16 matches found
EUVD-2020-25014
Malware in sbrugna...
EUVD-2025-10375
Malicious code in bioql PyPI...
EUVD-2022-51207
Malicious code in bioql PyPI...
PT-2025-23545 · Autodesk · Autodesk Revit
Name of the Vulnerable Software and Affected Versions: Autodesk Revit affected versions not specified Description: A maliciously crafted RFA file, when linked or imported into Autodesk Revit, can force a Use-After-Free issue. This can be leveraged by a malicious actor to cause a crash, read...
CVE-2025-3416
A flaw was found in OpenSSL's handling of the properties argument in certain functions. This vulnerability can allow use-after-free exploitation, which may result in undefined behavior or incorrect property parsing, leading to OpenSSL treating the input as an empty string...
CVE-2022-48771
The CVE-2022-48771 issue affects the Linux kernel drm/vmwgfx: a failing usercopy of the fence_rep object can leave a stale file descriptor entry because put_unused_fd() isn’t released; this can let userland reference a dangling file descriptor and enable use-after-free scenarios. The fix defers t...
CVE-2023-25893 ZDI-CAN-19539: Adobe Dimension USD File Parsing Use-After-Free Remote Code Execution Vulnerability
Adobe Dimension versions 3.4.7 and earlier is affected by a Use After Free vulnerability that could result in arbitrary code execution in the context of the current user. Exploitation of this issue requires user interaction in that a victim must open a malicious file...
SUSE SLES15: kernel-livepatch-5_3_18-24_78-default / etc (SUSE-SU-2022:1194-1)
The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:1194-1 advisory. This update for the Linux Kernel 5.3.18-2478 fixes several issues. The following security issues were fixed: - CVE-2022-27666: Fixed a buffer...
Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2022-9273)
The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-9273 advisory. - KVM: x86/mmu: do compare-and-exchange of gPTE via the user address Paolo Bonzini Orabug: 34053807 CVE-2022-1158 - netfilter: nftables: initialize...
Oracle Linux 7 / 8 : Unbreakable Enterprise kernel-container (ELSA-2022-9274)
The remote Oracle Linux 7 / 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2022-9274 advisory. - KVM: x86/mmu: do compare-and-exchange of gPTE via the user address Paolo Bonzini Orabug: 34053807 CVE-2022-1158 - netfilter: nftables: initialize...
RHEL 7 : kpatch-patch (RHSA-2022:1103)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:1103 advisory. This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel...
SUSE SLES15: cluster-md-kmp-rt / dlm-kmp-rt / gfs2-kmp-rt / kernel-devel-rt / etc (SUSE-SU-2022:0543-1)
The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0543-1 advisory. The SUSE Linux Enterprise 15 SP3 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed: -...
SUSE SLES15 Security Update : the Linux RT Kernel (SUSE-SU-2022:0544-1)
The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:0544-1 advisory. - A double free bug in packetsetring in net/packet/afpacket.c can be exploited by a local user through crafted syscalls to escalate privileges ...
PUB-A-189986136
In tgmdmattinit of tt.c, there is a possible kernel memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation...
CVE-2020-15669
When aborting an operation, such as a fetch, an abort signal may be deleted while alerting the objects to be notified. This results in a use-after-free and we presume that with enough effort it could have been exploited to run arbitrary code. This vulnerability affects Firefox ESR 68.12 and...
CVE-2018-21008
An issue was discovered in the Linux kernel before 4.16.7. A use-after-free can be caused by the function rsimac80211detach in the file drivers/net/wireless/rsi/rsi91xmac80211.c...