Lucene search
K

16 matches found

Prion
Prion
added 2023/12/26 8:15 a.m.13 views

Cross site scripting

Stored cross-site scripting vulnerability exists in the User Management /admin/users page of GROWI versions prior to v6.1.11. If this vulnerability is exploited, an arbitrary script may be executed on the web browser of the user who accessed the site using the product...

4.9CVSS6.2AI score0.00298EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2023/02/13 5:22 p.m.16 views

GSD-2023-1001884 arm64: dts: imx8mm-verdin: Do not power down eth-phy

arm64: dts: imx8mm-verdin: Do not power down eth-phy This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.11 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2023/02/13 5:22 p.m.12 views

GSD-2023-1001882 block, bfq: fix uaf for bfqq in bic_set_bfqq()

block, bfq: fix uaf for bfqq in bicsetbfqq This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.11 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2023/02/13 5:22 p.m.8 views

GSD-2023-1001880 fscache: Use wait_on_bit() to wait for the freeing of relinquished volume

fscache: Use waitonbit to wait for the freeing of relinquished volume This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.11 by commit...

7.3AI score
Exploits0
OSV
OSV
added 2023/02/13 5:21 p.m.6 views

GSD-2023-1001872 scsi: iscsi_tcp: Fix UAF during logout when accessing the shost ipaddress

scsi: iscsitcp: Fix UAF during logout when accessing the shost ipaddress This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.11 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2023/02/13 5:20 p.m.9 views

GSD-2023-1001859 kernel/irq/irqdomain.c: fix memory leak with using debugfs_lookup()

kernel/irq/irqdomain.c: fix memory leak with using debugfslookup This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.11 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2023/02/13 5:20 p.m.9 views

GSD-2023-1001858 mm/khugepaged: fix ->anon_vma race

mm/khugepaged: fix -anonvma race This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.11 by commit acb08187b5a83cdb9ac4112fae9e18cf983b0128, it...

7.2AI score
Exploits0
OSV
OSV
added 2023/02/13 5:20 p.m.10 views

GSD-2023-1001856 Squashfs: fix handling and sanity checking of xattr_ids count

Squashfs: fix handling and sanity checking of xattrids count This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.11 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2023/02/13 5:20 p.m.10 views

GSD-2023-1001855 mm/swapfile: add cond_resched() in get_swap_pages()

mm/swapfile: add condresched in getswappages This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.11 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2023/02/13 5:20 p.m.5 views

GSD-2023-1001853 drm/i915: Fix potential bit_17 double-free

drm/i915: Fix potential bit17 double-free This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.11 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2023/02/13 5:20 p.m.5 views

GSD-2023-1001852 ASoC: SOF: sof-audio: prepare_widgets: Check swidget for NULL on sink failure

ASoC: SOF: sof-audio: preparewidgets: Check swidget for NULL on sink failure This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.11 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2023/02/13 5:20 p.m.7 views

GSD-2023-1001850 ovl: Use "buf" flexible array for memcpy() destination

ovl: Use "buf" flexible array for memcpy destination This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.11 by commit...

7.3AI score
Exploits0
OSV
OSV
added 2023/02/13 5:20 p.m.13 views

GSD-2023-1001849 f2fs: initialize locks earlier in f2fs_fill_super()

f2fs: initialize locks earlier in f2fsfillsuper This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.11 by commit...

7.2AI score
Exploits0
OSV
OSV
added 2023/02/13 5:20 p.m.10 views

GSD-2023-1001848 fbdev: smscufx: fix error handling code in ufx_usb_probe

fbdev: smscufx: fix error handling code in ufxusbprobe This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.11 by commit...

7.4AI score
Exploits0
OSV
OSV
added 2023/02/13 5:20 p.m.17 views

GSD-2023-1001844 f2fs: fix to do sanity check on i_extra_isize in is_alive()

f2fs: fix to do sanity check on iextraisize in isalive This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v6.1.11 by commit...

7.2AI score
Exploits0
Positive Technologies
Positive Technologies
added 2023/02/13 12:0 a.m.2 views

PT-2023-34938 · Linux · Linux Kernel

Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v6.1.11 Description: A memory leak issue was discovered, potentially affecting the security of the system. The issue is related to the use of debugfs lookup in hv balloon. The actual impact and attack plausibili...

7.2AI score
Exploits0References1
Rows per page
Query Builder