Lucene search
K

221 matches found

Fedora
Fedora
added 2026/02/20 1:17 a.m.7 views

[SECURITY] Fedora 42 Update: microcode_ctl-2.1-70.1.fc42

The microcodectl utility is a companion to the microcode driver written by Tigran Aivazian . The microcode update is volatile and needs to be uploaded on each system boot i.e. it doesn't reflash your cpu permanently, reboot and it reverts back to the old microcode...

5.9AI score
Exploits0
Fedora
Fedora
added 2026/02/20 12:53 a.m.10 views

[SECURITY] Fedora 43 Update: microcode_ctl-2.1-71.1.fc43

The microcodectl utility is a companion to the microcode driver written by Tigran Aivazian . The microcode update is volatile and needs to be uploaded on each system boot i.e. it doesn't reflash your cpu permanently, reboot and it reverts back to the old microcode...

5.9AI score
Exploits0
Ubuntu
Ubuntu
added 2026/02/19 10:10 a.m.12 views

USN-8033-7: Linux kernel vulnerabilities

Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - Nios II architecture; - Sun Sparc architecture; - User-Mode Linux UML; - x86 architecture; - Block layer subsystem;...

7.8CVSS8.2AI score0.00248EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2025/12/31 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2023-54323

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - cxl/pmem: Fix nvdimm registration races A loop of the form: while true; do modprobe cxlpci; modprobe -r cxlpci; done ...fails with the following crash signature...

6AI score0.00169EPSS
Exploits0References3
OSV
OSV
added 2025/12/30 1:16 p.m.2 views

UBUNTU-CVE-2023-54323

In the Linux kernel, the following vulnerability has been resolved: cxl/pmem: Fix nvdimm registration races A loop of the form: while true; do modprobe cxlpci; modprobe -r cxlpci; done ...fails with the following crash signature: BUG: kernel NULL pointer dereference, address: 0000000000000040...

5.7AI score0.00169EPSS
Exploits0References6
Cvelist
Cvelist
added 2025/12/30 12:37 p.m.24 views

CVE-2023-54323 cxl/pmem: Fix nvdimm registration races

In the Linux kernel, the following vulnerability has been resolved: cxl/pmem: Fix nvdimm registration races A loop of the form: while true; do modprobe cxlpci; modprobe -r cxlpci; done ...fails with the following crash signature: BUG: kernel NULL pointer dereference, address: 0000000000000040...

0.00169EPSS
Exploits0References3
EUVD
EUVD
added 2025/12/24 3:30 p.m.3 views

EUVD-2022-55755

In the Linux kernel, the following vulnerability has been resolved: nvmem: core: Fix memleak in nvmemregister devsetname will alloc memory for nvmem-dev.kobj.name in nvmemregister, when nvmemvalidatekeepouts failed, nvmem's memory will be freed and return, but nobody will free memory for...

6AI score0.002EPSS
Exploits0References5
Cvelist
Cvelist
added 2025/12/24 1:6 p.m.26 views

CVE-2023-54108 scsi: qla2xxx: Fix DMA-API call trace on NVMe LS requests

In the Linux kernel, the following vulnerability has been resolved: scsi: qla2xxx: Fix DMA-API call trace on NVMe LS requests The following message and call trace was seen with debug kernels: DMA-API: qla2xxx 0000:41:00.0: device driver failed to check map error device address=0x00000002a3ff38d8...

0.0018EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2025/12/24 12:0 a.m.4 views

PT-2025-53185

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains an issue within the qla2xxx SCSI driver related to DMA-API calls on NVMe LS requests. A warning message and call trace were observed in debug kernels indicating...

7.8CVSS7.6AI score0.00465EPSS
Exploits2References897
Microsoft CVE
Microsoft CVE
added 2025/12/17 9:4 a.m.5 views

nvme: fix admin request_queue lifetime

...

