Vulnerability of the btrfs_update_reloc_root() function (fs/btrfs/relocation.c) in the Linux kernel, allowing a hacker to trigger a service failure

The vulnerability of the btrfsupdaterelocroot function fs/btrfs/relocation.c in the Linux kernel is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to trigger a service failure...

Vulnerability of the __sgx_alloc_epc_page() function (arch/x86/kernel/cpu/sgx/main.c) in the Linux operating system kernel, allowing a hacker to trigger a service failure

The vulnerability of the sgxallocepcpage function arch/x86/kernel/cpu/sgx/main.c in the Linux operating system kernel is related to incorrect resource locking. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the `dc_allow_idle_optimizations()` function in the drivers/gpu/drm/amd/display/dc/core/dc.c module of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the dcallowidleoptimizations function in the drivers/gpu/drm/amd/display/dc/core/dc.c module of the Linux operating system is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the do_active_device() function in the drivers/parport/procfs.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the doactivedevice function in the drivers/parport/procfs.c module of the Linux kernel is related to reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...

Vulnerability of the EXPORT_SYMBOL_GPL() function (kernel/resource.c) in the Linux operating system’s kernel, allowing a hacker to cause a service failure

The vulnerability of the EXPORTSYMBOLGPL function kernel/resource.c in the Linux operating system is related to resource management errors. Exploiting this vulnerability can allow an attacker to cause service failures...

The vulnerability of the nested_svm_get_tdp_pdptr() function in the arch/x86/kvm/svm/nested.c module of the Linux operating system allows a attacker to compromise the confidentiality and accessibility of protected information.

The vulnerability of the nestedsvmgettdppdptr function in the arch/x86/kvm/svm/nested.c module of the Linux operating system is related to reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to compromise the confidentiality and accessibility of the protect...

Vulnerabilities of the functions rxrpc_open_socket(), rxrpc_encap_rcv(), and rxrpc_io_thread() in the Linux operating system, allowing a hacker to cause a service failure

The vulnerabilities of the functions rxrpcopensocket, rxrpcencaprcv, and rxrpciothread in the Linux operating system are related to synchronization errors when using shared resources. Exploiting these vulnerabilities can allow an attacker to cause service failures...

The vulnerability of the Git-based software platform for collaborative code development on GitLab, related to the leakage of file and directory information, allows a hacker to exploit the access token in the logs.

The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to the leakage of information about files and directories. Exploiting this vulnerability can allow a malicious actor to gain access to tokens recorded in logs...

The vulnerability of the Git-based software platform for collaborative code development on GitLab stems from the lack of authentication procedures, which allow unauthorized users to modify the status of tasks in publicly accessible projects.

The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to the absence of authentication procedures. Exploiting this vulnerability allows a malicious actor to remotely modify the status of tasks in publicly accessible projects...

The vulnerability of the _isst_if_getpci_dev() function (drivers/platform/x86/intel/speed_select_if/isst_if_common.c) in the Linux operating system’s kernel allows a attacker to cause a service failure.

The vulnerability of the isstifgetpcidev function drivers/platform/x86/intel/speedselectif/isstifcommon.c in the Linux kernel is related to reading beyond the buffer boundaries in memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerabilities of the functions cachefiles_open_file(), fput(), and cachefiles_look_up_object() of the CacheFiles component in the Linux kernel allow a hacker to cause a service failure.

The vulnerabilities of the functions cachefilesopenfile, fput, and cachefileslookupobject in the CacheFiles component of the Linux kernel are related to the lack of memory release after the effective lifespan of these functions has ended. Exploiting these vulnerabilities could allow an attacker t...

The vulnerabilities of the functions oppdrm_init() and opngem_deinit() in the DRM driver (drivers/gpu/drm/omapdrm/omap_drv.c) of the Linux kernel allow a hacker to cause a service failure.

