Lucene search
K

208 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.3 views

Astra Linux – Vulnerabilities in Linux, Linux-5.10, Linux-5.15

In the Linux kernel, the following vulnerabilities have been resolved: arm64: mm: fixed the sanity check for VA-range Both createmappingnoalloc and updatemappingprot perform sanity checks on their ‘virt’ parameter. However, the check itself doesn’t make much sense. The condition used today seems ...

6AI score0.00173EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/06 10:50 p.m.8 views

CVE-2026-43237

A flaw was found in the Linux kernel's AMD GPU amdgpu driver. Incorrect management of graphics memory dmafence references within the amdgpugemvaioctl function can lead to a reference count underflow and a use-after-after-free condition. A local attacker could exploit this vulnerability to trigger...

7.8CVSS5.8AI score0.00124EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/05/06 11:28 a.m.39 views

CVE-2026-43237 drm/amdgpu: Refactor amdgpu_gem_va_ioctl for Handling Last Fence Update and Timeline Management v4

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Refactor amdgpugemvaioctl for Handling Last Fence Update and Timeline Management v4 This commit simplifies the amdgpugemvaioctl function, key updates include: - Moved the logic for managing the last update fence...

7.8CVSS0.00124EPSS
Exploits0References3
CVE
CVE
added 2026/05/01 2:14 p.m.10 views

CVE-2026-31765

Summary: CVE-2026-31765 affects the Linux kernel AMDGPU driver. A mismatch between the reserved trap area (AMDGPU_VA_RESERVED_TRAP_SIZE) and the allocated KFD GPU memory on systems with 64KB pages can cause a kernel crash, including a NULL pointer dereference, when running certain GPU tests (e.g....

5.5CVSS5.8AI score0.00122EPSS
Exploits0References4Affected Software1
EUVD
EUVD
added 2026/05/01 2:14 p.m.10 views

EUVD-2026-26578

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Change AMDGPUVARESERVEDTRAPSIZE to 64KB Currently, AMDGPUVARESERVEDTRAPSIZE is hardcoded to 8KB, while KFDCWSRTBATMASIZE is defined as 2 PAGESIZE. On systems with 4K pages, both values match 8KB, so allocation and...

5.8AI score0.00122EPSS
Exploits0References4
Debian CVE
Debian CVE
added 2026/05/01 2:14 p.m.4 views

CVE-2026-31765

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Change AMDGPUVARESERVEDTRAPSIZE to 64KB Currently, AMDGPUVARESERVEDTRAPSIZE is hardcoded to 8KB, while KFDCWSRTBATMASIZE is defined as 2 PAGESIZE. On systems with 4K pages, both values match 8KB, so allocation and...

5.5CVSS5.7AI score0.00122EPSS
Exploits0
Vulnrichment
Vulnrichment
added 2026/04/05 8:45 p.m.2 views

CVE-2019-25671 VA MAX 8.3.4 Remote Code Execution via changeip.php

VA MAX 8.3.4 contains a remote code execution vulnerability that allows authenticated attackers to execute arbitrary commands by injecting shell metacharacters into the mtueth0 parameter. Attackers can send POST requests to the changeip.php endpoint with malicious payload in the mtueth0 field to...

8.8CVSS6.7AI score0.00657EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/03/26 5:1 p.m.4 views

CVE-2026-24969

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in designingmedia Instant VA instantva allows Path Traversal.This issue affects Instant VA: from n/a through = 1.0.1...

7.7CVSS5.8AI score0.00327EPSS
Exploits0References1
NVD
NVD
added 2026/03/25 5:16 p.m.5 views

CVE-2026-24969

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in designingmedia Instant VA instantva allows Path Traversal.This issue affects Instant VA: from n/a through = 1.0.1...

7.7CVSS0.00327EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/25 4:14 p.m.30 views

CVE-2026-24969 WordPress Instant VA theme <= 1.0.1 - Arbitrary File Deletion vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in designingmedia Instant VA instantva allows Path Traversal.This issue affects Instant VA: from n/a through = 1.0.1...

