Lucene search
K
Bdu FstecRecent

90604 matches found

BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.2 views

The vulnerability of the sata_pmp_init_links() function in the drivers/ata/libata-pmp.c kernel module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the satapmpinitlinks function in the drivers/ata/libata-pmp.c kernel module of the Linux operating system is related to unvalidated array indexing. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of protect...

7.8CVSS6AI score0.00153EPSS
Exploits0References20Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.3 views

The vulnerability of the inode_init_always() function in the fs/inode.c file of the Linux kernel’s file system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the inodeinitalways function in the fs/inode.c file of the Linux kernel’s file system is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the...

7.8CVSS6AI score0.00206EPSS
Exploits0References21Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.3 views

The vulnerability of the fpdt_process_subtable() function in the drivers/acpi/acpi_fpdt.c file of the ACPI driver (an extended configuration and power management interface of the Linux kernel) allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the fpdtprocesssubtable function in the drivers/acpi/acpifpdt.c file of the ACPI driver an extended configuration and power management interface of the Linux kernel is related to the use of an incorrect address. Exploiting this vulnerability could allow an attacker to...

7.8CVSS5.8AI score0.00153EPSS
Exploits0References12Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.4 views

The vulnerability of the acpi_ds_call_control_method() function in the drivers/acpi/acpica/dsmethod.c file of the ACPI driver (an extended configuration and power management interface of the Linux kernel) allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the acpidscallcontrolmethod function in the driver drivers/acpi/acpica/dsmethod.c of the ACPI driver an extended configuration and power management interface of the Linux kernel is related to the reallocation of previously freed memory. Exploiting this vulnerability could all...

7.8CVSS6AI score0.00152EPSS
Exploits0References13Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.3 views

The vulnerability of the Buffer.allocUnsafe() and Buffer.allocUnsafeSlow() functions on the n8n platform, which allow attackers to disclose protected information.

The vulnerability of the Buffer.allocUnsafe and Buffer.allocUnsafeSlow functions in the n8n automation platform relates to the disclosure of information. Exploiting this vulnerability can allow a remote attacker to disclose the protected information...

7.7CVSS6.1AI score0.00364EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.3 views

The vulnerability of the lpfc_wr_object() function in the drivers/scsi/lpfc/lpfc_sli.c file of the Linux SCSI device driver module allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the lpfcwrobject function in the drivers/scsi/lpfc/lpfcsli.c file of the Linux SCSI device driver module is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

7.8CVSS5.8AI score0.0015EPSS
Exploits0References12Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.2 views

The vulnerability of the LibreOffice office software package lies in its ability to bypass authentication by using an alternative path or channel, allowing a perpetrator to increase their privileges.

The vulnerability of the LibreOffice office software package relates to bypassing authentication by using an alternative path or channel. Exploiting this vulnerability can allow a perpetrator to enhance their privileges...

5.5CVSS5.9AI score0.0012EPSS
Exploits0References5Affected Software4
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.3 views

The vulnerability of the software application for managing and controlling wireless network connections on devices with Realtek Wireless LAN Utility is related to the absence of quotation marks in the syntax of certain elements or search paths. This allows an attacker to exploit this vulnerability to elevate their privileges and execute arbitrary code.

The vulnerability of the software application for managing and controlling wireless network connections on devices with Realtek Wireless LAN Utility is related to the absence of quotation marks in the code for elements or search paths. Exploiting this vulnerability can allow an attacker to enhanc...

7.8CVSS6.1AI score0.00127EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.3 views

The vulnerability of the SmarterTools SmarterMail mail server lies in the lack of protective measures for the website structure, allowing attackers to carry out cross-site scripting attacks.

The vulnerability of the SmarterTools SmarterMail mail server is related to the lack of protective measures for the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks using MAPI requests...

7.2CVSS5.6AI score0.00295EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.3 views

The vulnerability of the l2cap_le_command_rej() function in the net/bluetooth/l2cap_core.c module of the Linux kernel’s Bluetooth subsystem allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the l2caplecommandrej function in the net/bluetooth/l2capcore.c module of the Linux kernel’s Bluetooth subsystem is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

7.8CVSS6AI score0.0015EPSS
Exploits0References20Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.4 views

The vulnerability of the common() function in the arch/x86/kernel/asm-offsets.c module, which supports the x86 kernel of the Linux operating system, allows a attacker to cause a service failure.

