Lucene search
K
Bdu FstecMost viewed

90604 matches found

BDU FSTEC
BDU FSTEC
added 2025/04/17 12:0 a.m.12 views

The vulnerability of the stack_depot_save_flags() function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the stackdepotsaveflags function in the Linux operating system is related to errors during thread blocking. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.6AI score0.00138EPSS
Exploits0References8Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/04/17 12:0 a.m.12 views

The vulnerability of the Downloads component in Google Chrome and Microsoft Edge browsers allows a hacker to replace the user’s interface.

The vulnerability of the Downloads component in Google Chrome and Microsoft Edge is related to information representation errors in the user interface. Exploiting this vulnerability can allow an attacker to replace the user interface with a specially created HTML page...

6.4CVSS6.6AI score0.00252EPSS
Exploits0References15Affected Software7
BDU FSTEC
BDU FSTEC
added 2025/04/16 12:0 a.m.12 views

The vulnerability of Fortinet FortiOS operating systems stems from authentication mechanism flaws, which allow attackers to gain access to device configuration details and bypass existing security measures.

The vulnerability of Fortinet FortiOS operating systems is related to deficiencies in authentication mechanisms. Exploiting this vulnerability allows a malicious actor to gain access to device configuration information and bypass existing security measures...

10CVSS5.5AI score
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2025/04/16 12:0 a.m.12 views

The vulnerability of the ipheth_rcvbulk_callback() function in the Linux kernel’s USB device driver support mechanism allows a hacker to induce a service failure.

The vulnerability of the iphethrcvbulkcallback function in the Linux kernel’s USB device driver support routine is related to improper disabling or release of resources. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.8AI score0.00206EPSS
Exploits0References11Affected Software4
BDU FSTEC
BDU FSTEC
added 2025/04/16 12:0 a.m.12 views

The vulnerability of the qcuefi_set_reference() function in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the qcuefisetreference function in the Linux operating system’s kernel is related to insufficient locking of resources. Exploiting this vulnerability could allow an attacker to trigger a service failure...

5.5CVSS6.2AI score0.0014EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/04/16 12:0 a.m.12 views

The vulnerability of the mgmt_alloc_skb() function in the net/bluetooth/mgmt.c module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the mgmtallocskb function in the net/bluetooth/mgmt.c module of the Linux kernel is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.5AI score0.00191EPSS
Exploits0References14Affected Software6
BDU FSTEC
BDU FSTEC
added 2025/04/16 12:0 a.m.12 views

The vulnerability of the virtual server “1C-Bitrix: Virtual Machine” involves deficiencies in access control, allowing attackers to elevate their privileges to the root level.

The vulnerability of the virtual server “1C-Bitrix: Virtual Machine” is related to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor to elevate their privileges to the root level...

9CVSS5.5AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/04/16 12:0 a.m.12 views

The vulnerability of the E-Staff automated recruitment process system, related to errors in data filtering during file recording, allows a perpetrator to execute arbitrary commands.

The vulnerability of the E-Staff recruitment process automation system is related to errors in data filtering during the writing of information into files. Exploiting this vulnerability can allow a malicious actor to reset the administrator’s credentials and execute arbitrary commands...

9.9CVSS5.8AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/04/16 12:0 a.m.12 views

The vulnerability of the xe_drm_client_add_bo() function in the DRI driver of the Linux operating system allows a attacker to cause a service failure.

The vulnerability of the xedrmclientaddbo function in the DRI driver of the Linux operating system’s kernel is related to insufficient resource locking. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.4AI score0.0014EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/04/16 12:0 a.m.12 views

The vulnerability of the pinctrl_register_one_pin() function in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the pinctrlregisteronepin function in the Linux operating system is related to insufficient locking of resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.5AI score0.00164EPSS
Exploits0References10Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/04/16 12:0 a.m.12 views

The vulnerability of the dmub_dcn35_get_current_time() function in the Direct Rendering Infrastructure (DRI) driver for AMD kernel-based Linux operating systems allows a malicious actor to cause a system failure.

The vulnerability of the dmubdcn35getcurrenttime function in the Direct Rendering Infrastructure DRI driver for AMD kernel-based Linux operating systems is related to the reutilization of previously freed memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.1AI score0.0018EPSS
Exploits0References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/04/15 12:0 a.m.12 views

The vulnerability of the lan78xx_probe() function in the drivers/net/usb/lan78xx.c module of the Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the lan78xxprobe function in the drivers/net/usb/lan78xx.c module of the Linux kernel is related to the repeated release of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of...

7.8CVSS6.7AI score0.00226EPSS
Exploits0References22Affected Software8
BDU FSTEC
BDU FSTEC
added 2025/04/15 12:0 a.m.12 views

The vulnerability of the pci_slot_release() function in the drivers/pci/slot.c module of the Linux kernel allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the pcislotrelease function in the drivers/pci/slot.c module of the Linux kernel is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...

7.8CVSS6.7AI score0.0023EPSS
Exploits0References33Affected Software9
BDU FSTEC
BDU FSTEC
added 2025/04/15 12:0 a.m.12 views

The vulnerability of the mgmt_set_powered_complete() function in the net/bluetooth/mgmt.c module of the Linux operating system allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the mgmtsetpoweredcomplete function in the net/bluetooth/mgmt.c module of the Linux kernel is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...

7.8CVSS6.9AI score0.00222EPSS
Exploits0References22Affected Software8
BDU FSTEC
BDU FSTEC
added 2025/04/15 12:0 a.m.12 views

The vulnerability of the kernel-level driver nvlddmkm.sys from NVIDIA’s graphics processing units, including GeForce, Quadro, NVS, and Tesla, allows attackers to cause system failures or gain unauthorized access to protected information.

The vulnerability of the kernel mode driver nvlddmkm.sys of NVIDIA’s graphics processing units, including GeForce, Quadro, NVS, and Tesla, relates to reading beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to cause system failures or gain unauthorized...

7.1CVSS7.3AI score0.00211EPSS
Exploits0References3Affected Software15
BDU FSTEC
BDU FSTEC
added 2025/04/15 12:0 a.m.12 views

The vulnerability of the BIOS microprogramming system in Dell laptops allows a hacker to execute arbitrary code.

The vulnerability of the BIOS microprogramming system in Dell laptops is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

7.5CVSS8.2AI score0.00166EPSS
Exploits0References4Affected Software51
BDU FSTEC
BDU FSTEC
added 2025/04/14 12:0 a.m.12 views

The vulnerability of the cleanup_srcu_struct() function in the kernel/rcu/srcutree.c module of the synchronization subsystem in Linux multi-threaded kernel systems allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the cleanupsrcustruct function in the kernel/rcu/srcutree.c sub-system of the synchronization mechanism in Linux multi-threaded kernel systems is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the...

7.8CVSS6.3AI score0.00241EPSS
Exploits0References10Affected Software4
BDU FSTEC
BDU FSTEC
added 2025/04/14 12:0 a.m.12 views

The vulnerability in the `libarchiveplugin.cpp` script of the graphical tool for compressing and decompressing Ark files in the KDE desktop environment allows a attacker to gain unauthorized access to protected information or execute arbitrary code.

The vulnerability in the libarchiveplugin.cpp script of the graphical tool for compressing and decompressing Ark files in the KDE desktop environment relates to the handling of relative paths. Exploiting this vulnerability could allow an intruder to gain unauthorized access to protected informati...

5CVSS6.1AI score0.00271EPSS
Exploits0References9Affected Software4
BDU FSTEC
BDU FSTEC
added 2025/04/14 12:0 a.m.12 views

Vulnerability of the mlx5_cmd_init() function in the drivers/net/ethernet/mellanox/mlx5/core/cmd.c file – This is a driver for supporting Mellanox Ethernet network adapters in Linux operating systems. It allows a hacker to cause a service failure.

Vulnerability of the mlx5cmdinit function in the drivers/net/ethernet/mellanox/mlx5/core/cmd.c file – The Mellanox Ethernet network adapter driver for Linux operating systems is vulnerable due to a reliance on the NULL pointer dereferencing mechanism. Exploiting this vulnerability could allow an...

5.5CVSS6.3AI score0.00205EPSS
Exploits0References9Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/04/14 12:0 a.m.12 views

The vulnerabilities of the functions nfsacld_proc_getacl() and nfsd3_proc_getacl() in the fs/nfsd/nfs2acl.c module compromise the support for the Network File System (NFS) in Linux kernels. These vulnerabilities allow attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the functions nfsacldprocgetacl and nfsd3procgetacl in the fs/nfsd/nfs2acl.c module related to the support for the Network File System in Linux operating systems is associated with the reutilization of previously freed memory. Exploiting this vulnerability could allow an...

