Vulnerability of the dev_pm_skip_resume() function in the drivers/base/power/main.c module – a driver for kernel-based PCI devices in the Linux operating system, which allows a hacker to trigger a service failure.

Vulnerability of the devpmskipresume function in the drivers/base/power/main.c module – The Linux kernel’s bus device support driver is vulnerable to synchronization errors when using shared resources. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the Rails Html Sanitizer configuration tool for cleaning HTML applications allows attackers to perform cross-site scripting attacks.

The vulnerability of the Rails Html Sanitizer configuration tool for cleaning HTML applications is related to improper elimination of input data during web page generation. Exploiting this vulnerability allows a remote attacker to perform cross-site scripting attacks...

The vulnerability of the GLPI system for managing requests, incidents, and inventory of computer equipment, related to incorrect authentication, allows a perpetrator to bypass the authentication process.

The vulnerability of the GLPI system for requests, incidents, and inventory management is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to bypass the authentication process...

The vulnerability of the BIG-IP Access Policy Manager, as well as software solutions such as BIG-IP Advanced Firewall Manager, BIG-IP Analytics, BIG-IP Application Acceleration Manager, BIG-IP Application Security Manager, BIG-IP Domain Name System, BIG-IP Link Controller, BIG-IP Local Traffic Manager, BIG-IP Policy Inforcement Manager, BIG-IQ Centralized Management, lies in the lack of measures taken to perform data cleaning at the management level. This allows attackers to circumvent existing security restrictions.

The vulnerabilities of the BIG-IP Access Policy Manager, as well as of other software solutions such as BIG-IP Advanced Firewall Manager, BIG-IP Analytics, BIG-IP Application Acceleration Manager, BIG-IP Application Security Manager, BIG-IP Domain Name System, BIG-IP Link Controller, BIG-IP Local...

The software client’s vulnerability for providing remote access with SonicWall NetExtender allows a intruder to gain access to modify data.

The vulnerability of the software client for remote access support provided by SonicWall NetExtender is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to gain access to modify data...

The vulnerability of microprogrammed routing devices with integrated networking services from Cisco ISR 800 and Cisco ISR 1900, microprogrammed access points from Cisco Aironet Access Points (AP) models 1530, 1552, 1570, 1700, 2700, 3700, and microprogrammed wireless industrial access points from Cisco Industrial Wireless 3700, is related to incomplete resource cleanup. This vulnerability allows a malicious actor to trigger service failures.

The vulnerability of microprogrammed routing devices with integrated networking services from Cisco ISR 800 and Cisco ISR 1900, microprogrammed access points from Cisco Aironet models 1530, 1552, 1570, 1700, 2700, 3700, and microprogrammed wireless industrial access points from Cisco Industrial...

The vulnerability in the kernel implementation of NVIDIA GeForce, Quadro, NVS, and Tesla graphics processors allows a hacker to cause service failures.

The vulnerability of the kernel-based implementations of NVIDIA GeForce, Quadro, NVS, and Tesla graphics processors is related to pointer dereferencing errors. Exploiting this vulnerability can allow an attacker to cause service failures...

The vulnerability of the kernel-level driver nvlddmkm.sys from NVIDIA’s graphics processing units, including GeForce, Quadro, NVS, and Tesla, allows attackers to cause system failures or gain unauthorized access to protected information.

The vulnerability of the kernel mode driver nvlddmkm.sys of NVIDIA’s graphics processing units, including GeForce, Quadro, NVS, and Tesla, relates to reading data beyond the buffer boundaries in memory. Exploiting this vulnerability can allow attackers to cause system failures, gain unauthorized...

The vulnerability of the ChromeOS operating system’s kernel, which arises due to insufficient validation of input data, allows a hacker to execute arbitrary code.

The vulnerability of the ChromeOS operating system’s kernel exists due to insufficient validation of input data. Exploiting this vulnerability can allow a perpetrator to execute arbitrary code...

The vulnerability of the cifs_strndup_from_utf16() function in the /fs/smb/client/reparse.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the cifsstrndupfromutf16 function in the /fs/smb/client/reparse.c module of the Linux kernel involves copying buffers without checking their size—a classic buffer overflow attack. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...

The vulnerability of the GNOME graphical interface library libsoup, which allows a hacker to cause a service failure

The vulnerability of the GNOME graphical interface library libsoup is related to asymmetrical resource consumption. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of the l2cap_sock_alloc() function in the net/bluetooth/l2cap_sock.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the l2capsockalloc function in the net/bluetooth/l2capsock.c module of the Linux kernel is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...

