerability has been resolved: mtd: maps: Fix refcount leak in offlashprobeversatile offindmatchingnodeandmatch returns a node pointer with refcount incremented, we should use ofnodeput on it when not need anymore. Add missing ofnodeput to avoid refcount leak...

5.5CVSS6.2AI score0.0016EPSS
Exploits0References9
UbuntuCve
UbuntuCve
added 2025/06/18 11:15 a.m.6 views

CVE-2022-50230

In the Linux kernel, the following vulnerability has been resolved: arm64: set UXN on swapper page tables This issue was fixed upstream by accident in c3cee924bd85 "arm64: head: cover entire kernel image in initial ID map" as part of a large refactoring of the arm64 boot flow. This simple fix is...

5.5CVSS6AI score0.00171EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2025/06/18 11:15 a.m.2 views

CVE-2022-49942

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: Don't finalize CSA in IBSS mode if state is disconnected When we are not connected to a channel, sending channel "switch" announcement doesn't make any sense. The BSS list is empty in that case. This causes the fo...

5.5CVSS6.2AI score0.00216EPSS
Exploits0References9
UbuntuCve
UbuntuCve
added 2025/06/18 11:15 a.m.3 views

CVE-2022-49974

In the Linux kernel, the following vulnerability has been resolved: HID: nintendo: fix rumble worker null pointer deref We can dereference a null pointer trying to queue work to a destroyed workqueue. If the device is disconnected, nintendohidremove is called, in which the rumblequeue is destroye...

5.5CVSS6.1AI score0.00179EPSS
Exploits0References3
UbuntuCve
UbuntuCve
added 2025/06/18 11:15 a.m.2 views

CVE-2022-50056

In the Linux kernel, the following vulnerability has been resolved: fs/ntfs3: Fix missing iop in ntfsreadmft There is null pointer dereference because iop == NULL. The bug happens because we don't initialize iop for records in $Extend...

5.5CVSS5.9AI score0.00157EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/06/18 11:15 a.m.11 views

CVE-2022-50222

In the Linux kernel, the following vulnerability has been resolved: tty: vt: initialize unicode screen buffer syzbot reports kernel infoleak at vcsread 1, for buffer can be read immediately after resize operation. Initialize buffer using kzalloc. ---------- include include include include int...

5.5CVSS6.3AI score0.00194EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2025/06/18 11:15 a.m.10 views

CVE-2022-50053

In the Linux kernel, the following vulnerability has been resolved: iavf: Fix reset error handling Do not call iavfclose in iavfresettask error handling. Doing so can lead to double call of napidisable, which can lead to deadlock there. Removing VF would lead to iavfremove task being stuck, becau...

5.5CVSS6.2AI score0.0012EPSS
Exploits0References4
Rows per page
Query Builder