7 matches found
Astra Linux – Vulnerability in Linux 5.10
Due to a vulnerability in the iouring subsystem, it is possible for kernel memory information to be leaked to the user process. timensinstall calls currentissinglethreaded to determine whether the current process is single-threaded. However, this call does not take into account iouring’s ioworker...
EUVD-2026-19992
The Download Monitor plugin for WordPress is vulnerable to Cross-Site Request Forgery in the actionshandler and bulkactionshandler methods in class-dlm-downloads-path.php in all versions up to, and including, 5.1.10. This is due to missing nonce verification on these functions. This makes it...
CVE-2025-14375
CVE-2025-14375 concerns the WordPress plugin “RSS Aggregator – RSS Import, News Feeds, Feed to Post, and Autoblogging.” Reports consistently describe a Reflected Cross-Site Scripting vulnerability via the className parameter in versions up to and including 5.0.10, arising from insufficient input ...
[SECURITY] [DLA 4178-1] linux security update
Debian LTS Advisory DLA-4178-1 [email protected] https://www.debian.org/lts/security/ Ben Hutchings May 25, 2025 https://wiki.debian.org/LTS Package : linux Version : 5.10.237-1 CVE ID : CVE-2021-47247 CVE-2021-47489 CVE-2022-48893 CVE-2022-49046 CVE-2022-49190 CVE-2022-49219...
CVE-2023-5444
A Cross Site Request Forgery vulnerability in ePolicy Orchestrator prior to 5.10.0 CP1 Update 2 allows a remote low privilege user to successfully add a new user with administrator privileges to the ePO server. This impacts the dashboard area of the user interface. To exploit this the attacker mu...
PT-2022-34012 · Linux · Linux Kernel
Name of the Vulnerable Software and Affected Versions: Linux Kernel versions prior to v5.10.140 Description: The issue is related to the prohibition of usage of non-balanced queue id in the ice: xsk component. The actual impact and attack plausibility have not yet been proven. Recommendations: Fo...
UVI-2021-1001009 usb: dwc3: core: fix kernel panic when do reboot
usb: dwc3: core: fix kernel panic when do reboot This is an automated ID intended to aid in discovery of potential security vulnerabilities. The actual impact and attack plausibility have not yet been proven. This ID is fixed in Linux Kernel version v5.10.46 by commit...