Lucene search
K

40 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.5 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerability has been resolved: SUNRPC: Fixed a slow server-side memory leak caused by RPC-over-TCP. Jan Schunk reported that his small NFS servers experience memory exhaustion after just a few days. A bisect analysis shows that commit e18e157bb5c8 “SUNRPC:...

5.5CVSS5.1AI score0.00225EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.12 views

Astra Linux – Vulnerability in Linux, Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: nvme-tcp: fixed a possible use-after-free issue in the transport errorrecovery mechanism. While nvmetcpsubmitasynceventwork checks the ctrl and queue states before preparing the AER command and scheduling iowork, this check is...

7.8CVSS6.4AI score0.00246EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/04/21 7:14 p.m.7 views

CVE-2026-40879 Nest: DoS via Recursive handleData in JsonSocket (TCP Transport)

Nest is a framework for building scalable Node.js server-side applications. Prior to 11.1.19, when an attacker sends many small, valid JSON messages in one TCP frame, handleData recurses once per message; the buffer shrinks each call. maxBufferSize is never reached; call stack overflows instead. ...

7.5CVSS5.9AI score0.00329EPSS
Exploits0References1
CVE
CVE
added 2026/04/21 7:14 p.m.11 views

CVE-2026-40879

Summary: Nest (Node.js) suffers a DoS via recursive handling of JSON frames over TCP. Before 11.1.19, handleData() recursed for each valid JSON message in a single frame, causing call stack growth and eventual RangeError when a ~47 KB payload is sent. This is fixed in 11.1.19. What’s affected: Th...

7.5CVSS5.9AI score0.00329EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2026/04/14 12:15 a.m.6 views

GHSA-HPWF-8G29-85QM Nest Affected by DoS via Recursive handleData in JsonSocket (TCP Transport)

Impact Attacker sends many small, valid JSON messages in one TCP frame → handleData recurses once per message; buffer shrinks each call → maxBufferSize is never reached; call stack overflows instead → A 47 KB payload is sufficient to trigger RangeError Patches Fixed in @nestjs/[email protected]....

7.5CVSS6AI score0.00329EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/11/28 8:8 p.m.7 views

CVE-2025-65953

NanoMQ MQTT Broker NanoMQ is an all-around Edge Messaging Platform. Prior to version 0.22.5, a Heap-Use-After-Free UAF vulnerability exists in the TCP transport component of NanoMQ, which relies on the underlying NanoNNG library specifically in src/sp/transport/mqtt/brokertcp.c. The vulnerability...

6CVSS6.8AI score0.00192EPSS
Exploits0References1
NVD
NVD
added 2025/11/25 11:15 p.m.8 views

CVE-2025-65953

NanoMQ MQTT Broker NanoMQ is an all-around Edge Messaging Platform. Prior to version 0.22.5, a Heap-Use-After-Free UAF vulnerability exists in the TCP transport component of NanoMQ, which relies on the underlying NanoNNG library specifically in src/sp/transport/mqtt/brokertcp.c. The vulnerability...

6CVSS0.00192EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/25 11:13 p.m.4 views

CVE-2025-65953 NanoMQ UAF of retain message due to invalid MQTTV5 properties

NanoMQ MQTT Broker NanoMQ is an all-around Edge Messaging Platform. Prior to version 0.22.5, a Heap-Use-After-Free UAF vulnerability exists in the TCP transport component of NanoMQ, which relies on the underlying NanoNNG library specifically in src/sp/transport/mqtt/brokertcp.c. The vulnerability...

6CVSS6.5AI score0.00192EPSS
Exploits0References1
CVE
CVE
added 2025/11/25 11:13 p.m.15 views

CVE-2025-65953

NanoMQ (MQTT Broker) prior to 0.22.5 contains a Heap-Use-After-Free vulnerability in the TCP transport, caused by improper resource management and premature cleanup of message/pipe structures in src/sp/transport/mqtt/broker_tcp.c under certain malformed MQTTV5 retain traffic conditions. Affects N...

