Lucene search
K

7842 matches found

Tenable Nessus
Tenable Nessus
added 4 days ago13 views

Oracle Linux 10 / 9 : Unbreakable Enterprise kernel (ELSA-2026-50372)

The remote Oracle Linux 10 / 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2026-50372 advisory. - net/sched: fix pedit partial COW leading to page cache corruption Rajat Gupta CVE-2026-46331 - eventpoll: fix epremove struct eventpoll / struc...

9.8CVSS7AI score0.96267EPSS
Exploits313References820
EUVD
EUVD
added 2026/07/02 12:31 a.m.8 views

EUVD-2026-41205

Use after free in V8 in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: Low...

5.8AI score0.00235EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/07/01 10:21 p.m.26 views

CVE-2026-14383

Inappropriate implementation in V8 in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. Chromium security severity: Medium...

0.00348EPSS
Exploits0References2
OSV
OSV
added 2026/07/01 5:49 p.m.2 views

MINI-CJPC-V4M4-MQ8V

Bulletin has no description...

8.8CVSS7AI score0.0022EPSS
Exploits1
OSV
OSV
added 2026/07/01 5:15 p.m.7 views

USN-8493-1 linux, linux-aws, linux-aws-5.15, linux-aws-fips, linux-azure, linux-azure-5.15, linux-azure-fde-5.15, linux-fips, linux-gcp, linux-gcp-fips, linux-gke, linux-gkeop, linux-hwe-5.15, linux-ibm, linux-ibm-5.15, linux-intel-iot-realtime, linux-intel-iotg, linux-kvm, linux-lowlatency, linux-lowlatency-hwe-5.15, linux-nvidia, linux-nvidia-tegra, linux-nvidia-tegra-5.15, linux-nvidia-tegra-igx, linux-oracle, linux-realtime vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - RISC-V architecture; - Cryptographic API; - InfiniBand drivers; - IOMMU subsystem; - Network drivers; -...

9.8CVSS6.3AI score0.09796EPSS
Exploits4References65
OSV
OSV
added 2026/07/01 4:43 p.m.10 views

USN-8488-1 linux, linux-aws, linux-gcp, linux-ibm, linux-oracle, linux-realtime vulnerabilities

It was discovered that some AMD processors did not properly clear data in the floating point divider unit during speculative execution. A local attacker could use this to expose sensitive information. CVE-2025-54505 Several security issues were discovered in the Linux kernel. An attacker could...

9.8CVSS6.8AI score0.00675EPSS
Exploits10References237
NVD
NVD
added 2026/06/30 10:16 a.m.13 views

CVE-2026-10763

PROMOD V is using insecure HTTP communication instead of HTTPS. The vulnerability is due to the lack of HTTPS support from 3rd party Digipede server...

7CVSS0.00347EPSS
Exploits0References1
EUVD
EUVD
added 2026/06/30 9:37 a.m.8 views

EUVD-2026-40275

PROMOD V is using insecure HTTP communication instead of HTTPS. The vulnerability is due to the lack of HTTPS support from 3rd party Digipede server...

7CVSS5.8AI score0.00347EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/06/30 9:37 a.m.31 views

CVE-2026-10763

PROMOD V is using insecure HTTP communication instead of HTTPS. The vulnerability is due to the lack of HTTPS support from 3rd party Digipede server...

7CVSS0.00347EPSS
Exploits0References1
CVE
CVE
added 2026/06/30 9:37 a.m.20 views

CVE-2026-10763

PROMOD V uses insecure HTTP due to missing HTTPS support from a 3rd party Digipede server. Concrete details available: the issue is a lack of HTTPS causing exposure over network. CVSS metrics indicate HIGH confidentiality impact and overall HIGH severity (7.0). Exploitation specifics, affected ve...

7CVSS5.8AI score0.00347EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/06/30 12:0 a.m.7 views

PT-2026-53829

Name of the Vulnerable Software and Affected Versions PROMOD V affected versions not specified Description PROMOD V uses insecure HTTP communication instead of HTTPS. This issue occurs because the third-party Digipede server does not support HTTPS, which allows data to be transmitted without...

7CVSS5.9AI score0.00347EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2026/06/29 9:50 a.m.9 views

CVE-2026-53312

A flaw was found in the Linux kernel's IOMMU Input/Output Memory Management Unit component for RISC-V architectures. An integer overflow in the invalidation path can lead to an infinite loop. This vulnerability could allow a local attacker to cause a Denial of Service DoS by triggering the overfl...

5.5CVSS5.8AI score0.00112EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/26 7:41 p.m.7 views

EUVD-2026-39847

In the Linux kernel, the following vulnerability has been resolved: iommu/riscv: Remove overflows on the invalidation path Since RISC-V supports a sign extended page table it should support a gather-end of ULONGMAX, but if this happens it will infinite loop because of the overflow. Also avoid...

5.9AI score0.00112EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/26 12:0 a.m.13 views

PT-2026-52951

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the RISC-V IOMMU invalidation path. Because RISC-V supports sign extended page tables, a gather-end value of ULONG MAX can cause an infinite loop due to an integer...

5.5CVSS6AI score0.00112EPSS
Exploits0References17
OSV
OSV
added 2026/06/25 10:34 p.m.4 views

GO-2026-5421 PowerShell Command Injection in Podman HyperV Machine in github.com/containers/podman

PowerShell Command Injection in Podman HyperV Machine in github.com/containers/podman...

8.8CVSS5.8AI score0.00607EPSS
Exploits0References3
OSV
OSV
added 2026/06/25 7:38 p.m.2 views

MINI-GQRM-PMG6-6V5G

Bulletin has no description...

7.5CVSS5.8AI score0.00415EPSS
Exploits0
OSV
OSV
added 2026/06/25 9:16 a.m.3 views

UBUNTU-CVE-2026-53199

In the Linux kernel, the following vulnerability has been resolved: hvnetvsc: use kmaplocalpage in netvsccopytosendbuf netvsccopytosendbuf copies page buffer entries into the VMBus send buffer using phystovirt on the entry PFN. Entries for the RNDIS header and the skb linear data come from...

7.5CVSS5.9AI score0.0053EPSS
Exploits0References11
CVE
CVE
added 2026/06/25 8:39 a.m.14 views

CVE-2026-53199

CVE-2026-53199 pertains to the Linux kernel hv_netvsc path, where netvsc_copy_to_send_buf previously used phys_to_virt() on page buffer PFNs and could fault when fragments referenced high mem/user pages on 32-bit x86 with HIGHMEM. The fix maps pages with kmap_local_page() and reconstructs native ...

7.5CVSS6AI score0.0053EPSS
Exploits0References8Affected Software1
SUSE CVE
SUSE CVE
added 2026/06/25 2:20 a.m.8 views

SUSE CVE-2026-52923

In the Linux kernel, the following vulnerability has been resolved: ipc: limit nextid allocation to the valid ID range The checkpoint/restore sysctl path can request the next SysV IPC id through ids-nextid. ipcidralloc currently forwards that request to idralloc with an open-ended upper bound. If...

7.8CVSS5.7AI score0.00125EPSS
Exploits0References4
EUVD
EUVD
added 2026/06/25 12:33 a.m.5 views

EUVD-2026-39156

sys/kern/sysvsem.c in OpenBSD through 7.9 has a use-after-free allowing local privilege escalation to root. This is a context switch use-after-free after tsleep in syssemget...

7.4CVSS5.8AI score0.00125EPSS
Exploits0References2
Rows per page
Query Builder