Lucene search
K

92 matches found

Tenable Nessus
Tenable Nessus
added 2025/10/08 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2023-53494

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - crypto: xts - Handle EBUSY correctly As it is xts only handles the special return value of EINPROGRESS, which means that in all other cases it will free data...

7.8CVSS6.8AI score0.0015EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2024-41527

Malicious code in bioql PyPI...

9.1CVSS6.6AI score0.00363EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-23524

Malicious code in bioql PyPI...

5.9CVSS6.2AI score0.00953EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-41525

Malicious code in bioql PyPI...

9.2CVSS6.6AI score0.00432EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-41526

Malicious code in bioql PyPI...

9.1CVSS6.6AI score0.00417EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2025/10/01 11:30 p.m.4 views

SUSE CVE-2023-53494

In the Linux kernel, the following vulnerability has been resolved: crypto: xts - Handle EBUSY correctly As it is xts only handles the special return value of EINPROGRESS, which means that in all other cases it will free data related to the request. However, as the caller of xts may specify...

5.5CVSS6.5AI score0.0015EPSS
Exploits0References8
NVD
NVD
added 2025/10/01 12:15 p.m.5 views

CVE-2023-53494

In the Linux kernel, the following vulnerability has been resolved: crypto: xts - Handle EBUSY correctly As it is xts only handles the special return value of EINPROGRESS, which means that in all other cases it will free data related to the request. However, as the caller of xts may specify...

7.8CVSS0.0015EPSS
Exploits0References5
OSV
OSV
added 2025/10/01 12:15 p.m.6 views

UBUNTU-CVE-2023-53494

In the Linux kernel, the following vulnerability has been resolved: crypto: xts - Handle EBUSY correctly As it is xts only handles the special return value of EINPROGRESS, which means that in all other cases it will free data related to the request. However, as the caller of xts may specify...

7.8CVSS5.8AI score0.0015EPSS
Exploits0References8
CVE
CVE
added 2025/10/01 11:45 a.m.21 views

CVE-2023-53494

CVE-2023-53494 affects the Linux kernel xts code. Root cause: EBUSY is not consistently treated like EINPROGRESS for MAY_BACKLOG callers, risking use-after-free on backlogged requests. Public advisories (EulerOS/MiracleLinux/OpenVAS/Nessus) reference this CVE; no patched version or remediation de...

7.8CVSS6.1AI score0.0015EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2025/10/01 11:45 a.m.6 views

CVE-2023-53494 crypto: xts - Handle EBUSY correctly

In the Linux kernel, the following vulnerability has been resolved: crypto: xts - Handle EBUSY correctly As it is xts only handles the special return value of EINPROGRESS, which means that in all other cases it will free data related to the request. However, as the caller of xts may specify...

0.0015EPSS
Exploits0References5
OSV
OSV
added 2025/10/01 11:45 a.m.9 views

CVE-2023-53494 crypto: xts - Handle EBUSY correctly

In the Linux kernel, the following vulnerability has been resolved: crypto: xts - Handle EBUSY correctly As it is xts only handles the special return value of EINPROGRESS, which means that in all other cases it will free data related to the request. However, as the caller of xts may specify...

7.8CVSS6.5AI score0.0015EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/08/18 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2023-1255

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Issue summary: The AES-XTS cipher decryption implementation for 64 bit ARM platform contains a bug that could cause it to read past the input buffer, leading to...

5.9CVSS6.5AI score0.00953EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.10 views

TencentOS Server 4: openssl (TSSA-2024:0034)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0034 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities...

6.5CVSS6.8AI score0.75116EPSS
Exploits0References10
RedhatCVE
RedhatCVE
added 2025/05/23 10:30 a.m.10 views

CVE-2024-45588

This vulnerability exists in Symphony XTS Web Trading platform version 2.0.0.1P160 due to improper access controls on APIs in the Preference module of the application. An authenticated remote attacker could exploit this vulnerability by manipulating parameters through HTTP request which could lea...

9.1CVSS6.5AI score0.00363EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 10:30 a.m.13 views

CVE-2024-45587

This vulnerability exists in Symphony XTS Web Trading platform version 2.0.0.1P160 due to improper access controls on APIs in the Transaction module of vulnerable application. An authenticated remote attacker could exploit this vulnerability by manipulating parameters through HTTP request which...

9.1CVSS6.8AI score0.00417EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 8:6 a.m.13 views

CVE-2024-45586

This vulnerability exists due to improper access controls on APIs in the Authentication module of Symphony XTS Web Trading and Mobile Trading platforms version 2.0.0.1P160. An authenticated remote attacker could exploit this vulnerability by manipulating parameters through HTTP request which coul...

9.2CVSS6.9AI score0.00432EPSS
Exploits0
OSV
OSV
added 2025/05/02 4:15 p.m.8 views

DEBIAN-CVE-2023-53100

In the Linux kernel, the following vulnerability has been resolved: ext4: fix WARNING in ext4updateinlinedata Syzbot found the following issue: EXT4-fs loop0: mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: none. fscrypt: AES-256-CTS-CBC using implementation...

5.5CVSS5.5AI score0.00167EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/01/14 12:0 a.m.3 views

PT-2025-1212 · Microsoft · Windows Bitlocker +1

Name of the Vulnerable Software and Affected Versions: Windows BitLocker affected versions not specified Description: A critical issue in Windows BitLocker exposes the encryption mechanism to a novel randomization attack targeting the AES-XTS mode. This allows attackers to bypass BitLocker...

4.2CVSS9.3AI score0.01108EPSS
Exploits0References28
OSV
OSV
added 2024/11/27 7:1 p.m.5 views

GHSA-J6VM-4R7G-X4GR Devolutions.XTS.NET Vulnerable to Timing Attack on GF Multiplications

Impact Timing attacks on Galois Field multiplications in this package. Successful exploitation would effectively allow a downgrade of the security guarantees of the XTS mode to the security guarantees of ECB mode, allowing block swapping, enabling identification of identical blocks, and rendering...

5.1CVSS6.3AI score0.0014EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added 2024/11/27 7:1 p.m.12 views

Devolutions.XTS.NET Vulnerable to Timing Attack on GF Multiplications

Impact Timing attacks on Galois Field multiplications in this package. Successful exploitation would effectively allow a downgrade of the security guarantees of the XTS mode to the security guarantees of ECB mode, allowing block swapping, enabling identification of identical blocks, and rendering...

5.1CVSS7.1AI score0.0014EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder