Lucene search
K

375 matches found

EUVD
EUVD
added 2026/02/02 3:20 p.m.5 views

EUVD-2025-206605

Memory Corruption when multiple threads simultaneously access a memory free API...

7.8CVSS5.3AI score0.00094EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/01/19 12:0 a.m.6 views

MiracleLinux 4 : abrt-2.0.8-26.0.1.AXS4, libreport-2.0.9-21.0.1.AXS4 (AXBA:2014-792:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXBA:2014-792:01 advisory. - LibreOffice 4.2.4 executes unspecified VBA macros automatically, which has unspecified impact and attack vectors, possibly related to...

10CVSS5.8AI score0.03922EPSS
Exploits0References3
Fedora
Fedora
added 2026/01/10 1:39 a.m.8 views

[SECURITY] Fedora 43 Update: python-urllib3-2.6.3-1.fc43

urllib3 is a powerful, user-friendly HTTP client for Python. urllib3 brings many critical features that are missing from the Python standard libraries: =E2=80=A2 Thread safety. =E2=80=A2 Connection pooling. =E2=80=A2 Client-side SSL/TLS verification. =E2=80=A2 File uploads with multipart encoding...

8.9CVSS7AI score0.02667EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/01/09 10:21 a.m.10 views

CVE-2008-6549

The passwordchecker function in config/multiconfig.py in MoinMoin 1.6.1 uses the cracklib and python-crack features even though they are not thread-safe, which allows remote attackers to cause a denial of service segmentation fault and crash via unknown vectors...

5CVSS6.8AI score0.01484EPSS
Exploits1References1
NVD
NVD
added 2026/01/08 10:15 a.m.5 views

CVE-2025-14017

When doing multi-threaded LDAPS transfers LDAP over TLS with libcurl, changing TLS options in one thread would inadvertently change them globally and therefore possibly also affect other concurrently setup transfers. Disabling certificate verification for a specific transfer could unintentionally...

6.3CVSS0.00106EPSS
Exploits0References3
OSV
OSV
added 2026/01/08 10:15 a.m.7 views

AZL-73740 CVE-2025-14017 affecting package cmake for versions less than 3.21.4-21

When doing multi-threaded LDAPS transfers LDAP over TLS with libcurl, changing TLS options in one thread would inadvertently change them globally and therefore possibly also affect other concurrently setup transfers. Disabling certificate verification for a specific transfer could unintentionally...

6.3CVSS6.1AI score0.00106EPSS
Exploits0References1
OSV
OSV
added 2026/01/08 10:15 a.m.8 views

AZL-73736 CVE-2025-14017 affecting package cmake for versions less than 3.30.3-11

When doing multi-threaded LDAPS transfers LDAP over TLS with libcurl, changing TLS options in one thread would inadvertently change them globally and therefore possibly also affect other concurrently setup transfers. Disabling certificate verification for a specific transfer could unintentionally...

6.3CVSS6.1AI score0.00106EPSS
Exploits0References1
OSV
OSV
added 2026/01/08 10:15 a.m.7 views

AZL-73676 CVE-2025-14017 affecting package curl for versions less than 8.11.1-5

When doing multi-threaded LDAPS transfers LDAP over TLS with libcurl, changing TLS options in one thread would inadvertently change them globally and therefore possibly also affect other concurrently setup transfers. Disabling certificate verification for a specific transfer could unintentionally...

6.3CVSS6.1AI score0.00106EPSS
Exploits0References1
OSV
OSV
added 2026/01/08 10:15 a.m.4 views

AZL-73743 CVE-2025-14017 affecting package curl for versions less than 8.8.0-8

When doing multi-threaded LDAPS transfers LDAP over TLS with libcurl, changing TLS options in one thread would inadvertently change them globally and therefore possibly also affect other concurrently setup transfers. Disabling certificate verification for a specific transfer could unintentionally...

6.3CVSS6AI score0.00106EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/01/08 10:7 a.m.35 views

CVE-2025-14017 broken TLS options for threaded LDAPS

When doing multi-threaded LDAPS transfers LDAP over TLS with libcurl, changing TLS options in one thread would inadvertently change them globally and therefore possibly also affect other concurrently setup transfers. Disabling certificate verification for a specific transfer could unintentionally...

0.00106EPSS
Exploits0References2
CVE
CVE
added 2026/01/08 10:7 a.m.64 views

CVE-2025-14017

CVE-2025-14017 (libcurl/curl) : In multi-threaded LDAPS transfers, changing TLS options in one thread can affect globally, impacting other concurrently configured transfers. This cross-thread side effect may also cause a per-transfer certificate verification setting to inadvertently disable featu...

6.3CVSS6.3AI score0.00106EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2026/01/08 10:7 a.m.4 views

CVE-2025-14017 broken TLS options for threaded LDAPS

When doing multi-threaded LDAPS transfers LDAP over TLS with libcurl, changing TLS options in one thread would inadvertently change them globally and therefore possibly also affect other concurrently setup transfers. Disabling certificate verification for a specific transfer could unintentionally...

6.3CVSS6.7AI score0.00106EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/01/08 10:7 a.m.4 views

CVE-2025-14017 broken TLS options for threaded LDAPS

When doing multi-threaded LDAPS transfers LDAP over TLS with libcurl, changing TLS options in one thread would inadvertently change them globally and therefore possibly also affect other concurrently setup transfers. Disabling certificate verification for a specific transfer could unintentionally...

6.5AI score0.00106EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2026/01/08 10:7 a.m.4 views

CVE-2025-14017

When doing multi-threaded LDAPS transfers LDAP over TLS with libcurl, changing TLS options in one thread would inadvertently change them globally and therefore possibly also affect other concurrently setup transfers. Disabling certificate verification for a specific transfer could unintentionally...

6.3CVSS6.7AI score0.00106EPSS
Exploits0References3
curl security advisories
curl security advisories
added 2026/01/07 8:0 a.m.9 views

broken TLS options for threaded LDAPS

When doing multi-threaded LDAPS transfers LDAP over TLS with libcurl, changing TLS options in one thread would inadvertently change them globally and therefore possibly also affect other concurrently setup transfers. Disabling certificate verification for a specific transfer could unintentionally...

6.3CVSS6.2AI score0.00106EPSS
Exploits0Affected Software2
RedhatCVE
RedhatCVE
added 2025/12/25 2:44 p.m.5 views

CVE-2023-54015

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Devcom, fix error flow in mlx5devcomregisterdevice In case devcom allocation is failed, mlx5 is always freeing the priv. However, this priv might have been allocated by a different thread, and freeing it might lead to...

7CVSS5.9AI score0.00173EPSS
Exploits0References4
Microsoft CVE
Microsoft CVE
added 2025/12/25 9:2 a.m.4 views

regulator: core: Protect regulator_supply_alias_list with regulator_list_mutex

...

5.5CVSS5.4AI score0.00177EPSS
Exploits0
OSV
OSV
added 2025/12/24 11:15 a.m.8 views

UBUNTU-CVE-2023-54015

In the Linux kernel, the following vulnerability has been resolved: net/mlx5: Devcom, fix error flow in mlx5devcomregisterdevice In case devcom allocation is failed, mlx5 is always freeing the priv. However, this priv might have been allocated by a different thread, and freeing it might lead to...

5.9AI score0.00173EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2025/12/24 11:15 a.m.5 views

CVE-2025-68354

In the Linux kernel, the following vulnerability has been resolved: regulator: core: Protect regulatorsupplyaliaslist with regulatorlistmutex regulatorsupplyaliaslist was accessed without any locking in regulatorsupplyalias, regulatorregistersupplyalias, and regulatorunregistersupplyalias...

5.9AI score0.00177EPSS
Exploits0References34
Positive Technologies
Positive Technologies
added 2025/12/24 12:0 a.m.11 views

PT-2025-52972

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the net/mlx5 component, specifically in the mlx5 devcom register device function. A use-after-free condition can occur if devcom allocation fails,...

7.8CVSS6.4AI score0.00462EPSS
Exploits2References898
Rows per page
Query Builder