7.8CVSS6.7AI score0.00227EPSS
Exploits0References18Affected Software6
BDU FSTEC
BDU FSTEC
added 2025/04/14 12:0 a.m.12 views

The vulnerability of the ALSA kernel component in Linux operating systems, which allows a hacker to cause a service failure

The vulnerability of the ALSA kernel component in Linux operating systems is related to the use of an uninitialized resource in the function applyconstrainttosize. Exploiting this vulnerability can allow a attacker to cause a service failure...

5.5CVSS6.5AI score0.00229EPSS
Exploits0References15Affected Software10
BDU FSTEC
BDU FSTEC
added 2025/04/14 12:0 a.m.12 views

The vulnerability of the nci_close_device() function in the net/nfc/nci/core.c module, which is part of the NFC NCI support for Linux operating systems, allows a perpetrator to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the nciclosedevice function in the net/nfc/nci/core.c module, which supports NFC NCI implementations in Linux operating systems, is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality...

7.8CVSS6.5AI score0.00285EPSS
Exploits0References22Affected Software4
BDU FSTEC
BDU FSTEC
added 2025/04/14 12:0 a.m.12 views

Vulnerability of the int3400_setup_gddv() function in the drivers/thermal/intel/int340x_thermal/int3400_thermal.c module – a Linux kernel temperature control driver that allows a hacker to cause a service failure.

Vulnerability of the int3400setupgddv function in the drivers/thermal/intel/int340xthermal/int3400thermal.c module – The Linux kernel temperature control driver contains errors in its code. Exploiting this vulnerability could allow an attacker to cause system failures...

5.5CVSS6.5AI score0.00229EPSS
Exploits0References9Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/04/11 12:0 a.m.12 views

The vulnerability of Microsoft 365 Apps for Enterprise and Office, related to the use of memory after it is freed, allows attackers to increase their privileges.

The vulnerability of Microsoft 365 Apps for Enterprise and Office relates to the use of memory after it is released. Exploiting this vulnerability can allow an attacker to increase their privileges...

7.3CVSS7.6AI score0.01063EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2025/04/10 12:0 a.m.12 views

The vulnerability of the web page rendering modules in WebKitGTK and WPE WebKit, related to reading data beyond the allowed buffer limits, allows attackers to cause service failures.

The vulnerability of the Web page rendering modules in WebKitGTK and WPE WebKit relates to reading data beyond the acceptable buffer limits. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

7.8CVSS6.9AI score0.01157EPSS
Exploits0References9Affected Software5
BDU FSTEC
BDU FSTEC
added 2025/04/09 12:0 a.m.12 views

The vulnerability of the application software interfaces of Session Smart Router and WAN Assurance, Session Smart Conductor, relates to bypassing the authentication process by using an alternative path or channel. This allows a perpetrator to gain full control over the device.

The vulnerability of the Application Programming Interface of routers like Session Smart Router and WAN Assurance, Session Smart Conductor, lies in the ability to bypass authentication procedures by using an alternative path or channel. Exploiting this vulnerability allows a malicious actor,...

10CVSS8.1AI score0.01434EPSS
Exploits0References3Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/04/09 12:0 a.m.12 views

The vulnerability of the software interface of the XWiki Platform, a platform for creating collaborative web applications. This vulnerability arises from the failure to implement measures to neutralize instructions in dynamically executed code, allowing attackers to execute arbitrary code.

The vulnerability of the software interface of the XWiki Platform for creating collaborative web applications lies in the failure to implement measures to neutralize instructions within the dynamically executed code. Exploiting this vulnerability allows a malicious actor to execute arbitrary code...

9CVSS5.9AI score0.00549EPSS
Exploits1References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/04/09 12:0 a.m.12 views

The vulnerability of the ethnlreq_getPhydev() function in Linux operating systems allows a hacker to cause a service failure.

The vulnerability of the ethnlreqgetPhydev function in Linux operating systems is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.5AI score0.0019EPSS
Exploits0References8Affected Software5
BDU FSTEC
BDU FSTEC
added 2025/04/04 12:0 a.m.12 views

The vulnerability of the Anti-Malware module of the Trend Micro Deep Security Agent allows a hacker to increase their privileges.

