CVE-2024-45432

OpenSynergy BlueSDK (Blue SDK) Bluetooth stack up to 6.x contains a flaw caused by an incorrect variable used as a function argument (and related network-packet handling issues in some reports). The vulnerability can lead to unexpected behavior and potential information disclosure, with CVE-2024-...

Linux kernel 安全漏洞

Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. A security vulnerability exists in the Linux kernel that stems from the dm-crypt module mishandling the write BIO splitting of partition target devices, which could result in t...

ROS-20250905-03

A vulnerability in the socket.c component of the GNU Screen window manager is related to incorrect assignment of permissions for a critical resource. permissions for a critical resource. Exploitation of the vulnerability could allow an attacker to cause a denial of denial of service...

CVE-2025-26420

In multiple functions of GrantPermissionsActivity.java , there is a possible way to trick the user into granting the incorrect permission due to permission overload. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for...

An issue was discovered in the tokio crate before 1.8.1 for Rust. Upon a JoinHandle::abort, a Task may be dropped in the wrong thread.

...

Linux Distros Unpatched Vulnerability : CVE-2016-8644

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Moodle 2.x and 3.x, the capability to view course notes is checked in the wrong context. CVE-2016-8644 Note that Nessus relies on the presence of the package...

Linux Distros Unpatched Vulnerability : CVE-2020-8167

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A CSRF vulnerability exists in rails = 6.0.3 rails-ujs module that could allow attackers to send CSRF tokens to wrong domains. CVE-2020-8167 Note that Nessus...

1000 Projects Online Project Report Submission and Evaluation System Security Vulnerability

1000 Projects Online Project Report Submission and Evaluation System is a 1000 Projects open source online project report submission and evaluation system . 1000 Projects Online Project Report Submission and Evaluation System version 1.0 has a security vulnerability , the vulnerability stems from...

PT-2025-34579 · Unknown · Huangdou Utcms Version 9

Name of the Vulnerable Software and Affected Versions: HuangDou UTCMS version 9 Description: A flaw exists in the Login component's code within the app/modules/ut-frame/admin/login.php file. Manipulation of the code related to an argument results in an incorrect comparison. This issue can be...

CVE-2025-38662 ASoC: mediatek: mt8365-dai-i2s: pass correct size to mt8365_dai_set_priv

In the Linux kernel, the following vulnerability has been resolved: ASoC: mediatek: mt8365-dai-i2s: pass correct size to mt8365daisetpriv Given mt8365daisetpriv allocate privsize space to copy privdata which means we should pass mt8365i2sprivi or "struct mtkafei2spriv" instead of afepriv which ha...

CVE-2025-55630

The CVE-2025-55630 entry concerns Reolink Smart 2K+ Plug-in Wi‑Fi Video Doorbell with Chime, firmware 3.0.0.4662_2503122283. A discrepancy in the login error message when credentials are incorrect allows attackers to enumerate existing accounts. Public details across connected sources confirm the...

Linux Distros Unpatched Vulnerability : CVE-2023-1668

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in openvswitch OVS. When processing an IP packet with protocol 0, OVS will install the datapath flow without the action modifying the IP header...

PT-2025-46745

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the Linux kernel's pwm subsystem, specifically within the berlin driver. An incorrect register was being used during suspend and resume operations. The driver was...

CVE-2025-55194

Part-DB is an open source inventory management system for electronic components. Prior to version 1.17.3, any authenticated user can upload a profile picture with a misleading file extension e.g., .jpg.txt, resulting in a persistent 500 Internal Server Error when attempting to view or edit that...

Linux Distros Unpatched Vulnerability : CVE-2024-35796

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: net: lltemac: platformgetresource replaced by wrong function The function platformgetresourc...

Linux Distros Unpatched Vulnerability : CVE-2025-21888

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - RDMA/mlx5: Fix a WARN during deregmr for DM type Memory regions MR of type DM device memory do not have an associated umem. In the mlx5ibderegmr -...

SUSE-SU-2025:20557-1 Security update for libssh

This update for libssh fixes the following issues: - CVE-2025-5372: sshkdf returns a success code on certain failures bsc1245314 - CVE-2025-5987: Invalid return code for chacha20 poly1305 with OpenSSL backend bsc1245317 - CVE-2025-4877: Write beyond bounds in binary to base64 conversion functions...

EulerOS 2.0 SP11 : gnupg2 (EulerOS-SA-2025-1952)

According to the versions of the gnupg2 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In GnuPG before 2.5.5, if a user chooses to import a certificate with certain crafted subkey data that lacks a valid backsig or that has incorrect...

CVE-2025-49736

The ui performs the wrong action in Microsoft Edge for Android allows an unauthorized attacker to perform spoofing over a network...

Linux Distros Unpatched Vulnerability : CVE-2024-6613

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The frame iterator could get stuck in a loop when encountering certain wasm frames leading to incorrect stack traces. This vulnerability affects Firefox 128 and...