7.7CVSS0.00327EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/25 4:14 p.m.2 views

CVE-2026-24969 WordPress Instant VA theme <= 1.0.1 - Arbitrary File Deletion vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in designingmedia Instant VA instantva allows Path Traversal.This issue affects Instant VA: from n/a through = 1.0.1...

7.7CVSS5.8AI score0.00327EPSS
Exploits0References1
CVE
CVE
added 2026/03/25 4:14 p.m.12 views

CVE-2026-24969

CVE-2026-24969 affects the WordPress Instant VA theme (designingmedia Instant VA) up to version 1.0.1 and is caused by improper limitation of a pathname to a restricted directory (Path Traversal). This can lead to arbitrary file deletion as described in multiple sources. The Red Hat/NVD entries c...

7.7CVSS5.8AI score0.00327EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/25 12:0 a.m.6 views

WordPress plugin Instant VA 路径遍历漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...

7.7CVSS5.8AI score0.00327EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2026/03/23 12:0 a.m.201 views

📄 Digital Watchdog DVR VMAX / DW-VP / DW-VA Credential Disclosure / Code Execution

Digital Watchdog DVR versions VMAX, DW-VP, and DW-VA suffer from unauthenticated credential disclosure and post-authentication remote code execution vulnerabilities. Exploit Title: Digital Watchdog DVR VMAX/DW-VP/DW-VA unauth credential disclosure and post-auth RCE Date: 2026-01-06 Exploit Author...

6.5AI score
Exploits0
Patchstack
Patchstack
added 2026/03/12 12:2 p.m.5 views

WordPress Instant VA theme <= 1.0.1 - Arbitrary File Deletion vulnerability

Arbitrary File Deletion vulnerability discovered by Phat RiO - BlueRock in WordPress Theme Instant VA versions = 1.0.1...

7.7CVSS5.8AI score0.00327EPSS
Exploits0Affected Software1
OSV
OSV
added 2026/01/28 2:35 p.m.3 views

SUSE-SU-2026:0316-1 Security update for the Linux Kernel

The SUSE Linux Enterprise 12 SP5 kernel was updated to fix various security issues The following security issues were fixed: - CVE-2022-49604,CVE-2025-40074: ip: Fix data-races around sysctlipfwdusepmtu bsc1238414 bsc1252794. - CVE-2022-50527: drm/amdgpu: Fix size validation for non-exclusive...

7.8CVSS6.9AI score0.0616EPSS
Exploits1References312
Tenable Nessus
Tenable Nessus
added 2026/01/27 12:0 a.m.5 views

Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005133)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005133 advisory. In the Linux kernel, the following vulnerability has been resolved: ELF: fix kernel.randomizevaspace double read ELF loader uses randomizevaspace twice. It is sysctl...

5.5CVSS6.7AI score0.00248EPSS
Exploits0References3
AstraLinux
AstraLinux
added 2026/01/13 2:1 p.m.4 views

Astra Linux – Vulnerability in Linux 6.12

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fixed the nullptr error in vmhandlemoved. If amdgpubova is fpriv-prtva, the bo of this object is always NULL. Therefore, such amdgpubova should be updated separately before amdgpuvmhandlemoved...

5.6AI score0.00197EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/12/25 2:59 p.m.5 views

CVE-2023-53989

In the Linux kernel, the following vulnerability has been resolved: arm64: mm: fix VA-range sanity check Both createmappingnoalloc and updatemappingprot sanity-check their 'virt' parameter, but the check itself doesn't make much sense. The condition used today appears to be a historical accident...

7CVSS5.8AI score0.00173EPSS
Exploits0References4
SUSE CVE
SUSE CVE
added 2025/12/25 12:58 a.m.6 views

SUSE CVE-2023-53989

In the Linux kernel, the following vulnerability has been resolved: arm64: mm: fix VA-range sanity check Both createmappingnoalloc and updatemappingprot sanity-check their 'virt' parameter, but the check itself doesn't make much sense. The condition used today appears to be a historical accident...

5.5CVSS6.5AI score0.00173EPSS
Exploits0References19
Rows per page
Query Builder