Lucene search
+L

2099 matches found

susecve
susecve
added 2025/10/08 11:31 p.m.4 views

SUSE CVE-2023-53631

In the Linux kernel, the following vulnerability has been resolved: platform/x86: dell-sysman: Fix reference leak If a duplicate attribute is found using ksetfindobj, a reference to that attribute is returned. This means that we need to dispose it accordingly. Use kobjectput to dispose the...

5.5CVSS6.5AI score0.00189EPSS
Exploits0References19
cve
cve
added 2025/10/07 3:19 p.m.29 views

CVE-2023-53631

CVE-2023-53631 — In Linux kernel, platform/x86 dell-sysman reference leak: if kset_find_obj() finds a duplicate attribute, a reference to that attribute can be returned and may not be disposed, potentially leaking references. Patch note: use kobject_put() to dispose the duplicate attribute. Affec...

5.5CVSS6.1AI score0.00189EPSS
Exploits0References5Affected Software1
ptsecurity
ptsecurity
added 2025/10/07 12:0 a.m.7 views

PT-2025-41075

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A reference leak exists in the Linux kernel’s platform/x86/dell-sysman component. When a duplicate attribute is found using the kset find obj function, a reference to that attribute is...

7.8CVSS6.1AI score0.08942EPSS
Exploits4References988
euvd
euvd
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-26073

Malicious code in bioql PyPI...

6.1CVSS6.2AI score0.00236EPSS
Exploits0References2
euvd
euvd
added 2025/10/03 8:7 p.m.10 views

EUVD-2025-30773

Malicious code in bioql PyPI...

7.1CVSS6.6AI score0.00636EPSS
Exploits2References3
euvd
euvd
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-28951

Malicious code in bioql PyPI...

6.3AI score0.0015EPSS
Exploits0References6
redhatcve
redhatcve
added 2025/09/24 11:33 a.m.12 views

CVE-2025-9983

GALAYOU G2 cameras stream video output via RTSP streams. By default these streams are protected by randomly generated credentials. However these credentials are not required to access the stream. Changing these values does not change camera's behavior. The vendor did not respond in any way. Only...

7.1CVSS7AI score0.00636EPSS
Exploits2References1
cvelist
cvelist
added 2025/09/22 11:6 a.m.14 views

CVE-2025-9983 Lack of Authentication for RTSP stream

GALAYOU G2 cameras stream video output via RTSP streams. By default these streams are protected by randomly generated credentials. However these credentials are not required to access the stream. Changing these values does not change camera's behavior. The vendor did not respond in any way. Only...

7.1CVSS0.00636EPSS
Exploits2References2
cve
cve
added 2025/09/22 11:6 a.m.29 views

CVE-2025-9983

The CVE-2025-9983 affects GALAYOU G2 IP cameras, where RTSP streams can be accessed without valid credentials. The issue arises because default credentials are not required to access streams, and changing them does not affect behavior, indicating an authentication bypass in the RTSP service. Affe...

7.1CVSS6.6AI score0.00636EPSS
Exploits2References2
nessus
nessus
added 2025/09/16 12:0 a.m.2 views

Mozilla Firefox ESR < 115.28

The version of Firefox ESR installed on the remote macOS or Mac OS X host is prior to 115.28. It is, therefore, affected by a vulnerability as referenced in the mfsa2025-74 advisory. - Integer overflow in the SVG component. This vulnerability affects Firefox 143, Firefox ESR 115.28, Firefox ESR...

8.8CVSS8.2AI score0.00687EPSS
Exploits0References2
cve
cve
added 2025/09/15 2:48 p.m.23 views

CVE-2022-50321

CVE-2022-50321 corresponds to a Linux kernel wifi flaw in brcmfmac where brcmf_netdev_start_xmit() could leak memory when pskb_expand_head() fails, returning NETDEV_TX_OK without freeing the skb. The fix adds dev_kfree_skb() to properly free skb and was compile-tested; multiple Unity/Linux adviso...

