Lucene search
K

16 matches found

UbuntuCve
UbuntuCve
added 2025/05/26 12:0 a.m.7 views

CVE-2025-5166

A vulnerability was found in Open Asset Import Library Assimp 5.4.3. It has been classified as problematic. Affected is the function MDCImporter::InternReadFile of the file assimp/code/AssetLib/MDC/MDCLoader.cpp of the component MDC File Parser. The manipulation of the argument pcVerts leads to...

5.5CVSS4.9AI score0.00208EPSS
Exploits1References7
UbuntuCve
UbuntuCve
added 2025/05/23 3:15 p.m.2 views

CVE-2018-25110

Marked prior to version 0.3.17 is vulnerable to a Regular Expression Denial of Service ReDoS attack due to catastrophic backtracking in several regular expressions used for parsing HTML tags and markdown links. An attacker can exploit this vulnerability by providing specially crafted markdown...

7.5CVSS5.9AI score0.00493EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2025/05/22 5:15 p.m.10 views

CVE-2025-47780

Asterisk is an open-source private branch exchange PBX. Prior to versions 18.26.2, 20.14.1, 21.9.1, and 22.4.1 of Asterisk and versions 18.9-cert14 and 20.7-cert5 of certified-asterisk, trying to disallow shell commands to be run via the Asterisk command line interface CLI by configuring...

7.8CVSS6AI score0.00226EPSS
Exploits1References2
UbuntuCve
UbuntuCve
added 2025/05/20 5:15 p.m.7 views

CVE-2025-37972

In the Linux kernel, the following vulnerability has been resolved: Input: mtk-pmic-keys - fix possible null pointer dereference In mtkpmickeysprobe, the regs parameter is only set if the button is parsed in the device tree. However, on hardware where the button is left floating, that node will...

5.5CVSS6.4AI score0.00149EPSS
Exploits0References26
UbuntuCve
UbuntuCve
added 2025/05/20 4:15 p.m.6 views

CVE-2025-37911

In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix out-of-bound memcpy during ethtool -w When retrieving the FW coredump using ethtool, it can sometimes cause memory corruption: BUG: KFENCE: memory corruption in bnxtgetcoredump+0x3ef/0x670 bnxten Corrupted memory at...

5.5CVSS6.6AI score0.0016EPSS
Exploits0References40
UbuntuCve
UbuntuCve
added 2025/05/16 12:0 a.m.16 views

CVE-2025-48174

In libavif before 1.3.0, makeRoom in stream.c has an integer overflow and resultant buffer overflow in stream-offset+size...

9.1CVSS6AI score0.00299EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/05/15 6:15 p.m.4 views

CVE-2025-47279

Undici is an HTTP/1.1 client for Node.js. Prior to versions 5.29.0, 6.21.2, and 7.5.0, applications that use undici to implement a webhook-like system are vulnerable. If the attacker set up a server with an invalid certificate, and they can force the application to call the webhook repeatedly, th...

3.1CVSS6.6AI score0.00254EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2025/05/09 7:16 a.m.4 views

CVE-2025-37889

In the Linux kernel, the following vulnerability has been resolved: ASoC: ops: Consistently treat platformmax as control value This reverts commit 9bdd10d57a88 "ASoC: ops: Shift tested values in sndsocputvolsw by +min", and makes some additional related updates. There are two ways the platformmax...

5.5CVSS6.4AI score0.0023EPSS
Exploits0References39
UbuntuCve
UbuntuCve
added 2025/05/02 9:15 p.m.9 views

CVE-2025-4215

A vulnerability was found in gorhill uBlock Origin up to 1.63.3b16. It has been classified as problematic. Affected is the function currentStateChanged of the file src/js/1p-filters.js of the component UI. The manipulation leads to inefficient regular expression complexity. It is possible to laun...

3.7CVSS4.5AI score0.0057EPSS
Exploits1References7
UbuntuCve
UbuntuCve
added 2025/05/02 4:15 p.m.1 views

CVE-2023-53057

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: HCI: Fix global-out-of-bounds To loop a variable-length array, hciinitstagesyncstage considers that stagei is valid as long as stagei-1.func is valid. Thus, the last element of stage.func should be intentionally invali...

7.1CVSS6.3AI score0.00168EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/05/02 4:15 p.m.11 views

CVE-2023-53095

In the Linux kernel, the following vulnerability has been resolved: drm/ttm: Fix a NULL pointer dereference The LRU mechanism may look up a resource in the process of being removed from an object. The locking rules here are a bit unclear but it looks currently like res-bo assignment is protected ...

5.5CVSS6.3AI score0.00164EPSS
Exploits0References5
UbuntuCve
UbuntuCve
added 2025/05/01 3:16 p.m.5 views

CVE-2022-49900

In the Linux kernel, the following vulnerability has been resolved: i2c: piix4: Fix adapter not be removed in piix4remove In piix4probe, the piix4 adapter will be registered in: piix4probe piix4addadapterssb800 / piix4addadapter i2caddadapter Based on the probed device type, piix4addadapterssb800...

7.8CVSS6.3AI score0.00174EPSS
Exploits0References6
UbuntuCve
UbuntuCve
added 2025/05/01 3:16 p.m.9 views

CVE-2022-49912

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix ulist leaks in error paths of qgroup self tests In the testnosharedqgroup and testmultiplerefs qgroup self tests, if we fail to add the tree ref, remove the extent item or remove the extent ref, we are returning from t...

5.5CVSS5.9AI score0.00173EPSS
Exploits0References10
UbuntuCve
UbuntuCve
added 2025/05/01 3:16 p.m.6 views

CVE-2022-49909

Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority...

6.5AI score0.00024EPSS
Exploits0References13
UbuntuCve
UbuntuCve
added 2025/05/01 2:15 p.m.8 views

CVE-2025-37775

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix the warning from kernelwriteiter 2110.972290 ------------ cut here ------------ 2110.972301 WARNING: CPU: 3 PID: 735 at fs/readwrite.c:599 kernelwriteiter+0x21b/0x280 This patch doesn't allow writing to directory...

5.5CVSS6.4AI score0.00156EPSS
Exploits0References26
UbuntuCve
UbuntuCve
added 2025/05/01 1:15 p.m.4 views

CVE-2025-37742

In the Linux kernel, the following vulnerability has been resolved: jfs: Fix uninit-value access of imap allocated in the diMount function syzbot reports that hexdumptobuffer is using uninit-value: ===================================================== BUG: KMSAN: uninit-value in...

5.5CVSS6.4AI score0.00155EPSS
Exploits0References38
Rows per page
Query Builder