The vulnerability of the common function in the arch/x86/kernel/asm-offsets.c module, which is part of the Linux operating system’s x86 kernel support, involves a buffer overflow based on a stack. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS7.3AI score0.00215EPSS
Exploits0References8Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.2 views

The vulnerability of the ext4_mb_mark_bb() function in the fs/ext4/mballoc.c file of the Ext4 file system in the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the ext4mbmarkbb function in the fs/ext4/mballoc.c file of the Ext4 file system in the Linux operating system is related to the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00252EPSS
Exploits0References15Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.2 views

The vulnerability of the device_pm_check_callbacks() function in the drivers/base/power/main.c file of the Linux kernel’s bus devices support driver module allows a malicious actor to induce a service failure.

The vulnerability of the devicepmcheckcallbacks function in the drivers/base/power/main.c file of the Linux kernel’s bus driver module is related to state management errors. Exploiting this vulnerability could allow an attacker to cause a system failure...

5.5CVSS6.3AI score0.00259EPSS
Exploits0References23Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.4 views

The vulnerability of the cifs_kill_sb() function in the fs/cifs/cifs.c module of the Linux kernel file system support mechanism allows a hacker to cause a service failure.

The vulnerability of the cifskillsb function in the fs/cifs/cifs.c module of the Linux operating system’s file system support module is related to code errors. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00252EPSS
Exploits0References12Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.2 views

The vulnerability of the _nfs4_open_and_get_state() function in the fs/nfs/nfs4proc.c module, which is part of the NFS client support in Linux kernel, allows a hacker to cause a service failure.

The vulnerability of the nfs4openandgetstate function in the fs/nfs/nfs4proc.c module, which is part of the NFS client support in Linux kernel, is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to cause a service failure...

5.5CVSS6.6AI score0.00205EPSS
Exploits0References19Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.2 views

Vulnerability of the nvme_alloc_admintags() function in the drivers/nvme/host/pci.c module – The NVME kernel support driver in the Linux operating system allows a hacker to trigger a service failure.

Vulnerability of the nvmeallocadmintags function in the drivers/nvme/host/pci.c module – The Linux operating system’s NVME kernel support driver is vulnerable due to a pointer dereferencing issue involving NULL pointers. Exploiting this vulnerability could allow an attacker to cause a service...

5.5CVSS6.6AI score0.00285EPSS
Exploits0References23Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.5 views

The vulnerability described in the ADDRESS_MASKING configuration description in the arch/x86/Kconfig module of the Linux operating system’s kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability described in the ADDRESSMASKING configuration description in the arch/x86/Kconfig module of the Linux operating system’s kernel is related to the disclosure of information due to timing mismatches. Exploiting this vulnerability can allow an attacker to compromise the...

7.8CVSS7.2AI score0.00276EPSS
Exploits0References22Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.3 views

The vulnerability of the spectre_v2_select_mitigation() function in the arch/x86/kernel/cpu/bugs.c module, which is part of the Linux operating system’s kernel support for x86 platforms, allows a hacker to trigger a system failure.

The vulnerability of the spectrev2selectmitigation function in the arch/x86/kernel/cpu/bugs.c module of the Linux operating system’s kernel for x86 platforms is related to state management errors. Exploiting this vulnerability could allow an attacker to cause a system failure...

5.5CVSS6.6AI score0.00276EPSS
Exploits0References19Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.3 views

The vulnerability of the raid5_add_disk() function in the drivers/md/raid5.c module of the Linux kernel support for multiple device types (RAID and LVM) allows a hacker to cause a service failure.

The vulnerability of the raid5adddisk function in the drivers/md/raid5.c module of the Linux support module for multiple devices RAID and LVM is related to incorrect input validation. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.3AI score0.00274EPSS
Exploits0References21Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.3 views

The vulnerability of the mc_probe() function in the sound/soc/intel/boards/sof_sdw.c file allows a hacker to cause a system failure in the Linux operating system’s SoC kernel support for audio.

The vulnerability of the mcprobe function in the sound/soc/intel/boards/sofsdw.c file, which is part of the Linux operating system’s audio support for SoC cores, involves exposing confidential information. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS7AI score0.00243EPSS
Exploits0References10Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.3 views

The vulnerability of the WebEx Zimlet component in the Zimbra Collaboration Suite email management system allows a attacker to perform a SSRF attack.