5.5CVSS6.1AI score0.00146EPSS
Exploits0References8Affected Software1
osv
osv
added 2025/09/11 5:15 p.m.4 views

UBUNTU-CVE-2025-39761

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Decrement TID on RX peer frag setup error handling Currently, TID is not decremented before peer cleanup, during error handling path of ath12kdprxpeerfragsetup. This could lead to out-of-bounds access in peer-rxtid...

7.1CVSS6.5AI score0.0015EPSS
Exploits0References24
osv
osv
added 2025/09/11 5:15 p.m.4 views

UBUNTU-CVE-2025-39750

In the Linux kernel, the following vulnerability has been resolved: wifi: ath12k: Correct tid cleanup when tid setup fails Currently, if any error occurs during ath12kdprxpeertidsetup, the tid value is already incremented, even though the corresponding TID is not actually allocated. Proceed to...

7.1CVSS6.5AI score0.00149EPSS
Exploits0References24
nessus
nessus
added 2025/09/10 12:0 a.m.4 views

Fedora 41 : loupe (2025-458d5882a1)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-458d5882a1 advisory. Rebuild with tracing-subscriber v0.3.20 for CVE-2025-58160. Tenable has extracted the preceding description block directly from the Fedora security advisory...

2.3CVSS5.5AI score0.00303EPSS
Exploits0References2
redhatcve
redhatcve
added 2025/08/30 6:19 p.m.6 views

CVE-2025-54541

QuickCMS is vulnerable to Cross-Site Request Forgery in page deletion functionality. Malicious attacker can craft special website, which when visited by the admin, will automatically send a POST request deleting an article. The vendor was notified early about this vulnerability, but didn't respon...

6.9CVSS6.9AI score0.00136EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2025/08/28 12:0 a.m.8 views

PT-2025-34982

Name of the Vulnerable Software and Affected Versions: QuickCMS version 6.8 Description: QuickCMS is susceptible to Reflected Cross-Site Scripting XSS through the sSort parameter within the admin panel functionality. An attacker can leverage this to execute arbitrary JavaScript code in a victim’s...

6.1CVSS6.2AI score0.00236EPSS
Exploits0References9
nessus
nessus
added 2025/08/26 12:0 a.m.3 views

SUSE SLES15 Security Update : python311 (SUSE-SU-2025:02984-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2025:02984-1 advisory. - CVE-2025-8194: Fixed denial of service caused by tar archives with negative offsets bsc1247249. Tenable has extracted the preceding...

7.5CVSS6.9AI score0.00611EPSS
Exploits0References4
nessus
nessus
added 2025/08/23 12:0 a.m.3 views

Fedora 42 : glab (2025-b597c89f32)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-b597c89f32 advisory. Update to 1.67.0 ---- Update to 1.66.0 Tenable has extracted the preceding description block directly from the Fedora security advisory. Note that Nessus has...

5.6AI score
Exploits0References1
nessus
nessus
added 2025/08/22 12:0 a.m.4 views

Fedora 43 : docker-buildx (2025-f2bcb1f99e)

The remote Fedora 43 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-f2bcb1f99e advisory. Automatic update for docker-buildx-0.27.0-1.fc43. Changelog Wed Aug 20 2025 Bradley G Smith - 0.27.0-1 - Update to release v0.27.0 - Resolves: rhvz2388453,...

5.6AI score
Exploits0References1
nessus
nessus
added 2025/08/21 12:0 a.m.6 views

AlmaLinux 8 : tomcat (ALSA-2025:14177)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2025:14177 advisory. tomcat: Apache Tomcat DoS in multipart upload CVE-2025-48988 tomcat: Apache Tomcat: Security constraint bypass for pre/post-resources CVE-2025-49125...

7.5CVSS7.6AI score0.64718EPSS
Exploits1References9
Rows per page
Query Builder