EUVD-2025-32508

For failed login attempts, the application returns different error messages depending on whether the login failed due to an incorrect password or a non-existing username. This allows an attacker to guess usernames until they find an existing one...

[SECURITY] [DSA 6019-1] dovecot security update

------------------------------------------------------------------------- Debian Security Advisory DSA-6019-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso October 05, 2025 https://www.debian.org/security/faq -...

Debian dsa-6019 : dovecot-auth-lua - security update

The remote Debian 13 host has packages installed that are affected by a vulnerability as referenced in the dsa-6019 advisory. - ------------------------------------------------------------------------- Debian Security Advisory DSA-6019-1 [email protected] https://www.debian.org/security/...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from setting the wrong flag after a device registration failure, which could lead to reuse after release...

PT-2025-40725

Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 6.0.0-00053-g042116d99298 Description The Linux kernel coresight component contains an issue where cti enable hw and cti disable hw functions, called within an atomic context, incorrectly utilize runtime power...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from a failure to clean up DMA resources in the wrong path, which could lead to a permanent memory leak...

EUVD-2024-2000

Malicious code in bioql PyPI...

EUVD-2022-55333

Malicious code in bioql PyPI...

EUVD-2025-21064

Malicious code in bioql PyPI...

EUVD-2025-29444

Malicious code in bioql PyPI...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the ntfsfillsuper wrong path unreleased mount option, which could lead to a memory leak...

go-mail has insufficient address encoding when passing mail addresses to the SMTP client

Impact Due to incorrect handling of the mail.Address values when a sender- or recipient address is passed to the corresponding MAIL FROM or RCPT TO commands of the SMTP client, this could lead to a possible wrong address routing or even to ESMTP parameter smuggling. Vulnerability details Instead ...

Improper Validation of Specified Quantity in Input

Overview Affected versions of this package are vulnerable to Improper Validation of Specified Quantity in Input in the ModularIndexing function when Inductor config is set to constantandindexpropagation=False. An attacker can cause incorrect computation results by supplying crafted input data...

Linux Distros Unpatched Vulnerability : CVE-2025-59436

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ip aka node-ip package through 2.0.1 in NPM might allow SSRF because the IP address value 017700000001 is improperly categorized as globally routable via...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the vimcinit function calling the wrong cleanup function on failure, which could result in a kernel warning...

DEBIAN-CVE-2022-50287

In the Linux kernel, the following vulnerability has been resolved: drm/i915/bios: fix a memory leak in generatelfpdataptrs When size != 0 || ptrs-lvds entries != 3, the program tries to free the ptrs. However, the ptrs is not created by calling kzmalloc, but is obtained by pointer offset...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from not freeing memory allocated by vxlanvnigroupinit in the wrong path, which could lead to a memory leak...

CVE-2024-45432

OpenSynergy BlueSDK aka Blue SDK through 6.x mishandles a function call. The specific flaw exists within the BlueSDK Bluetooth stack. The issue results from an incorrect variable used as a function argument. An attacker can leverage this to cause unexpected behavior or obtain sensitive informatio...

CVE-2025-10224

Improper Authentication CWE-287 in the LDAP authentication engine in AxxonSoft Axxon One C-Werk 2.0.2 and earlier on Windows allows a remote authenticated user to be denied access or misassigned roles via incorrect evaluation of nested LDAP group memberships during login...

OpenSynergy BlueSDK 安全漏洞

OpenSynergy BlueSDK is a Bluetooth stack from the German company OpenSynergy. A security vulnerability exists in OpenSynergy BlueSDK 6.x and earlier versions, which stems from the use of the wrong variable as a function parameter in the BlueSDK Bluetooth stack, and could lead to unexpected behavi...