The vulnerability of the Anti-Malware module of the Trend Micro Deep Security Agent is related to an incorrect definition of the link before accessing a file. Exploiting this vulnerability can allow attackers to increase their privileges...

7.8CVSS7.2AI score0.00156EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/04/02 12:0 a.m.12 views

The vulnerability of the __btrfs_cow_block() function in the Btrfs file system of Linux kernels allows a attacker to cause a service failure.

The vulnerability of the btrfscowblock function in the Btrfs file system of Linux operating systems is related to insufficient checking of exception states. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.4AI score0.00239EPSS
Exploits0References9Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/04/01 12:0 a.m.12 views

The vulnerability of the advertise_res() function in the UPnP service of Netgear’s WNR854T router allows a hacker to execute arbitrary code or cause a service failure.

The vulnerability of the advertiseres function of the UPnP service involves the escape of operations beyond the buffer in memory when processing the M-SEARCH request header value. Exploitation of this vulnerability allows a remote attacker to execute arbitrary code or cause service failures by...

8.3CVSS6.3AI score0.00667EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/04/01 12:0 a.m.12 views

The vulnerability of the bpf_link_show_fdinfo() function in the kernel/bpf/syscall.c module of the Linux operating system allows a attacker to compromise the confidentiality and accessibility of the protected information.

The vulnerability of the bpflinkshowfdinfo function in the kernel/bpf/syscall.c module of the Linux operating system is related to reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to compromise the confidentiality and accessibility of the protected...

7.1CVSS7.1AI score0.0023EPSS
Exploits0References24Affected Software8
BDU FSTEC
BDU FSTEC
added 2025/04/01 12:0 a.m.12 views

The vulnerability of the inet_create() function in the net/ipv4/af_inet.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the inetcreate function in the net/ipv4/afinet.c module of the Linux kernel is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...

7.8CVSS6.7AI score0.00236EPSS
Exploits0References27Affected Software8
BDU FSTEC
BDU FSTEC
added 2025/04/01 12:0 a.m.12 views

The vulnerability of the dbAdjTree() function in the fs/jfs/jfs_dmap.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the dbAdjTree function in the fs/jfs/jfsdmap.c module of the Linux operating system is related to unvalidated array indexing. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

7.8CVSS6.7AI score0.00257EPSS
Exploits0References24Affected Software6
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.12 views

The vulnerability of Google Chrome browsers, related to memory usage after deallocation, allows attackers to compromise the confidentiality, integrity, and accessibility of data.

The vulnerability of Google Chrome relates to the use of memory after deallocation. Exploiting this vulnerability can allow an attacker to compromise privacy, integrity, and accessibility of data...

10CVSS7.2AI score0.00517EPSS
Exploits0References10Affected Software5
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.12 views

The vulnerability of the Assimp::SplitLargeMeshesProcess_Triangle::UpdateNode() function in the Open Asset Import Library (Assimp) import library allows a malicious actor to trigger a denial-of-service attack.

The vulnerability of the OpenDDLParser::parseStructure function in the Open Asset Import Library Assimp import library is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.2AI score0.00239EPSS
Exploits1References5Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.12 views

The vulnerability of the hnae3_unregister_ae_algo_prepare() function in the drivers/net/ethernet/hisilicon/hns3/hnae3.c module of the Linux kernel allows a malicious actor to cause a service failure.

The vulnerability of the hnae3unregisteraealgoprepare function in the drivers/net/ethernet/hisilicon/hns3/hnae3.c module of the Linux kernel is related to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00254EPSS
Exploits0References18Affected Software6
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.12 views

The vulnerability of the ip_tunnel_find() function in the net/ipv4/ip_tunnel.c module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the iptunnelfind function in the net/ipv4/iptunnel.c module of the Linux operating system is related to incorrect resource locking. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00237EPSS
Exploits0References10Affected Software6
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.12 views

The vulnerabilities of Linux operating system’s x86/hypervisor kernel components, which allow attackers to cause service interruptions.

The vulnerability of the hvmachineshutdown function in Linux kernel-based x86/hyperv components is related to improper initialization. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00206EPSS
Exploits0References11Affected Software7
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.12 views

The vulnerability of the mlx5_lag_create_port_sel_table() function in the net/mlx5 components of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the mlx5lagcreateportseltable function in Linux kernel-based net/mlx5 components is related to improper input validation. Exploiting this vulnerability can allow an attacker to cause system failures...

4.4CVSS6.6AI score0.00259EPSS
Exploits0References15Affected Software7
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.12 views

The vulnerability of the amd_pmc_s2d_init() function in the drivers/platform/x86/amd/pmc.c module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the amdpmcs2dinit function in the module drivers/platform/x86/amd/pmc.c of the Linux kernel is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00238EPSS
Exploits0References15Affected Software7
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.12 views

The vulnerability of Intel Xeon processor microprogramming software lies in the insufficient checking of unusual or exceptional states, which allows attackers to increase their privileges.

The vulnerability of Intel Xeon processor microprogramming software is related to insufficient testing of unusual or exceptional states. Exploiting this vulnerability can allow attackers to gain enhanced privileges...

8.8CVSS6.4AI score0.00256EPSS
Exploits0References11Affected Software6
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.12 views

The vulnerability in the `include/net/ip_tunnels.h` header file of the IPv4 protocol implementation in Linux kernel allows a attacker to cause a service failure.

The vulnerability in the include/net/iptunnels.h header file of the IPv4 protocol implementation in Linux operating systems is related to incorrect resource blocking. Exploiting this vulnerability can allow an attacker to cause service failures...

5.5CVSS6.7AI score0.00265EPSS
Exploits0References17Affected Software7
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.12 views

The vulnerability of the pinctrl component in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the pinctrl component in the Linux operating system’s kernel is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00206EPSS
Exploits0References14Affected Software8
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.12 views

The vulnerability of the iwl_mvm_mfu_assert_dump_notif() function in the Linux kernel’s Wi-Fi component allows a hacker to trigger a service failure.

The vulnerability of the iwlmvmmfuassertdumpnotif function in the Linux kernel’s Wi-Fi component is related to memory corruption. Exploiting this vulnerability can allow an attacker to cause a system failure...

4.1CVSS6.4AI score0.00265EPSS
Exploits0References20Affected Software9
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.12 views

The vulnerability of the __ocfs2_change_file_space() function in the ocfs2 component of the Linux operating system allows a attacker to cause a service failure.

The vulnerability of the ocfs2changefilespace function in the ocfs2 component of the Linux operating system is related to improper locking mechanisms. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.4AI score0.00185EPSS
Exploits0References18Affected Software6
BDU FSTEC
BDU FSTEC
added 2025/03/27 12:0 a.m.12 views

The vulnerability of the __sock_create() function in the net/socket.c module of the Linux operating system allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the sockcreate function in the net/socket.c module of the Linux kernel is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected informatio...

7.8CVSS6.9AI score0.00231EPSS
Exploits0References23Affected Software3
BDU FSTEC
BDU FSTEC
added 2025/03/24 12:0 a.m.12 views

The vulnerability of the Inventory module in the GLPI system, which handles requests, incidents, and inventory management of computer equipment, allows a hacker to execute arbitrary SQL commands.

The vulnerability of the Inventory module in the GLPI system for job requests, incidents, and computer equipment inventory relates to the improper elimination of special elements used in SQL queries. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL commands remotely...

7.8CVSS6.6AI score0.86182EPSS
Exploits5References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2025/03/18 12:0 a.m.12 views

The vulnerability of the `atmel_pmecc_create_user()` function in the `drivers/mtd/nand/raw/atmel/pmecc.c` file of the Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the atmelpmecccreateuser function in the drivers/mtd/nand/raw/atmel/pmecc.c file of the Linux kernel is related to a recurrence of memory deallocation. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...

7.8CVSS6.7AI score0.00217EPSS
Exploits0References24Affected Software5
BDU FSTEC
BDU FSTEC
added 2025/03/18 12:0 a.m.12 views

The vulnerability of the qcom_mhi_qrtr_send() function in the net/qrtr/mhi.c module allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information in Qualcomm Linux-based system kernels.

The vulnerability of the qcommhiqtrSend function in the net/qrtr/mhi.c module, which is part of the Qualcomm IPC kernel for the Linux operating system, relates to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...

8.4CVSS5.9AI score0.00236EPSS
Exploits0References16Affected Software3
Total number of security vulnerabilities5000