Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

12611 matches found

Cvelist
Cvelistadded 2025/12/09 10:44 a.m.18 views

CVE-2025-40830

A vulnerability has been identified in SINEC Security Monitor All versions V4.10.0. The affected application does not have proper authorization checks for the filetransfer feature in ssmctl-client command. This could allow an authenticated, lowly privileged local attacker to read or write to any...

8.4CVSS0.00135EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/12/09 10:44 a.m.3 views

CVE-2025-40830

A vulnerability has been identified in SINEC Security Monitor All versions V4.10.0. The affected application does not have proper authorization checks for the filetransfer feature in ssmctl-client command. This could allow an authenticated, lowly privileged local attacker to read or write to any...

8.4CVSS6.2AI score0.00135EPSS
Exploits0References1
CVE
CVEadded 2025/12/09 10:44 a.m.9 views

CVE-2025-40830

CVE-2025-40830 affects Siemens SINEC Security Monitor before version 4.10.0. The issue is missing authorization checks for the file_transfer feature in ssmctl-client, enabling an authenticated, low-priv local attacker to read or write arbitrary files on the server or sensor. Mitigation: upgrade t...

8.4CVSS6.2AI score0.00135EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2025/12/09 1:30 a.m.33 views

CVE-2023-53847 usb-storage: alauda: Fix uninit-value in alauda_check_media()

In the Linux kernel, the following vulnerability has been resolved: usb-storage: alauda: Fix uninit-value in alaudacheckmedia Syzbot got KMSAN to complain about access to an uninitialized value in the alauda subdriver of usb-storage: BUG: KMSAN: uninit-value in alaudatransport+0x462/0x57f0...

0.00201EPSS
Exploits0References8
CVE
CVEadded 2025/12/09 1:30 a.m.14 views

CVE-2023-53847

CVE-2023-53847 affects the Linux kernel usb-storage alauda subdriver. The root cause is alauda_check_media() using USB transfer data without verifying transfer success, risking uninitialized data usage; a related issue exists in alauda_get_media_status(). The fix adds a check for transfer success...

6.2AI score0.00201EPSS
Exploits0References8
OSV
OSVadded 2025/12/09 1:30 a.m.5 views

CVE-2023-53847 usb-storage: alauda: Fix uninit-value in alauda_check_media()

In the Linux kernel, the following vulnerability has been resolved: usb-storage: alauda: Fix uninit-value in alaudacheckmedia Syzbot got KMSAN to complain about access to an uninitialized value in the alauda subdriver of usb-storage: BUG: KMSAN: uninit-value in alaudatransport+0x462/0x57f0...

6.5AI score0.00201EPSS
Exploits0References11
Debian CVE
Debian CVEadded 2025/12/09 1:30 a.m.6 views

CVE-2023-53847

In the Linux kernel, the following vulnerability has been resolved: usb-storage: alauda: Fix uninit-value in alaudacheckmedia Syzbot got KMSAN to complain about access to an uninitialized value in the alauda subdriver of usb-storage: BUG: KMSAN: uninit-value in alaudatransport+0x462/0x57f0...

5.6AI score0.00201EPSS
Exploits0
NVD
NVDadded 2025/12/09 1:16 a.m.4 views

CVE-2023-53778

In the Linux kernel, the following vulnerability has been resolved: accel/qaic: Clean up integer overflow checking in mapuserpages The encodedma function has some validation on intrans-size but it would be more clear to move those checks to findandmapuserpages. The encodedma had two checks: if...

0.00155EPSS
Exploits0References2
OSV
OSVadded 2025/12/09 1:16 a.m.4 views

DEBIAN-CVE-2023-53778

In the Linux kernel, the following vulnerability has been resolved: accel/qaic: Clean up integer overflow checking in mapuserpages The encodedma function has some validation on intrans-size but it would be more clear to move those checks to findandmapuserpages. The encodedma had two checks: if...