The vulnerability of the functions oppdrminit and opngemdeinit in the DRM driver drivers/gpu/drm/omapdrm/omapdrv.c of the Linux kernel is related to the use of pointers. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the do_sve_acc() function in the arch/arm64/kernel/fpsimd.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the dosveacc function in the arch/arm64/kernel/fpsimd.c module of the Linux operating system is related to improper control of resource identifiers “resource injection”. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

The vulnerabilities of the functions psnet_open_pf_bar() and snet_open_vf_bar() in the driver drivers/vdpa/solidrun/snet_main.c of the Linux kernel’s vDPA driver allow attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the functions psnetopenpfbar and snetopenvfbar in the drivers/vdpa/solidrun/snetmain.c file of the Linux kernel’s vDPA driver is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...

The vulnerability of the do_name() function in the init/initramfs.c module of the Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the doname function in the init/initramfs.c module of the Linux kernel is related to memory allocation beyond the bounds of the allocated buffer. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...

The vulnerability of the RedisTimeSeries time series processing module in the Redis database management system allows a hacker to execute arbitrary code due to integer overflow.

The vulnerability of the RedisTimeSeries time series processing module in the Redis database management system involves integer overflow. Exploiting this vulnerability allows an attacker to execute arbitrary code using specially crafted command arguments...

The vulnerability of the Substance 3D Sampler software for creating textures and materials for 3D models allows attackers to execute arbitrary code. This vulnerability stems from buffer overflows in the dynamic memory, enabling attackers to exploit the system.

The vulnerability of the Substance 3D Sampler software for creating textures and materials for 3D models is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file...

The vulnerability of the Substance 3D Sampler software for creating textures and materials for 3D models lies in the ability to write data beyond the buffer boundaries in memory, allowing an attacker to execute arbitrary code.

The vulnerability of the Substance 3D Sampler software for creating textures and materials for 3D models lies in the writing of data beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created file...

The vulnerability of the ufshcd_rpm_get_sync() function in the UFS driver of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the ufshcdrpmgetsync function in the UFS driver of the Linux operating system is related to insufficient resource locking. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the Process Chains component of the SAP Business Warehouse system allows attackers to compromise the integrity of the protected information.

The vulnerability of the Process Chains component in the SAP Business Warehouse data management and analytics system is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor to compromise the integrity of the protected information...

The vulnerability of the Linux operating system’s file system driver allows a hacker to execute arbitrary code.

The vulnerability of the Linux operating system’s file system driver is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability allows an attacker to execute arbitrary code by mounting a specially crafted version of the file system...

The vulnerability of the qm_soft_reset_prepare() function in the drivers/crypto/hisilicon/qm.c module of the Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the qmsoftresetprepare function in the drivers/crypto/hisilicon/qm.c module of the Linux kernel relates to the reutilization of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of...

The vulnerability of the cm_helper_translate_curve_to_degamma_hw_format() function in the drivers/gpu/drm/amd/display/dc/dcn10/dcn10_cm_common.c file of the Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the cmhelpertranslatecurvetodegammahwformat function in the drivers/gpu/drm/amd/display/dc/dcn10/dcn10cmcommon.c file of the Linux kernel is related to unvalidated array indexing. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...

The vulnerability of the Service Layer component of the SAP Business One resource management system allows a malicious actor to enhance their privileges and gain access to read, modify, and/or add data.

The vulnerability of the Service Layer component of the SAP Business One resource management system is related to improper session management. Exploiting this vulnerability can allow a malicious actor to enhance their privileges and gain access to read, modify, and/or add data...

The vulnerability of Adobe InDesign’s computer layout automation tool, related to the execution of operations beyond the buffer in memory, allows attackers to execute arbitrary code.

The vulnerability of Adobe InDesign’s computer layout automation tool is related to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of Adobe InDesign’s automation tool for computer design, related to reading data beyond the buffer in memory, allows attackers to execute arbitrary code.

The vulnerability of Adobe InDesign’s computer layout automation tool is related to reading data beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

The vulnerability of the x-middleware-subrequest header processing mechanism in the Next.js web application development software platform allows attackers to circumvent existing security restrictions.

The vulnerability of the x-middleware-subrequest header processing mechanism in the Next.js web application development software platform is related to deficiencies in the authentication process. Exploiting this vulnerability allows a malicious actor to bypass existing security restrictions by...

The vulnerability of the iopt_alloc_iova() function in the drivers/iommu/iommufd/io_pagetable.c file of the Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the ioptallociova function in the drivers/iommu/iommufd/iopagetable.c file of the Linux kernel is related to memory writing beyond the boundaries of the allocated buffer. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

The vulnerability of the vhost_vdpa_vring_ioctl() function in the drivers/vhost/vdpa.c module of the Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the vhostvdpavringioctl function in the drivers/vhost/vdpa.c module of the Linux kernel is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...

The vulnerability of the efi_retrieve_tpm2_eventlog() function (drivers/firmware/efi/libstub/tpm.c) in the Linux kernel allows a hacker to trigger a service failure.

The vulnerability of the efiretrievetpm2eventlog function located in drivers/firmware/efi/libstub/tpm.c in the Linux kernel is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow an attacker to trigger a system failure...

The vulnerability of the ea_get() function in the fs/jfs/xattr.c module of the Linux operating system allows a hacker to gain unauthorized access to protected information.

The vulnerability of the eaget function in the fs/jfs/xattr.c module of the Linux kernel relates to the use of an uninitialized resource. Exploiting this vulnerability could allow an attacker to gain unauthorized access to protected information...

The vulnerability of the dbMount() function in the fs/jfs/jfs_dmap.c module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the dbMount function in the fs/jfs/jfsdmap.c module of the Linux operating system is related to reading beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the `init_overdrivelimits()` function in the Linux kernel’s drivers/gpu/drm/amd/pm/powerplay/hwmgr/processpptables.c file allows a malicious actor to trigger a service failure.

The vulnerability of the initoverdrivelimits function in the drivers/gpu/drm/amd/pm/powerplay/hwmgr/processpptables.c file of the Linux kernel is related to the pointer dereferencing. Exploiting this vulnerability could allow an attacker to trigger a service failure...

The vulnerability of the cm3_helper_translate_curve_to_degamma_hw_format() function in the drivers/gpu/drm/amd/display/dc/dcn30/dcn30_cm_common.c file of the Linux operating system allows a hacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the cm3helpertranslatecurvetodegammahwformat function in the drivers/gpu/drm/amd/display/dc/dcn30/dcn30cmcommon.c file of the Linux kernel is related to unvalidated array indexing. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...

Vulnerability of the bpf_core_apply() function (kernel/bpf/btf.c) of the Linux operating system’s BPF component, which allows a hacker to cause a service failure

The vulnerability of the bpfcoreapply function kernel/bpf/btf.c of the Linux operating system’s BPF component is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the VMmanager 6 virtualization tool, related to the lack of protective measures for the SQL query structure, allows attackers to execute arbitrary SQL queries against the database.

The vulnerability of VMmanager 6’s virtualization mechanism is related to the lack of security measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL queries against the database remotely...

The vulnerability of SimpleOne Platform’s software lies in the lack of measures taken to eliminate scipt-related HTML tags on web pages. This allows attackers to inject HTML tags into the website.

The vulnerability of SimpleOne Platform’s software lies in the lack of measures taken to eliminate scipt-related HTML tags on web pages. Exploiting this vulnerability allows a remote attacker to inject an HTML tag that includes a link to an external resource...

The vulnerability of the Apache OpenMeetings video conferencing software, related to the restoration of unreliable data in memory, allows a intruder to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of Apache OpenMeetings video conferencing software lies in the recovery of unreliable data from memory. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected information...

The vulnerability of the xmlPatMatch() function in the pattern.c file of the libxml2 library, related to the assignment of a null pointer, allows a hacker to trigger a denial-of-service attack.

The vulnerability of the xmlPatMatch function in the pattern.c file of the libxml2 library is related to the use of a null pointer. Exploiting this vulnerability could allow an attacker to cause a service failure from a remote location...

