Lucene search
K

178 matches found

CVE
CVE
added 2025/09/15 10:35 p.m.22 views

CVE-2025-43299

CVE-2025-43299 affects macOS Sonoma 14.8, macOS Sequoia 15.7, iOS 18.7, and iPadOS 18.7. Description: a denial-of-service issue was addressed by improved input validation. Root cause: insufficient validation leading to DoS when handling certain inputs. Impact: potential crash or service disruptio...

5.5CVSS5.8AI score0.00216EPSS
Exploits0References8Affected Software3
CVE
CVE
added 2025/09/15 10:35 p.m.19 views

CVE-2025-43293

CVE-2025-43293 affects macOS Sequoia and macOS Sonoma, with the issue resolved by input validation fixes in macOS Sequoia 15.7 and macOS Sonoma 14.8. The description indicates that an app may be able to access sensitive user data due to inadequate input validation. The connected documents confirm...

5.5CVSS5.8AI score0.00219EPSS
Exploits0References6Affected Software1
OSV
OSV
added 2025/08/16 2:15 p.m.3 views

DEBIAN-CVE-2023-4130

In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix wrong next length validation of ea buffer in smb2setea There are multiple smb2eainfo buffers in FILEFULLEAINFORMATION request from client. ksmbd find next smb2eainfo using -NextEntryOffset of current smb2eainfo. ksmbd...

5.5CVSS5.5AI score0.00224EPSS
Exploits1References1
OSV
OSV
added 2025/07/30 12:15 a.m.4 views

CVE-2025-43275

A race condition was addressed with additional validation. This issue is fixed in macOS Sequoia 15.6, macOS Sonoma 14.7.7, macOS Ventura 13.7.7. An app may be able to break out of its sandbox...

9.8CVSS5.7AI score0.00587EPSS
Exploits0References6
NVD
NVD
added 2025/07/28 12:15 p.m.14 views

CVE-2025-38483

In the Linux kernel, the following vulnerability has been resolved: comedi: das16m1: Fix bit shift out of bounds When checking for a supported IRQ number, the following test is used: / only irqs 2, 3, 4, 5, 6, 7, 10, 11, 12, 14, and 15 are valid / if 1 options1 & 0xdcfc However, it-optionsi is an...

7.1CVSS0.00159EPSS
Exploits0References10
OSV
OSV
added 2025/07/25 3:15 p.m.7 views

AZL-70501 CVE-2025-38426 affecting package kernel 5.15.200.1-1

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: Add basic validation for RAS header If RAS header read from EEPROM is corrupted, it could result in trying to allocate huge memory for reading the records. Add some validation to header fields...

5.5CVSS5.6AI score0.00157EPSS
Exploits0References1
Microsoft CVE
Microsoft CVE
added 2025/07/11 7:0 a.m.6 views

net: openvswitch: fix nested key length validation in the set() action

...

7.8CVSS6.8AI score0.00179EPSS
Exploits0
CVE
CVE
added 2025/07/08 3:2 p.m.18 views

CVE-2025-53545

The CVE-2025-53545 entry concerns Press, a Frappe custom app used with Frappe Cloud. The underlying issue is a lack of server-side validation that allows bypassing two-factor authentication (2FA) for users. The vulnerability description confirms that this is a 2FA bypass resulting from insufficie...

6.9CVSS7AI score0.00299EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/07/02 8:32 a.m.10 views

CVE-2025-24333 Administrative user shell input validation fault

Nokia Single RAN baseband software earlier than 24R1-SR 1.0 MP contains administrative shell input validation fault, which authenticated admin user can, in theory, potentially use for injecting arbitrary commands for unprivileged baseband OAM service process execution via special characters added...

0.00159EPSS
Exploits0References1
AstraLinux
AstraLinux
added 2025/06/16 11:28 a.m.3 views

Astra Linux – Vulnerability found in Linux 6.1, Linux 6.12

In the Linux kernel, the following vulnerabilities have been resolved: ksmbd: corrected the incorrect validation of the numaces field in smbacl. parsedcal now validates numaces to allocate an array of posixacestatearray. If numaces is greater than ULONGMAX / sizeofstruct smbace++, it results in a...

5.5CVSS6.4AI score0.00178EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2025/06/04 12:0 a.m.6 views

SUSE: Security Advisory (SUSE-SU-2025:01644-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS6.1AI score0.00637EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/05/23 9:48 a.m.4 views

CVE-2024-34695

WOWS Karma is a reputation system for Wargaming's World of Warships. A user is able to click multiple times on "create" on a post creation prompt before the modal closes, which triggers sending several post creation API requests at once. Due to timing, sending multiple posts simultaneously reques...

6.3CVSS6.7AI score0.00765EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:39 a.m.5 views

CVE-2024-23225

A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 16.7.6 and iPadOS 16.7.6, iOS 17.4 and iPadOS 17.4, macOS Monterey 12.7.4, macOS Sonoma 14.4, macOS Ventura 13.6.5, tvOS 17.4, visionOS 1.1, watchOS 10.4. An attacker with arbitrary kernel read and write...

7.8CVSS7.3AI score0.01481EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 3:49 a.m.4 views

CVE-2023-32443

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Monterey 12.6.8, macOS Ventura 13.5, macOS Big Sur 11.7.9. Processing a file may lead to a denial-of-service or potentially disclose memory contents...

8.1CVSS5.9AI score0.00566EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:27 p.m.8 views

CVE-2021-30958

An out-of-bounds read was addressed with improved input validation. This issue is fixed in macOS Big Sur 11.6.2, tvOS 15.2, macOS Monterey 12.1, Security Update 2021-008 Catalina, iOS 15.2 and iPadOS 15.2, watchOS 8.3. Playing a malicious audio file may lead to arbitrary code execution...

7.8CVSS6.5AI score0.01146EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:23 p.m.4 views

CVE-2021-29583

TensorFlow is an end-to-end open source platform for machine learning. The implementation of tf.rawops.FusedBatchNorm is vulnerable to a heap buffer overflow. If the tensors are empty, the same implementation can trigger undefined behavior by dereferencing null pointers. The...

7.8CVSS6.9AI score0.00211EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:40 p.m.8 views

CVE-2021-30752

Processing a maliciously crafted image may lead to arbitrary code execution. This issue is fixed in macOS Big Sur 11.3, iOS 14.5 and iPadOS 14.5, watchOS 7.4, tvOS 14.5. An out-of-bounds read was addressed with improved input validation...

7.8CVSS6.8AI score0.01162EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:56 p.m.4 views

CVE-2020-9914

An input validation issue existed in Bluetooth. This issue was addressed with improved input validation. This issue is fixed in iOS 13.6 and iPadOS 13.6, tvOS 13.4.8. An attacker in a privileged network position may be able to perform denial of service attack using malformed Bluetooth packets...

7.5CVSS5.7AI score0.01221EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:50 a.m.5 views

CVE-2019-6207

An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue is fixed in iOS 12.2, macOS Mojave 10.14.4, tvOS 12.2, watchOS 5.2. A malicious application may be able to determine kernel memory layout...

5.5CVSS5.3AI score0.00745EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:45 a.m.6 views

CVE-2018-4282

An out-of-bounds read issue existed that led to the disclosure of kernel memory. This was addressed with improved input validation. This issue affected versions prior to iOS 11.4.1, tvOS 11.4.1, watchOS 4.3.2...

5.5CVSS5.8AI score0.00349EPSS
Exploits0References1
Rows per page
Query Builder