7.5CVSS5.3AI score0.00178EPSS
Exploits0
EUVD
EUVD
added 2025/12/16 3:30 p.m.5 views

EUVD-2025-203749

In the Linux kernel, the following vulnerability has been resolved: nvme: fix admin requestqueue lifetime The namespaces can access the controller's admin requestqueue, and stale references on the namespaces may exist after tearing down the controller. Ensure the admin requestqueue is active by...

6AI score0.00178EPSS
Exploits0References4
NVD
NVD
added 2025/12/16 3:15 p.m.10 views

CVE-2025-68265

In the Linux kernel, the following vulnerability has been resolved: nvme: fix admin requestqueue lifetime The namespaces can access the controller's admin requestqueue, and stale references on the namespaces may exist after tearing down the controller. Ensure the admin requestqueue is active by...

0.00178EPSS
Exploits0References5
EUVD
EUVD
added 2025/12/10 9:31 p.m.4 views

EUVD-2025-202621

Improper access control for volatile memory containing boot code in Universal Boot Loader U-Boot before 2017.11 and Qualcomm chips IPQ4019, IPQ5018, IPQ5322, IPQ6018, IPQ8064, IPQ8074, and IPQ9574 could allow an attacker to execute arbitrary code...

7.6CVSS7.1AI score0.00239EPSS
Exploits0References2
NVD
NVD
added 2025/12/10 9:16 p.m.9 views

CVE-2025-65822

The ESP32 system on a chip SoC that powers the Meatmeet Pro was found to have JTAG enabled. By leaving JTAG enabled on an ESP32 in a commercial product an attacker with physical access to the device can connect over this port and reflash the device's firmware with malicious code which will be...

6.8CVSS0.00175EPSS
Exploits0References2
NVD
NVD
added 2025/12/10 9:16 p.m.7 views

CVE-2025-65821

As UART download mode is still enabled on the ESP32 chip on which the firmware runs, an adversary can dump the flash from the device and retrieve sensitive information such as details about the current and previous Wi-Fi network from the NVS partition. Additionally, this allows the adversary to...

7.5CVSS0.0031EPSS
Exploits0References2
OSV
OSV
added 2025/12/10 9:16 p.m.6 views

DEBIAN-CVE-2025-24857

Improper access control for volatile memory containing boot code in Universal Boot Loader U-Boot before 2017.11 and Qualcomm chips IPQ4019, IPQ5018, IPQ5322, IPQ6018, IPQ8064, IPQ8074, and IPQ9574 could allow an attacker to execute arbitrary code...

7.6CVSS8.2AI score0.00239EPSS
Exploits0References1
OSV
OSV
added 2025/12/10 9:16 p.m.2 views

UBUNTU-CVE-2025-24857

Improper access control for volatile memory containing boot code in Universal Boot Loader U-Boot before 2017.11 and Qualcomm chips IPQ4019, IPQ5018, IPQ5322, IPQ6018, IPQ8064, IPQ8074, and IPQ9574 could allow an attacker to execute arbitrary code...

7.6CVSS6.1AI score0.00239EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/12/10 12:0 a.m.19 views

CVE-2025-65822

The ESP32 system on a chip SoC that powers the Meatmeet Pro was found to have JTAG enabled. By leaving JTAG enabled on an ESP32 in a commercial product an attacker with physical access to the device can connect over this port and reflash the device's firmware with malicious code which will be...

0.00175EPSS
Exploits0References2
CVE
CVE
added 2025/12/10 12:0 a.m.16 views

CVE-2025-65825

The CVE-2025-65825 entry affects Meatmeet basestation firmware where the firmware image is not encrypted. The root cause is unencrypted firmware dumping via UART after physical access, enabling an attacker to extract the firmware and access credentials stored in the NVS partition for current and ...

4.6CVSS6.2AI score0.00111EPSS
Exploits0References2Affected Software1
CNNVD
CNNVD
added 2025/12/10 12:0 a.m.4 views

Qualcomm Chipsets 安全漏洞

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that stems from improper access control of volatile memory and could lead to the execution of arbitrary code...

7.6CVSS7.7AI score0.00239EPSS
Exploits0References2
Rows per page
Query Builder