Lucene search
+L

66 matches found

AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.9 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: mtd: parsers: A memory leak was fixed in the mtdparsertplinksafeloader.Parse function. The function mtdparsertplinksafeloader.Parse allocates a buffer through mtdparsertplinksafeloader.ReadTable. If the allocation of partsidx.nam...

5.5CVSS6.1AI score0.00122EPSS
Exploits0References2
OSV
OSV
added 2026/05/27 2:17 p.m.12 views

UBUNTU-CVE-2026-45921

In the Linux kernel, the following vulnerability has been resolved: mtd: parsers: Fix memory leak in mtdparsertplinksafeloaderparse The function mtdparsertplinksafeloaderparse allocates buf via mtdparsertplinksafeloaderreadtable. If the allocation for partsidx.name fails inside the loop, the code...

5.5CVSS5.9AI score0.00122EPSS
Exploits0References11
Debian CVE
Debian CVE
added 2026/05/27 12:17 p.m.11 views

CVE-2026-45921

In the Linux kernel, the following vulnerability has been resolved: mtd: parsers: Fix memory leak in mtdparsertplinksafeloaderparse The function mtdparsertplinksafeloaderparse allocates buf via mtdparsertplinksafeloaderreadtable. If the allocation for partsidx.name fails inside the loop, the code...

5.5CVSS5.9AI score0.00122EPSS
Exploits0
CVE
CVE
added 2026/05/27 12:17 p.m.26 views

CVE-2026-45921

CVE-2026-45921 affects the Linux kernel’s mtd: parsers component, specifically the function mtd_parser_tplink_safeloader_parse(). The issue arises when buf allocated by mtd_parser_tplink_safeloader_read_table() is not freed if parts[idx].name allocation fails inside the loop, causing a memory lea...

5.5CVSS5.9AI score0.00122EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2026/05/27 12:17 p.m.43 views

CVE-2026-45921 mtd: parsers: Fix memory leak in mtd_parser_tplink_safeloader_parse()

In the Linux kernel, the following vulnerability has been resolved: mtd: parsers: Fix memory leak in mtdparsertplinksafeloaderparse The function mtdparsertplinksafeloaderparse allocates buf via mtdparsertplinksafeloaderreadtable. If the allocation for partsidx.name fails inside the loop, the code...

0.00122EPSS
Exploits0References5
OSV
OSV
added 2026/05/27 12:17 p.m.4 views

CVE-2026-45921 mtd: parsers: Fix memory leak in mtd_parser_tplink_safeloader_parse()

In the Linux kernel, the following vulnerability has been resolved: mtd: parsers: Fix memory leak in mtdparsertplinksafeloaderparse The function mtdparsertplinksafeloaderparse allocates buf via mtdparsertplinksafeloaderreadtable. If the allocation for partsidx.name fails inside the loop, the code...

5.5CVSS6AI score0.00122EPSS
Exploits0References8
CNNVD
CNNVD
added 2026/05/27 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the mtd parser function mtd.parsertplinksafeloader.Parse. This function fails to release the...

5.9AI score0.00122EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2026/05/27 12:0 a.m.14 views

CVE-2026-45921

In the Linux kernel, the following vulnerability has been resolved: mtd: parsers: Fix memory leak in mtdparsertplinksafeloaderparse The function mtdparsertplinksafeloaderparse allocates buf via mtdparsertplinksafeloaderreadtable. If the allocation for partsidx.name fails inside the loop, the code...

5.5CVSS6.1AI score0.00122EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.28 views

PT-2026-43788

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak occurs in the mtd parser tplink safeloader parse function. The function allocates a buffer buf using mtd parser tplink safeloader read table. If the allocation for...

5.5CVSS5.7AI score0.00122EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/01/09 12:40 p.m.13 views

CVE-2023-43137

TPLINK TL-ER5120G 4.0 2.0.0 Build 210817 Rel.80868n has a command injection vulnerability, when an attacker adds ACL rules after authentication, and the rule name parameter has injection points...

8.8CVSS7.5AI score0.02062EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/09 12:39 p.m.10 views

CVE-2023-43138

TPLINK TL-ER5120G 4.0 2.0.0 Build 210817 Rel.80868n has a command injection vulnerability, when an attacker adds NAPT rules after authentication, and the rule name has an injection point...

8.8CVSS7.5AI score0.02062EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-53566

Malicious code in bioql PyPI...

8CVSS6.6AI score0.05479EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:9 a.m.7 views

CVE-2023-38909

An issue in TPLink Smart Bulb Tapo series L530 before 1.2.4, L510E before 1.1.0, L630 before 1.0.4, P100 before 1.5.0, and Tapo Application 2.8.14 allows a remote attacker to obtain sensitive information via the IV component in the AES128-CBC function...

6.5CVSS6.5AI score0.00759EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2025/05/23 4:9 a.m.8 views

CVE-2023-38907

An issue in TPLink Smart Bulb Tapo series L530 before 1.2.4, L510E before 1.1.0, L630 before 1.0.4, P100 before 1.5.0, and Tapo Application 2.8.14 allows a remote attacker to replay old messages encrypted with a still valid session key...

7.5CVSS7AI score0.00694EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:21 a.m.10 views

CVE-2023-38908

An issue in TPLink Smart Bulb Tapo series L530 before 1.2.4, L510E before 1.1.0, L630 before 1.0.4, P100 before 1.5.0, and Tapo Application 2.8.14 allows a remote attacker to obtain sensitive information via the TSKEP authentication function...

6.5CVSS6.7AI score0.00516EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 2:20 a.m.11 views

CVE-2023-38906

An issue in TPLink Smart Bulb Tapo series L530 1.1.9, L510E 1.0.8, L630 1.0.3, P100 1.4.9, Smart Camera Tapo series C200 1.1.18, and Tapo Application 2.8.14 allows a remote attacker to obtain sensitive information via the authentication code for the UDP message...

6.5CVSS7AI score0.00459EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/09 12:26 a.m.7 views

CVE-2024-57357

An issue in TPLINK TL-WPA 8630 TL-WPA8630USV22.0.4 Build 20230427 allows a remote attacker to execute arbitrary code via function sub4256CC, which allows command injection by injecting 'devpwd'...

8CVSS8.3AI score0.05479EPSS
Exploits0References1
NVD
NVD
added 2025/02/07 10:15 p.m.9 views

CVE-2024-57357

An issue in TPLINK TL-WPA 8630 TL-WPA8630USV22.0.4 Build 20230427 allows a remote attacker to execute arbitrary code via function sub4256CC, which allows command injection by injecting 'devpwd'...

8CVSS0.05479EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/02/07 12:0 a.m.13 views

CVE-2024-57357

An issue in TPLINK TL-WPA 8630 TL-WPA8630USV22.0.4 Build 20230427 allows a remote attacker to execute arbitrary code via function sub4256CC, which allows command injection by injecting 'devpwd'...

0.05479EPSS
Exploits0References1
CVE
CVE
added 2025/02/07 12:0 a.m.54 views

CVE-2024-57357

CVE-2024-57357 affects TP-LINK TL-WPA 8630 (US) model, specifically version 2.0.4 Build 20230427, where a vulnerability in function sub_4256CC enables remote command injection via the devpwd parameter, potentially allowing arbitrary code execution. Exploitation details are described as a remote c...

8CVSS8.3AI score0.05479EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder