Lucene search
K

185 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.1 views

Astra Linux – Vulnerability in Linux 6.1

In the Linux kernel, the following vulnerability has been resolved: spmi: mediatek – Fixed UAF issue when removing devices The pmif driver data containing the clocks is allocated together with spmicontroller. When a device is removed, spmicontroller is freed first, and then the devices, including...

3.8CVSS5.8AI score0.00562EPSS
Exploits0References2
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerability in Linux 5.10

In the Linux kernel, the following vulnerabilities have been resolved: ASoC: qcom: q6apm: moved component registration to unmanaged version The q6apm component registers DAIS dynamically from ASoC toplology. These resources are allocated using device-managed API methods. Assigning both components...

7.8CVSS5.7AI score0.00126EPSS
Exploits0References1
Trend Micro Simply Security
Trend Micro Simply Security
added 2026/06/08 12:0 a.m.5 views

Old WinRAR Flaw Fuels Attacks on Ukraine: How Unmanaged Software Keeps the Door Open

Two separate Russia-aligned campaigns are still exploiting the WinRAR flaw CVE-2025-8088 against Ukrainian organizations nearly a year after it was patched, showing how unmanaged software keeps an exploited entry point open long after the fix ships...

8.8CVSS7.3AI score0.85778EPSS
Exploits35
CNNVD
CNNVD
added 2026/05/27 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the failure of the prepare-peercred function in unixstreamconnect, resulting in unmanaged new...

5.8AI score0.00153EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/05/27 12:0 a.m.7 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the au1200fbdrvprobe function. When platformgetirq fails, it directly returns unmanaged memory,...

5.8AI score0.00122EPSS
Exploits0References8
Github Security Blog
Github Security Blog
added 2026/05/19 7:30 p.m.22 views

Kong Ingress Controller for Kubernetes (KIC): Cross-namespace TLS Secret Exfiltration in Gateways with GatewayClass missing `konghq.com/gatewayclass-unmanaged: 'true'` annotation

Summary A vulnerability in the Kong Ingress Controller KIC allows for the unauthorized exfiltration of TLS certificates and private keys across Kubernetes namespace boundaries. In "managed" mode where the GatewayClass lacks an unmanaged annotation, the Gateway TLS translator skips critical status...

5.9AI score
Exploits0References5Affected Software3
HackRead
HackRead
added 2026/05/19 1:0 p.m.12 views

Two-Thirds of Nonhuman Accounts Are Unseen and Unmanaged, According to Orchid Security’s Identity Gap Report

New York, United States, 19th May 2026, CyberNewswire...

5.8AI score
Exploits0
CNNVD
CNNVD
added 2026/05/14 12:0 a.m.11 views

MCP Registry 安全漏洞

MCP Registry is an open-source MCP server application store developed by Model Context Protocol. Versions of MCP Registry prior to 1.7.9 contained security vulnerabilities. These vulnerabilities stemmed from OCI ownership verification skipping tag matching checks during HTTP 429 requests, which...

3.5CVSS5.8AI score0.00206EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2026/05/05 11:58 a.m.18 views

The Back Door Attackers Know About — and Most Security Teams Still Haven’t Closed

Every AI tool, workflow automation, and productivity app your employees connected to Google or Microsoft this year left something behind: a persistent OAuth token with no expiration date, no automatic cleanup, and in most organizations, no one watching it. Your perimeter controls don't see it. Yo...

5.8AI score
Exploits0
Microsoft CVE
Microsoft CVE
added 2026/04/26 8:6 a.m.9 views

ASoC: qcom: q6apm: move component registration to unmanaged version

...

7.8CVSS5.8AI score0.00126EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/04/25 1:38 a.m.6 views

SUSE CVE-2026-31587

In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: q6apm: move component registration to unmanaged version q6apm component registers dais dynamically from ASoC toplology, which are allocated using device managed version apis. Allocating both component and dynamic dais...

6.7CVSS5.5AI score0.00126EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2026/04/25 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-31587

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ASoC: qcom: q6apm: move component registration to unmanaged version q6apm component registers dais dynamically from ASoC toplology, which are allocated using...

7.8CVSS7AI score0.00126EPSS
Exploits0References3
OSV
OSV
added 2026/04/24 3:16 p.m.8 views

DEBIAN-CVE-2026-31587

In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: q6apm: move component registration to unmanaged version q6apm component registers dais dynamically from ASoC toplology, which are allocated using device managed version apis. Allocating both component and dynamic dais...

7.8CVSS5.3AI score0.00126EPSS
Exploits0References1
NVD
NVD
added 2026/04/24 3:16 p.m.6 views

CVE-2026-31587

In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: q6apm: move component registration to unmanaged version q6apm component registers dais dynamically from ASoC toplology, which are allocated using device managed version apis. Allocating both component and dynamic dais...

7.8CVSS0.00126EPSS
Exploits0References7
Debian CVE
Debian CVE
added 2026/04/24 2:42 p.m.4 views

CVE-2026-31587

In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: q6apm: move component registration to unmanaged version q6apm component registers dais dynamically from ASoC toplology, which are allocated using device managed version apis. Allocating both component and dynamic dais...

7.8CVSS5.3AI score0.00126EPSS
Exploits0
Cvelist
Cvelist
added 2026/04/24 2:42 p.m.30 views

CVE-2026-31587 ASoC: qcom: q6apm: move component registration to unmanaged version

In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: q6apm: move component registration to unmanaged version q6apm component registers dais dynamically from ASoC toplology, which are allocated using device managed version apis. Allocating both component and dynamic dais...

7.8CVSS0.00126EPSS
Exploits0References7
ATTACKERKB
ATTACKERKB
added 2026/04/24 2:42 p.m.4 views

CVE-2026-31587

In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: q6apm: move component registration to unmanaged version q6apm component registers dais dynamically from ASoC toplology, which are allocated using device managed version apis. Allocating both component and dynamic dais...

7.8CVSS5.4AI score0.00126EPSS
Exploits0References7Affected Software1
CVE
CVE
added 2026/04/24 2:42 p.m.21 views

CVE-2026-31587

Summary (based on provided sources): CVE-2026-31587 affects the Linux kernel ASoC qcom q6apm component. The issue arises when the q6apm registers DAIs dynamically from ASoC topology using device-managed APIs for both the component and the DAIs, which can lead to an incorrect free ordering and a u...

7.8CVSS5.4AI score0.00126EPSS
Exploits0References7Affected Software1
EUVD
EUVD
added 2026/04/24 2:42 p.m.4 views

EUVD-2026-25480

In the Linux kernel, the following vulnerability has been resolved: ASoC: qcom: q6apm: move component registration to unmanaged version q6apm component registers dais dynamically from ASoC toplology, which are allocated using device managed version apis. Allocating both component and dynamic dais...

5.4AI score0.00126EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/04/24 12:0 a.m.6 views

PT-2026-34939

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the ASoC qcom q6apm component where dais are registered dynamically from ASoC topology using device managed APIs. When both the component and dynamic dais use managed...

9.8CVSS5.1AI score0.00501EPSS
Exploits0References317
Rows per page
Query Builder