The vulnerability in the `net/ipv4/inet_connection_sock.c` module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability in the net/ipv4/inetconnectionsock.c module of the Linux operating system is related to the reutilization of previously freed memory. Exploiting this vulnerability can allow an attacker to compromise the confidentiality, integrity, and accessibility of protected information...

Vulnerability of the functions urllib.parse.urlsplit() and urlparse() in the Python programming language, which allows attackers to exploit these vulnerabilities to gain enhanced privileges.

The vulnerability of the urllib.parse.urlsplit and urlparse functions in the Python interpreter is related to improper validation of input data. Exploiting this vulnerability can allow an attacker to enhance their privileges remotely...

The vulnerability of the WPE WebKit and WebKitGTK web page rendering modules, related to reading beyond the buffer data limit, allows attackers to cause service failures.

The vulnerability of the WPE WebKit and WebKitGTK page rendering modules is related to reading data beyond the buffer boundaries. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of the lan78xx_probe() function in the drivers/net/usb/lan78xx.c module of the Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the lan78xxprobe function in the drivers/net/usb/lan78xx.c module of the Linux kernel is related to the repeated release of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of...

The vulnerability of the Consul and Consul Enterprise service configuration tool, which stems from insufficient validation of requests on the server side, allows attackers to carry out SSRF attacks.

The vulnerability of the Consul and Consul Enterprise service configuration tool is related to insufficient validation of requests on the server side. Exploiting this vulnerability allows a malicious actor to carry out an SSRF attack remotely...

The vulnerability of the arp_xmit_finish() function in the net/ipv4/arp.c module of the Linux operating system’s kernel for implementing the IPv4 protocol allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the arpxmitfinish function in the net/ipv4/arp.c module of the Linux operating system’s IPv4 protocol implementation is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity,...

The vulnerability of the hugetlb component of the try_get_folio() function in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the hugetlb component in the trygetfolio function of the Linux operating system is related to errors during link counter updates. Exploiting this vulnerability can allow an attacker to cause service failures remotely...

The vulnerabilities of the functions nfsacld_proc_getacl() and nfsd3_proc_getacl() in the fs/nfsd/nfs2acl.c module compromise the support for the Network File System (NFS) in Linux kernels. These vulnerabilities allow attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the functions nfsacldprocgetacl and nfsd3procgetacl in the fs/nfsd/nfs2acl.c module related to the support for the Network File System in Linux operating systems is associated with the reutilization of previously freed memory. Exploiting this vulnerability could allow an...

The vulnerability of the padata_reorder() function in the kernel/padata.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the padatareorder function in the kernel/padata.c module of the Linux operating system is related to the reutilization of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...

The vulnerability of the Linux operating system’s kernel Wi-Fi component, which allows a hacker to trigger a service failure

The vulnerability of the Linux operating system’s kernel Wi-Fi component relates to the operation of data out of the buffer in memory. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the hfsplus component in the Linux operating system’s kernel allows a hacker to cause a service failure.

The vulnerability of the hfsplus component in the Linux operating system’s kernel is related to the use of memory after it is freed in the hfsplusreadwrapper function. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the fuse component’s __readahead_folio function in the Linux operating system’s kernel allows a hacker to disclose protected information.

The vulnerability of the fuse component’s readaheadfolio function in the Linux operating system is related to insufficient protection for service data. Exploiting this vulnerability can allow a remote attacker to disclose sensitive information that is protected by this function...

Vulnerability of the pps_gpio_probe() function in the drivers/pps/clients/pps-gpio.c module – This driver for Linux kernel’s PPS client support allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

Vulnerability of the pps gpioprobe function in the drivers/pps/clients/pps-gpio.c module – The Linux kernel’s PPS client driver has a vulnerability related to the repeated use of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...

The vulnerability of the ndisc_alloc_skb() function in the net/ipv6/ndisc.c module of the Linux operating system’s IPv6 kernel implementation allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the ndiscallocskb function in the net/ipv6/ndisc.c module of the Linux operating system’s IPv6 kernel implementation is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity,...

The vulnerability of the __blk_throtl_bio() function in the block/blk-throttle.c module, which supports the block-level kernel support in the Linux operating system, allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the blkthrotlbio function in the block/blk-throttle.c module, which supports the block-level kernel support in the Linux operating system, is related to the repeated use of previously freed memory. Exploiting this vulnerability can allow an attacker to compromise the...

The vulnerability of the Xen kernel component in the Linux operating system, which allows a hacker to trigger a service failure

The vulnerability of the xen component in the Linux operating system’s kernel is related to a memory leak in the xenbusdevprobe function. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the nft_payload_set_eval() function in the net/netfilter/nft_payload.c module of the netfilter component of the Linux operating system allows a hacker to induce a service failure.

The vulnerability of the nftpayloadseteval function in the net/netfilter/nftpayload.c module of the netfilter component of the Linux operating system is related to code errors. Exploiting this vulnerability could allow an attacker to trigger a service failure...

Vulnerability of the iavf_init_module() function in the drivers/net/ethernet/intel/iavf/iavf_main.c module – This is a driver for supporting Ethernet network adapters in Linux kernel-based operating systems. It allows attackers to gain access to protected information.

The vulnerability of the iavfinitmodule function in the drivers/net/ethernet/intel/iavf/iavfmain.c module exists. This vulnerability in the Linux kernel’s Ethernet driver code allows attackers to access protected information...

Vulnerability of the slcan_close() function in the drivers/net/can/slcan/slcan-core.c module – The Linux kernel’s CAN network device support driver allows a hacker to cause a service failure.

Vulnerability of the slcanclose function in the drivers/net/can/slcan/slcan-core.c module – The Linux kernel’s CAN network device support driver is vulnerable due to a reliance on the NULL pointer pointer. Exploiting this vulnerability could allow an attacker to cause service failures...

Vulnerability of the adjust_tjmax() function in the drivers/hwmon/coretemp.c module – A driver for monitoring hardware in Linux kernels, which can be exploited by attackers to cause system failures.

Vulnerability of the adjusttjmax function in the drivers/hwmon/coretemp.c module – The Linux kernel monitoring drivers are vulnerable to a vulnerability where memory is not properly released before deleting the last reference point memory leak. Exploiting this vulnerability could allow an attacke...

Vulnerability of the xgbe_rx_poll() function in the drivers/net/ethernet/amd/xgbe/xgbe-drv.c module – This driver is a network adapter driver for AMD Ethernet in Linux kernels. It allows a hacker to cause a service failure.

Vulnerability of the xgberxpoll function in the drivers/net/ethernet/amd/xgbe/xgbe-drv.c module – The Ethernet adapter driver for Linux kernel is vulnerable due to buffer overflow exploits. Exploiting this vulnerability could allow an attacker to cause a system failure...

Vulnerability of the int3400_setup_gddv() function in the drivers/thermal/intel/int340x_thermal/int3400_thermal.c module – a Linux kernel temperature control driver that allows a hacker to cause a service failure.

Vulnerability of the int3400setupgddv function in the drivers/thermal/intel/int340xthermal/int3400thermal.c module – The Linux kernel temperature control driver contains errors in its code. Exploiting this vulnerability could allow an attacker to cause system failures...

The vulnerability of the bnxt_re component in the Linux operating system’s kernel, which allows a hacker to trigger a service failure

The vulnerability of the bnxtre component in the Linux operating system’s kernel is related to the assignment of the null pointer. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of the poe_set() function in the arch/arm64/kernel/ptrace.c module, which is part of the ARM 64-bit kernel support in the Linux operating system, allows a attacker to gain access to protected information or cause service interruptions.

The vulnerability of the poeset function in the arch/arm64/kernel/ptrace.c module, which is part of the ARM 64-bit kernel support for the Linux operating system, relates to the use of uninitialized resources. Exploiting this vulnerability could allow an attacker to access protected information or...

The vulnerability in browser extensions for Safari on operating systems macOS, iOS, iPadOS, and visionOS allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of Safari browser extensions on macOS, iOS, iPadOS, and VisionOS operating systems is related to improper storage of permissions. Exploiting this vulnerability can allow attackers to compromise the confidentiality, integrity, and accessibility of protected information...

Vulnerability of the iio_sysfs_triggerremove() function in the drivers/iio/trigger/iio-trig-sysfs.c module – This driver supports various types of built-in sensors in the Linux operating system, allowing attackers to compromise the confidentiality, integrity, and accessibility of protected information.

Vulnerability of the iiosysfstriggerremove function in the drivers/iio/trigger/iio-trig-sysfs.c module – The drivers for various types of built-in sensors in the Linux operating system are related to the reallocation of previously freed memory. Exploiting this vulnerability could allow an attacke...

The vulnerability of the Linux operating system’s Bluetooth kernel component, which allows a hacker to trigger a service failure

The vulnerability of the Linux operating system’s Bluetooth kernel component is related to incorrect blocking of resources in the function rfcommsockioctl. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the i40e component in the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the i40e component in the Linux operating system’s kernel is related to incorrect blocking of resources in the i40evcgetVFResourcesmsg function. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the `nft_set_ext` function in the Linux operating system’s kernel allows a hacker to trigger a service failure.

The vulnerability of the nftsetext function in the Linux operating system’s kernel is related to insufficient verification of data authenticity. Exploiting this vulnerability could allow a remote attacker to cause service interruptions...

Vulnerability of the ipc_mux_init() function in the drivers/net/wwan/iosm/iosm_ipc_mux.c module – a driver for supporting network adapters in the Linux operating system, which allows an attacker to cause a service failure.

Vulnerability of the ipcmuxinit function in the drivers/net/wwan/iosm/iosmipcmux.c module – The Linux kernel network driver framework is vulnerable because resources are not released after their useful period has ended. Exploiting this vulnerability could allow an attacker to cause service failur...

The vulnerability of the snd_soc_put_volsw_sx() function in the sound/soc/soc-ops.c module of the Linux operating system’s audio support for SoC cores allows a hacker to cause a service failure.

The vulnerability of the sndsocputvolswsx function in the sound/soc/soc-ops.c module, which is part of the Linux operating system’s audio support for SoC cores, involves unvalidated array indexing. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the `trace_action_create()` function in the kernel/trace/trace_events_hist.c module, which supports Linux operating system kernel tracing, allows a hacker to cause a service failure.

The vulnerability of the traceactioncreate function in the kernel/trace/traceeventshist.c module, which supports kernel tracing in Linux operating systems, is related to improper memory release before deleting the last reference a “memory leak”. Exploiting this vulnerability could allow an attack...

Vulnerability of the cxl_regionDecodeReset() function in the drivers/cxl/core/region.c module – This driver for supporting CXL device controllers in the Linux operating system allows a hacker to trigger a service failure.

Vulnerability of the cxlregionDecodeReset function in the drivers/cxl/core/region.c module – The CXL Device Support Driver for Linux operating systems is related to the dereferencing of the NULL pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the ceph_handle_caps() function in the fs/ceph/caps.c module of the Linux kernel’s file system support module allows a attacker to cause a service failure.

The vulnerability of the cephhandlecaps function in the fs/ceph/caps.c module of the Linux kernel’s file system support module is related to the lack of encryption measures for sensitive data. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the NFSv4 “close” kernel component in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the NFSv4 “close” kernel component in Linux operating systems is related to the mutual locking of execution threads. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of the inet_sk_diag_fill() function in the net/ipv4/inet_diag.c module of the IPv4 protocol implementation in the Linux operating system allows a attacker to access protected information.

The vulnerability of the inetskdiagfill function in the net/ipv4/inetdiag.c module of the IPv4 protocol implementation in the Linux operating system is related to the use of an uninitialized resource. Exploiting this vulnerability could allow an attacker to access protected information...

Vulnerability of the rtw_wx_read32() function in the drivers/staging/r8188eu/os_dep/ioctl_linux.c module – supports additional devices in the Linux operating system, allowing an attacker to cause a service failure.

Vulnerability of the rtwwxread32 function in the drivers/staging/r8188eu/osdep/ioctllinux.c module – Support for additional devices in the Linux operating system involves uncontrolled resource consumption. Exploiting this vulnerability could allow an attacker to cause service failures...

Vulnerability of the qlcnic_83xx_add_rings() function in the drivers/net/ethernet/qlogic/qlcnic/qlcnic_83xx_hw.c module – A driver for supporting QLogic Ethernet network adapters in Linux kernels, which allows a hacker to cause service failure.

Vulnerability of the qlcnic83xxaddrings function in the drivers/net/ethernet/qlogic/qlcnic/qlcnic83xxhw.c module – The Linux operating system’s Ethernet adapter support driver is vulnerable due to a reliance on the NULL pointer pointer. Exploiting this vulnerability could allow an attacker to cau...