6CVSS6.5AI score0.00192EPSS
Exploits0References1
OSV
OSV
added 2025/11/25 11:13 p.m.7 views

CVE-2025-65953 NanoMQ UAF of retain message due to invalid MQTTV5 properties

NanoMQ MQTT Broker NanoMQ is an all-around Edge Messaging Platform. Prior to version 0.22.5, a Heap-Use-After-Free UAF vulnerability exists in the TCP transport component of NanoMQ, which relies on the underlying NanoNNG library specifically in src/sp/transport/mqtt/brokertcp.c. The vulnerability...

6CVSS6.8AI score0.00192EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/11/25 11:13 p.m.11 views

CVE-2025-65953 NanoMQ UAF of retain message due to invalid MQTTV5 properties

NanoMQ MQTT Broker NanoMQ is an all-around Edge Messaging Platform. Prior to version 0.22.5, a Heap-Use-After-Free UAF vulnerability exists in the TCP transport component of NanoMQ, which relies on the underlying NanoNNG library specifically in src/sp/transport/mqtt/brokertcp.c. The vulnerability...

6CVSS0.00192EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/25 11:13 p.m.8 views

EUVD-2025-199658

NanoMQ MQTT Broker NanoMQ is an all-around Edge Messaging Platform. Prior to version 0.22.5, a Heap-Use-After-Free UAF vulnerability exists in the TCP transport component of NanoMQ, which relies on the underlying NanoNNG library specifically in src/sp/transport/mqtt/brokertcp.c. The vulnerability...

6CVSS6.3AI score0.00192EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-7240

Malware in sbrugna...

7.5CVSS7.6AI score0.03408EPSS
Exploits0References13
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2021-30036

Malicious code in bioql PyPI...

8.8CVSS8.8AI score0.01921EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2025/05/05 6:1 p.m.9 views

kernel: nvme-tcp: fix potential memory corruption in nvme_tcp_recv_pdu()

An unchecked buffer bounds flaw was found in the Linux kernel's NVMe TCP Fabrics driver. An attacker with the ability to send a crafted packet to an affected NVMe host could exploit this flaw to alter kernel memory, leading to an escalation of privileges or a compromise of system integrity or...

7.8CVSS7.2AI score0.00209EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2025/05/02 2:2 a.m.3 views

SUSE CVE-2025-37777

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in smb2leasebreaknoti Move tcptransport free to ksmbdconnfree. If ksmbd connection is referenced when ksmbd server thread terminates, It will not be freed, but conn-tcptransport is freed...

7.8CVSS6.6AI score0.00158EPSS
Exploits0References3
OSV
OSV
added 2025/05/01 2:15 p.m.2 views

DEBIAN-CVE-2025-37777

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in smb2leasebreaknoti Move tcptransport free to ksmbdconnfree. If ksmbd connection is referenced when ksmbd server thread terminates, It will not be freed, but conn-tcptransport is freed...

7.8CVSS5.7AI score0.00158EPSS
Exploits0References1
OSV
OSV
added 2025/05/01 1:7 p.m.5 views

CVE-2025-37777 ksmbd: fix use-after-free in __smb2_lease_break_noti()

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix use-after-free in smb2leasebreaknoti Move tcptransport free to ksmbdconnfree. If ksmbd connection is referenced when ksmbd server thread terminates, It will not be freed, but conn-tcptransport is freed...

7.8CVSS6.1AI score0.00158EPSS
Exploits0References7
OSV
OSV
added 2024/09/18 8:15 a.m.9 views

UBUNTU-CVE-2024-46737

In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: fix kernel crash if commands allocation fails If the commands allocation fails in nvmettcpalloccmds the kernel crashes in nvmettcpreleasequeuework because of a NULL pointer dereference. nvmet: failed to install queue 0...

5.5CVSS6.2AI score0.00268EPSS
Exploits0References26
SUSE CVE
SUSE CVE
added 2024/02/24 3:16 a.m.4 views

SUSE CVE-2024-26592

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix UAF issue in ksmbdtcpnewconnection The race is between the handling of a new TCP connection and its disconnection. It leads to UAF on struct tcptransport in ksmbdtcpnewconnection function...

7.8CVSS6.6AI score0.00828EPSS
Exploits0References3
Rows per page
Query Builder