Lucene search
K

56 matches found

Positive Technologies
Positive Technologies
added 2026/05/18 12:0 a.m.15 views

PT-2026-41784

Name of the Vulnerable Software and Affected Versions OpenTelemetry eBPF Instrumentation versions prior to 0.9.0 Description OpenTelemetry eBPF Instrumentation exports raw Redis error text as the span status message. Because Redis error replies can contain sensitive values or attacker-controlled...

6.5CVSS5.9AI score0.00212EPSS
Exploits1References6
Github Security Blog
Github Security Blog
added 2026/05/14 8:29 p.m.9 views

Svelte: ReDoS in `<svelte:element>` Tag Validation

An internal regex in the Svelte runtime can take exponential time to test in . You are only vulnerable to this if you allow tags of unconstrained length. If your application only allows a predetermined list of tags or trims their length before passing them to svelte:element, you are safe...

7.5CVSS5.8AI score0.00421EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2026/02/18 2:53 p.m.5 views

CVE-2025-71237 nilfs2: Fix potential block overflow that cause system hang

In the Linux kernel, the following vulnerability has been resolved: nilfs2: Fix potential block overflow that cause system hang When a user executes the FITRIM command, an underflow can occur when calculating nblocks if endblock is too small. Since nblocks is of type sectort, which is u64, a...

5.5CVSS5.4AI score0.00118EPSS
Exploits0References11
RedhatCVE
RedhatCVE
added 2025/12/25 11:5 a.m.22 views

CVE-2023-53867

In the Linux kernel, the following vulnerability has been resolved: ceph: fix potential use-after-free bug when trimming caps When trimming the caps and just after the 'session-scaplock' is released in cephiteratesessioncaps the cap maybe removed by another thread, and when using the stale cap...

5.5CVSS5.9AI score0.00168EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/12/25 12:58 a.m.2 views

SUSE CVE-2023-53867

In the Linux kernel, the following vulnerability has been resolved: ceph: fix potential use-after-free bug when trimming caps When trimming the caps and just after the 'session-scaplock' is released in cephiteratesessioncaps the cap maybe removed by another thread, and when using the stale cap...

5.5CVSS6.5AI score0.00168EPSS
Exploits0References3
NVD
NVD
added 2025/12/24 11:15 a.m.4 views

CVE-2023-53867

In the Linux kernel, the following vulnerability has been resolved: ceph: fix potential use-after-free bug when trimming caps When trimming the caps and just after the 'session-scaplock' is released in cephiteratesessioncaps the cap maybe removed by another thread, and when using the stale cap...

0.00168EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/12/24 11:15 a.m.2 views

CVE-2023-53867

In the Linux kernel, the following vulnerability has been resolved: ceph: fix potential use-after-free bug when trimming caps When trimming the caps and just after the 'session-scaplock' is released in cephiteratesessioncaps the cap maybe removed by another thread, and when using the stale cap...

6.3AI score0.00168EPSS
Exploits0References5
OSV
OSV
added 2025/12/24 11:15 a.m.4 views

UBUNTU-CVE-2023-53867

In the Linux kernel, the following vulnerability has been resolved: ceph: fix potential use-after-free bug when trimming caps When trimming the caps and just after the 'session-scaplock' is released in cephiteratesessioncaps the cap maybe removed by another thread, and when using the stale cap...

5.7AI score0.00168EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/12/24 10:55 a.m.28 views

CVE-2023-53867 ceph: fix potential use-after-free bug when trimming caps

In the Linux kernel, the following vulnerability has been resolved: ceph: fix potential use-after-free bug when trimming caps When trimming the caps and just after the 'session-scaplock' is released in cephiteratesessioncaps the cap maybe removed by another thread, and when using the stale cap...

0.00168EPSS
Exploits0References4
CVE
CVE
added 2025/12/24 10:55 a.m.17 views

CVE-2023-53867

CVE-2023-53867 affects the Linux kernel ceph subsystem. A potential use-after-free occurs when trimming caps in ceph_iterate_session_caps(): after releasing session-&gt;s_cap_lock, a cap could be removed by another thread and then the stale cap memory is used in callbacks. The fix adds a check fo...

6.2AI score0.00168EPSS
Exploits0References4
OSV
OSV
added 2025/12/24 10:55 a.m.2 views

CVE-2023-53867 ceph: fix potential use-after-free bug when trimming caps

In the Linux kernel, the following vulnerability has been resolved: ceph: fix potential use-after-free bug when trimming caps When trimming the caps and just after the 'session-scaplock' is released in cephiteratesessioncaps the cap maybe removed by another thread, and when using the stale cap...

6.4AI score0.00168EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2025/12/24 12:0 a.m.3 views

PT-2025-52942

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the Ceph subsystem related to capability trimming. Specifically, a use-after-free condition can occur when trimming capabilities after releasing t...

6.2AI score0.00168EPSS
Exploits0References19
Tenable Nessus
Tenable Nessus
added 2025/12/24 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-53867

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ceph: fix potential use-after-free bug when trimming caps When trimming the caps and just after the 'session-scaplock' is released in cephiteratesessioncaps the...

6.7AI score0.00168EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2025/11/11 8:21 a.m.7 views

kernel: block: fix adding folio to bio

In the Linux kernel, the following vulnerability has been resolved: block: fix adding folio to bio 4GB folio is possible on some ARCHs, such as aarch64, 16GB hugepage is supported, then 'offset' of folio can't be held in 'unsigned int', cause warning in bioaddfolionofail and IO failure. Fix it by...

5.5CVSS5.7AI score0.00162EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2020-7238

Malware in sbrugna...

10CVSS8.7AI score0.01174EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-9218

Malware in sbrugna...

8.8CVSS9.1AI score0.01566EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-0397

Malicious code in bioql PyPI...

8.8CVSS8.3AI score0.00796EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/08/19 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2018-17465

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Incorrect implementation of object trimming in V8 in Google Chrome prior to 70.0.3538.67 allowed a remote attacker to potentially exploit object corruption via ...

8.8CVSS8.1AI score0.01566EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 3:18 a.m.3 views

CVE-2023-23612

OpenSearch is an open source distributed and RESTful search engine. OpenSearch uses JWTs to store role claims obtained from the Identity Provider IdP when the authentication backend is SAML or OpenID Connect. There is an issue in how those claims are processed from the JWTs where the leading and...

8.8CVSS8.3AI score0.00796EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 2:55 p.m.6 views

CVE-2020-15164

in Scratch Login MediaWiki extension before version 1.1, any account can be logged into by using the same username with leading, trailing, or repeated underscores, since those are treated as whitespace and trimmed by MediaWiki. This affects all users on any wiki using this extension. Since versio...

10CVSS6.9AI score0.01174EPSS
Exploits0References4
Rows per page
Query Builder