Lucene search
K

12658 matches found

OSV
OSV
added 2025/05/01 1:15 p.m.1 views

DEBIAN-CVE-2025-23145

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix NULL pointer in canacceptnewsubflow When testing valkey benchmark tool with MPTCP, the kernel panics in 'mptcpcanacceptnewsubflow' because subflowreq-msk is NULL. Call trace: mptcpcanacceptnewsubflow...

5.5CVSS5.6AI score0.00176EPSS
Exploits0References1
NVD
NVD
added 2025/05/01 1:15 p.m.6 views

CVE-2025-23149

In the Linux kernel, the following vulnerability has been resolved: tpm: do not start chip while suspended Checking TPMCHIPFLAGSUSPENDED after the call to tpmfindgetops can lead to a spurious tpmchipstart call: 35985.503771 i2c i2c-1: Transfer while suspended 35985.503796 WARNING: CPU: 0 PID: 74 ...

5.5CVSS0.00167EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/05/01 12:55 p.m.9 views

CVE-2025-23149 tpm: do not start chip while suspended

In the Linux kernel, the following vulnerability has been resolved: tpm: do not start chip while suspended Checking TPMCHIPFLAGSUSPENDED after the call to tpmfindgetops can lead to a spurious tpmchipstart call: 35985.503771 i2c i2c-1: Transfer while suspended 35985.503796 WARNING: CPU: 0 PID: 74 ...

0.00167EPSS
Exploits0References5
OSV
OSV
added 2025/05/01 12:55 p.m.7 views

CVE-2025-23145 mptcp: fix NULL pointer in can_accept_new_subflow

In the Linux kernel, the following vulnerability has been resolved: mptcp: fix NULL pointer in canacceptnewsubflow When testing valkey benchmark tool with MPTCP, the kernel panics in 'mptcpcanacceptnewsubflow' because subflowreq-msk is NULL. Call trace: mptcpcanacceptnewsubflow...

5.5CVSS5.9AI score0.00176EPSS
Exploits0References13
OSV
OSV
added 2025/05/01 11:15 a.m.5 views

CVE-2025-4162

A vulnerability classified as critical was found in PCMan FTP Server up to 2.0.7. This vulnerability affects unknown code of the component ASCII Command Handler. The manipulation leads to buffer overflow. The attack can be initiated remotely. The exploit has been disclosed to the public and may b...

9.8CVSS6AI score
Exploits0References4
CNNVD
CNNVD
added 2025/05/01 12:0 a.m.3 views

PCMan FTP Server 安全漏洞

PCMan FTP Server is PCMan open source set of FTP server software. PCMan FTP Server suffers from a buffer overflow vulnerability that originates from the VERBOSE command handler failing to properly validate the length and size of input data, which can be exploited by an attacker to cause a denial ...

9.8CVSS7.2AI score0.0062EPSS
Exploits1References4
CNNVD
CNNVD
added 2025/05/01 12:0 a.m.3 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from sctpsendmsg not detecting released transfer references, which could lead to reuse after release...

7.8CVSS6.5AI score0.00187EPSS
Exploits0References9
CNNVD
CNNVD
added 2025/05/01 12:0 a.m.1 views

PCMan FTP Server 安全漏洞

PCMan FTP Server is PCMan open source set of FTP server software. PCMan FTP Server suffers from a buffer overflow vulnerability, which originates from the SEND command handler failing to properly validate the length and size of the input data, which can be exploited by an attacker to cause a deni...

9.8CVSS7.2AI score0.0062EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2025/04/30 4:34 p.m.16 views

Homograph attack allows Unicode lookalike characters to bypass validation.

Impact Attackers can deceive users into sending funds to an unintended address. Patches https://github.com/cryptocoinjs/base-x/pull/86...

8.7CVSS6.7AI score0.00354EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2025/04/30 6:15 a.m.3 views

CVE-2025-3471

The SureForms WordPress plugin before 1.4.4 does not have proper authorisation check when updating its settings via the REST API, which could allow Contributor and above roles to perform such action...

4.9CVSS5.8AI score
Exploits0References1
CNVD
CNVD
added 2025/04/30 12:0 a.m.1 views

IBM Sterling Connect:Direct Web Services Code Issue Vulnerability

IBM Sterling Connect:Direct Web Services is a file-based, peer-to-peer file transfer solution from International Business Machines IBM. A code issue vulnerability exists in IBM Sterling Connect:Direct Web Services that stems from a browser closing without disabling the session, no details of the...

6.5CVSS6.9AI score0.00252EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/04/30 12:0 a.m.2 views

Bosch Rexroth ctrlX OS 安全漏洞

Bosch Rexroth ctrlX OS is a Linux-based real-time operating system from Bosch Rexroth, Germany, designed as an open control platform for industrial automation equipment. A security vulnerability exists in Bosch Rexroth ctrlX OS that originates from a specially crafted HTTP request in the network...

7.1CVSS6.5AI score0.00477EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/04/28 12:0 a.m.6 views

The vulnerability of the data transmission function in the Nearby Share data sharing tool between Google Quick Share devices allows a perpetrator to cause a service failure.

The vulnerability of the Nearby Share data transfer function in the Google Quick Share data sharing tool is related to improper cleaning or release of resources. Exploiting this vulnerability could allow an attacker to cause service failures...

6.8CVSS6AI score0.00225EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/04/28 12:0 a.m.6 views

The vulnerability of the data transfer function in the Nearby Share utility allows a hacker to upload arbitrary files onto the user’s device.

The vulnerability of the “Nearby Share” data transfer function in the Google Quick Share data sharing tool relates to bypassing the authentication process. Exploiting this vulnerability could allow an attacker to upload arbitrary files onto the user’s device remotely...

7.1CVSS6.1AI score0.00212EPSS
Exploits0References4Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2025/04/25 10:53 a.m.50 views

Security Bulletin: Multiple Vulnerabilities in IBM webMethods Managed File Transfer

Summary Multiple vulnerabilities were addressed in the latest fix release for IBM webMethods Managed File Transfer 11.1 Vulnerability Details CVEID:CVE-2023-2953 DESCRIPTION: A vulnerability was found in openldap. This security flaw causes a null pointer dereference in bermemallocx function...

7.5CVSS10AI score0.99999EPSS
Exploits25Affected Software1
Packet Storm News
Packet Storm News
added 2025/04/25 12:0 a.m.6 views

NoEsis: Differentially Private Knowledge Transfer in Modular LLM Adaptation

Large Language Models LLM are typically trained on vast amounts of data from various sources. Even when designed modularly e.g., Mixture-of-Experts, LLMs can leak privacy on their sources. Conversely, training such models in isolation arguably prohibits generalization. To this end, we propose a...

7.1AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/04/23 12:0 a.m.7 views

The vulnerability of server software like HAProxy, related to deficiencies in HTTP request processing, allows attackers to circumvent security restrictions and send hidden HTTP requests (HTTP Request Smuggling attack).

The vulnerability of server-side software like HAProxy is related to deficiencies in HTTP request processing. Exploiting this vulnerability allows a malicious actor to bypass security restrictions and send hidden HTTP requests a type of HTTP Request Smuggling attack...

5.3CVSS5.8AI score0.01043EPSS
Exploits0References9Affected Software2
CNNVD
CNNVD
added 2025/04/23 12:0 a.m.3 views

IBM InfoSphere Information Server 安全漏洞

IBM InfoSphere Information Server is a set of data integration platforms from International Business Machines IBM. The platform can be used to integrate data information obtained from various sources. A plaintext transfer vulnerability exists in IBM InfoSphere Information Server version 11.7, whi...

3.7CVSS6.3AI score0.00144EPSS
Exploits0References1
Krebs on Security
Krebs on Security
added 2025/04/22 1:48 a.m.25 views

Whistleblower: DOGE Siphoned NLRB Case Data

A security architect with the National Labor Relations Board NLRB alleges that employees from Elon Musk 's Department of Government Efficiency DOGE transferred gigabytes of sensitive data from agency case files in early March, using short-lived accounts configured to leave few traces of network...

7.3AI score
Exploits0
CNVD
CNVD
added 2025/04/22 12:0 a.m.1 views

PCMan FTP Server Buffer Overflow Vulnerability (CNVD-2025-10695)

PCMan FTP Server is an FTP server software that provides file transfer services. PCMan FTP Server suffers from a buffer overflow vulnerability that stems from the failure of the HOST Command Handler module to properly process input when handling a specific request. No detailed vulnerability detai...

9.8CVSS7.5AI score0.0062EPSS
Exploits1References1
Rows per page
Query Builder