The vulnerability of the software installer for monitoring and managing Intel Memory and Storage Tool (MAS) memory and solid-state drives allows a hacker to cause a service failure.

The vulnerability of the software installer for monitoring and managing Intel Memory and Storage Tool MAS related devices is associated with incorrect default permissions. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the Kernel-Mode Driver driver, a software used for displaying technical information about a user’s computer, such as the CPU-Z, allows a hacker to increase their privileges.

The vulnerability of the Kernel-Mode Driver driver, which is used to display technical information about the user’s computer CPU-Z, relates to the execution of operations beyond the buffer in memory. Exploiting this vulnerability can allow an attacker to gain increased privileges...

The vulnerability of the Cisco AnyConnect VPN server’s microprogramming software in Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateways allows a intruder to trigger a service failure.

The vulnerability of the Cisco AnyConnect VPN server in the microprogramming software for Cisco Meraki MX and Cisco Meraki Z Series Teleworker Gateways is related to a reallocation of memory. Exploiting this vulnerability could allow an attacker to cause service interruptions by sending specially...

The vulnerability of the microprogrammed logic controller Advantech ADAM 5550, related to the lack of protective measures for the website structure, allows attackers to carry out cross-site scripting attacks.

The vulnerability of the microprogrammed logic controller Advantech ADAM 5550 lies in the lack of measures taken to protect the website structure. Exploiting this vulnerability could allow a malicious actor to perform cross-site scripting attacks remotely...

The vulnerability of the tusb1210_remove_charger_detect() function in the drivers/phy/ti/phy-tusb1210.c file of the Linux kernel’s PHY driver allows a hacker to cause a service failure.

The vulnerability of the tusb1210removechargerdetect function in the drivers/phy/ti/phy-tusb1210.c file of the Linux kernel’s PHY driver is related to the execution of operations outside of the buffer in memory. Exploiting this vulnerability could allow an attacker to cause a system failure...

The vulnerability of the function dcn3_clk_mgr_construct() in the drivers/gpu/drm/amd/display/dc/clk_mgr/dcn30/dcn30_clk_mgr.c module of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the dcn3clkmgrconstruct function in the drivers/gpu/drm/amd/display/dc/clkmgr/dcn30/dcn30clkmgr.c module of the Linux operating system is related to the lack of checking for the return value. Exploiting this vulnerability may allow an attacker to cause a service failure...

The vulnerability of the uniphier_sdremove() function in the drivers/mmc/host/uniphier-sd.c module of the Linux kernel allows a hacker to gain access to protected information.

The vulnerability of the uniphiersdremove function in the drivers/mmc/host/uniphier-sd.c module of the Linux kernel is related to security configuration errors. Exploiting this vulnerability could allow an attacker to access protected information...

The vulnerability of the xe_devcoredump_read() function in the drivers/gpu/drm/xe/xe_devcoredump.c kernel module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the xedevcoredumpread function in the drivers/gpu/drm/xe/xedevcoredump.c kernel module of the Linux operating system is related to the assignment of pointers. Exploiting this vulnerability can allow an attacker to cause a service failure...

Vulnerability of the qla24xx_enable_msix() function in the drivers/scsi/qla2xxx/qla_isr.c module – This driver for supporting SCSI devices in the Linux operating system allows a hacker to cause a service failure.

Vulnerability of the qla24xxenablemsix function in the drivers/scsi/qla2xxx/qlaisr.c module – The Linux system’s SCSI device support driver is related to the assignment of the NULL pointer. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the zcrypt_card_unregister() function in the drivers/s390/crypto/zcrypt_card.c module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the zcryptcardunregister function in the drivers/s390/crypto/zcryptcard.c module of the Linux operating system is related to improper memory release before deleting the last reference a “memory leak”. Exploiting this vulnerability could allow a attacker to cause a service...

The vulnerability of the arena_map_mem_usage() function in the kernel/bpf/arena.c module of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the arenamapmemusage function in the kernel/bpf/arena.c module of the Linux operating system is related to the reutilization of previously released memory. Exploiting this vulnerability could allow an attacker to cause a service failure...