153 matches found
EUVD-2024-52833
Malicious code in bioql PyPI...
EUVD-2025-25552
Malicious code in bioql PyPI...
CVE-2022-50302
In the Linux kernel, the following vulnerability has been resolved: lockd: set other missing fields when unlocking files vfslockfile expects the struct filelock to be fully initialised by the caller. Re-exported NFSv3 has been seen to Oops if the flfile field is NULL...
CVE-2022-50302
CVE-2022-50302: Linux kernel vulnerability where lockd/vfs_lock_file() assumes a fully initialised struct file_lock; if fl_file is NULL (notably with re-exported NFSv3), the caller may Oops. Affected: Linux kernel (details describe the unlocking path in lockd and vfs_lock_file). Impact per source...
CVE-2022-50302 lockd: set other missing fields when unlocking files
In the Linux kernel, the following vulnerability has been resolved: lockd: set other missing fields when unlocking files vfslockfile expects the struct filelock to be fully initialised by the caller. Re-exported NFSv3 has been seen to Oops if the flfile field is NULL...
CVE-2022-50302 lockd: set other missing fields when unlocking files
In the Linux kernel, the following vulnerability has been resolved: lockd: set other missing fields when unlocking files vfslockfile expects the struct filelock to be fully initialised by the caller. Re-exported NFSv3 has been seen to Oops if the flfile field is NULL...
CVE-2025-38711
CVE-2025-38711 : Linux kernel vulnerability fixed in smb/server deadlock scenario when linking with ReplaceIfExists. If smb2_create_link() is called with ReplaceIfExists and the target name exists, ksmbd_vfs_kern_path_locked() locks the parent, then ksmbd_vfs_remove_file() deletes the file, and k...
Google Android 安全漏洞
Google Android is a Linux-based open source operating system from the American company Google. Google Android suffers from a security vulnerability that stems from improper input validation and could lead to the removal of biometric unlocking functionality across user profiles...
Malicious code in unlocking (npm)
The package unlocking was found to contain malicious code...
MAL-2025-37872 Malicious code in unlocking (npm)
The package unlocking was found to contain malicious code...
ROS-20250813-05
The cross-platform xen hypervisor vulnerability is related to double unlocking when handling x86 guest x86 interrupts. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of denial of service...
Online portal exposed car and personal data, allowed anyone to remotely unlock cars
A carmaker’s online dealership portal has been found leaking the private information and vehicle data of its customers. This also meant that anyone with access could remotely break into a car. Researcher Eaton Zveare shared his discovery with TechCrunch. Although he said he has chosen not to...
CVE-2022-50089
In the Linux kernel, the following vulnerability has been resolved: btrfs: ensure pages are unlocked on cowfilerange failure There is a hungtask report on zoned btrfs like below. https://github.com/naota/linux/issues/59 726.328648 INFO: task rocksdb:high0:11085 blocked for more than 241 seconds...
CVE-2022-50089 btrfs: ensure pages are unlocked on cow_file_range() failure
In the Linux kernel, the following vulnerability has been resolved: btrfs: ensure pages are unlocked on cowfilerange failure There is a hungtask report on zoned btrfs like below. https://github.com/naota/linux/issues/59 726.328648 INFO: task rocksdb:high0:11085 blocked for more than 241 seconds...
PT-2025-25420 · Unknown · Kia-Branded Aftermarket Generic Smart Keyless Entry System
Name of the Vulnerable Software and Affected Versions: KIA-branded Aftermarket Generic Smart Keyless Entry System versions 2022 through 2025 Description: The issue is related to the use of fixed learning codes in the Key Fob Transmitter, which allows a replay attack. This affects KIA vehicles in...
CVE-2025-5256
CVE-2025-5256 Open Redirect in Mautic : The vulnerability affects the /s/action/unlock/user.user/0 endpoint where the returnUrl parameter is not properly validated, allowing an attacker to redirect users to arbitrary external sites. Reported impact includes phishing and delivery of exploits when ...
GHSA-6VX9-9R2G-8373 Mautic has an Open Redirect vulnerability on user unlock path.
Summary This advisory addresses an Open Redirection vulnerability in Mautic's user unlocking endpoint. This vulnerability could be exploited by an attacker to redirect legitimate users to malicious websites, potentially leading to phishing attacks or the delivery of exploit kits. Open Redirection...
CVE-2021-36543
Cross-Site Request Forgery CSRF vulnerability in the /op/op.UnlockDocument.php in SeedDMS v5.1.x 5.1.23 and v6.0.x 6.0.16 allows a remote attacker to unlock any document without victim's knowledge, by enticing an authenticated user to visit an attacker's web page...
CVE-2020-14974
The driver in IOBit Unlocker 1.1.2 allows a low-privileged user to unlock a file and kill processes even ones running as SYSTEM that hold a handle, via IOCTL code 0x222124...
CVE-2025-22120 ext4: goto right label 'out_mmap_sem' in ext4_setattr()
In the Linux kernel, the following vulnerability has been resolved: ext4: goto right label 'outmmapsem' in ext4setattr Otherwise, if ext4inodeattachjinode fails, a hung task will happen because filemapinvalidateunlock isn't called to unlock mapping-invalidatelock. Like this: EXT4-fs error device...