5.3AI score0.00155EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/12/09 12:0 a.m.25 views

CVE-2023-53778 accel/qaic: Clean up integer overflow checking in map_user_pages()

In the Linux kernel, the following vulnerability has been resolved: accel/qaic: Clean up integer overflow checking in mapuserpages The encodedma function has some validation on intrans-size but it would be more clear to move those checks to findandmapuserpages. The encodedma had two checks: if...

0.00155EPSS
Exploits0References2
Debian CVE
Debian CVEadded 2025/12/09 12:0 a.m.3 views

CVE-2023-53778

In the Linux kernel, the following vulnerability has been resolved: accel/qaic: Clean up integer overflow checking in mapuserpages The encodedma function has some validation on intrans-size but it would be more clear to move those checks to findandmapuserpages. The encodedma had two checks: if...

5.3AI score0.00155EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2025/12/09 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2023-53847

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - usb-storage: alauda: Fix uninit-value in alaudacheckmedia Syzbot got KMSAN to complain about access to an uninitialized value in the alauda subdriver of...

6.3AI score0.00201EPSS
Exploits0References3
CNNVD
CNNVDadded 2025/12/09 12:0 a.m.3 views

DigitalPA Legality WHISTLEBLOWING 安全漏洞

DigitalPA Legality WHISTLEBLOWING is a software system used to manage reporting by DigitalPA Italy. A security vulnerability exists in DigitalPA Legality WHISTLEBLOWING, which stems from the absence of critical HTTP security headers and could lead to cross-site scripting and clickjacking attacks...

7.1CVSS6AI score0.00374EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2025/12/09 12:0 a.m.4 views

PT-2025-49638

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw in the accel/qaic component related to integer overflow checking within the map user pages function. The encode dma function previously had validation on...

6.8AI score0.00155EPSS
Exploits0
Positive Technologies
Positive Technologiesadded 2025/12/09 12:0 a.m.5 views

PT-2025-49839

A vulnerability has been identified in SINEC Security Monitor All versions V4.10.0. The affected application does not have proper authorization checks for the file transfer feature in ssmctl-client command. This could allow an authenticated, lowly privileged local attacker to read or write to any...

8.4CVSS6.5AI score0.00135EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/12/09 12:0 a.m.5 views

PT-2025-49842

A vulnerability has been identified in SIMATIC CN 4100 All versions V4.0.1. The affected application do not properly validate input parameters in its REST API, resulting in improper handling of unexpected arguments. This could allow an authenticated attacker to execute arbitrary code with limited...

8.7CVSS7.7AI score0.00493EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/12/09 12:0 a.m.8 views

PT-2025-49738

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 5.3.0-rc7+ Description The usb-storage alauda subdriver contains a flaw where alauda check media does not verify successful USB transfers before utilizing the received data. This can lead to access of uninitializ...

7.4AI score0.00201EPSS
Exploits0
Microsoft CVE
Microsoft CVEadded 2025/12/08 9:1 a.m.5 views

ALSA: usb-audio: Fix potential overflow of PCM transfer buffer

...

4.3CVSS7AI score0.00214EPSS
Exploits0
NVD
NVDadded 2025/12/08 2:15 a.m.3 views

CVE-2023-53761

In the Linux kernel, the following vulnerability has been resolved: USB: usbtmc: Fix direction for 0-length ioctl control messages The syzbot fuzzer found a problem in the usbtmc driver: When a user submits an ioctl for a 0-length control transfer, the driver does not check that the direction is...

0.00161EPSS
Exploits0References6
OSV
OSVadded 2025/12/08 2:15 a.m.1 views

UBUNTU-CVE-2023-53761

In the Linux kernel, the following vulnerability has been resolved: USB: usbtmc: Fix direction for 0-length ioctl control messages The syzbot fuzzer found a problem in the usbtmc driver: When a user submits an ioctl for a 0-length control transfer, the driver does not check that the direction is...

6.2AI score0.00161EPSS
Exploits0References9
Rows per page
Query Builder