Lucene search
K

9 matches found

NVD
NVD
added 2026/05/01 2:16 p.m.9 views

CVE-2026-31711

In the Linux kernel, the following vulnerability has been resolved: smb: server: fix activenumconn leak on transport allocation failure Commit 77ffbcac4e56 "smb: server: fix leak of activenumconn in ksmbdtcpnewconnection" addressed the kthreadrun failure path. The earlier alloctransport == NULL...

7.5CVSS0.00549EPSS
Exploits0References7
OSV
OSV
added 2026/03/18 4:17 p.m.5 views

GHSA-2PM6-9FHX-VVG3 The mailqueue TYPO3 extension has Insecure Deserialization in `TransportFailure` class

Description The extension fails to properly define allowed classes used when deserializing transport failure metadata. An attacker may exploit this to execute untrusted serialized code. Note that an active exploit requires write access to the directory configured at...

8.8CVSS5.9AI score0.00215EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2026/03/18 4:17 p.m.8 views

The mailqueue TYPO3 extension has Insecure Deserialization in `TransportFailure` class

Description The extension fails to properly define allowed classes used when deserializing transport failure metadata. An attacker may exploit this to execute untrusted serialized code. Note that an active exploit requires write access to the directory configured at...

8.8CVSS5.9AI score0.00215EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2026/03/17 9:16 a.m.11 views

CVE-2026-1323

The extension fails to properly define allowed classes used when deserializing transport failure metadata. An attacker may exploit this to execute untrusted serialized code. Note that an active exploit requires write access to the directory configured at...

8.8CVSS0.00215EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/17 8:33 a.m.1 views

CVE-2026-1323 Insecure Deserialization in extension "Mailqueue" (mailqueue)

The extension fails to properly define allowed classes used when deserializing transport failure metadata. An attacker may exploit this to execute untrusted serialized code. Note that an active exploit requires write access to the directory configured at...

5.2CVSS5.9AI score0.00215EPSS
Exploits0References1
CVE
CVE
added 2026/03/17 8:33 a.m.26 views

CVE-2026-1323

CVE-2026-1323 highlights an insecure deserialization flaw in the TYPO3 mailqueue extension, specifically in the TransportFailure class. An attacker could execute untrusted serialized code, but an active exploit requires write access to the directory configured by $GLOBALS['TYPO3_CONF_VARS']['MAIL...

8.8CVSS5.9AI score0.00215EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/03/17 8:33 a.m.31 views

CVE-2026-1323 Insecure Deserialization in extension "Mailqueue" (mailqueue)

The extension fails to properly define allowed classes used when deserializing transport failure metadata. An attacker may exploit this to execute untrusted serialized code. Note that an active exploit requires write access to the directory configured at...

5.2CVSS0.00215EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/17 8:33 a.m.3 views

CVE-2026-1323

The extension fails to properly define allowed classes used when deserializing transport failure metadata. An attacker may exploit this to execute untrusted serialized code. Note that an active exploit requires write access to the directory configured at...

5.2CVSS5.9AI score0.00215EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2025/07/25 12:0 a.m.4 views

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in Linux kernel that stems from the netpoll module not initializing the UDP checksum field, which could lead to an IPv6 transport failure...

5.5CVSS6.1AI score0.00137EPSS
Exploits0References3
Rows per page
Query Builder