The vulnerability of the WebEx Zimlet component in the Zimbra Collaboration Suite email management system is related to insufficient validation of requests at the server-side level. Exploiting this vulnerability could allow a malicious actor to execute an SSRF attack remotely...

10CVSS6.1AI score0.85416EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.3 views

The vulnerability of the handle_tx_event() function in the drivers/usb/host/xhci-ring.c file of the Linux operating system’s USB device driver framework allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the handletxevent function in the drivers/usb/host/xhci-ring.c file of the Linux USB device driver framework is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

7.8CVSS7AI score0.00247EPSS
Exploits0References13Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.3 views

The vulnerability of the __close_file_table_ids() function in the fs/smb/server/vfs_cache.c module of the SMB server kernel in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the closefiletableids function in the fs/smb/server/vfscache.c module, which is part of the SMB server support in Linux operating systems, relates to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the...

7.8CVSS7.1AI score0.00152EPSS
Exploits0References14Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.5 views

The vulnerability of the DWM Core Library in Windows operating systems allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the DWM Core Library in Windows operating systems relates to the execution of operations beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information...

7.8CVSS6.1AI score0.00245EPSS
Exploits0References3Affected Software17
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.5 views

The vulnerability of the Dell EMC NetWorker backup and data recovery system lies in the absence of quotation marks around elements or search paths. This allows a malicious actor to execute arbitrary code.

The vulnerability of the Dell EMC NetWorker backup and data recovery system lies in the absence of quotation marks in the wording of certain elements or search paths. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

7.8CVSS6AI score0.00198EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.3 views

The vulnerabilities of the functions UploadIssueAttachment() and UploadReleaseAttachment() in the software for creating self-managed Git repositories Gogs allow a malicious actor to trigger a service failure and execute arbitrary code.

The vulnerability of the UploadIssueAttachment and UploadReleaseAttachment functions of the Gogs self-managed Git repository creation tool is related to the lack of authentication. Exploiting this vulnerability could allow a malicious actor to cause service failures and execute arbitrary code by...

10CVSS6.4AI score0.00618EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.4 views

The vulnerability of the VoIP gateway software Telecom MG, related to improper code generation, allows a hacker to execute arbitrary code.

The vulnerability of the VoIP gateway software of Telecom MG is related to incorrect code generation. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS6.1AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.5 views

The vulnerability of the VoIP gateway software Telecom MG, related to the failure to implement measures to neutralize special elements, allows a perpetrator to execute arbitrary codes.

The vulnerability of the VoIP gateway software of Telecom MG is related to the lack of measures taken to neutralize special elements. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9CVSS6.1AI score
Exploits0Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.4 views

The vulnerability of the BMC IPMI web interface, related to access control errors, allows attackers to bypass authentication and execute arbitrary commands.

The vulnerability of the BMC IPMI web interface is related to access control errors. Exploiting this vulnerability allows a malicious actor to bypass authentication and execute arbitrary commands remotely...

9CVSS6AI score
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.3 views

The vulnerability of the /upgrade_filter.asp file in the D-Link DI-8200G router’s microprogramming software allows a hacker to execute any command they desire.

The vulnerability of the /upgradefilter.asp file in D-Link DI-8200G router microprogramming software exists due to the failure to take measures to neutralize special elements in the output data. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely...

9.8CVSS6AI score0.09953EPSS
Exploits1References6Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.6 views

The vulnerability of the doSystem() function in D-Link DCS-931L microprogrammed security cameras allows a intruder to execute any command they desire.

The vulnerability of the doSystem/setSystemAdmin function in D-Link DCS-931L microprogrammed security cameras is related to the lack of measures to neutralize special elements. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

9CVSS6.1AI score0.05877EPSS
Exploits1References7Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.3 views

The vulnerability of the sub_4211C8() function in D-link DIR-823X router microprogramming software allows a hacker to execute any command they desire.

The vulnerability of the sub4211C8 function /goform/setfiltering of the D-link DIR-823X router’s microprogramming system is related to the failure to take measures to neutralize special elements. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

9CVSS6.1AI score0.03822EPSS
Exploits1References8Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.3 views

The vulnerability of the function in the /goform/set_password file of D-link DIR-823X router microprogramming software allows a hacker to execute any command they desire.

The vulnerability of the /goform/setpassword function in the D-link DIR-823X router microprogramming system is related to the failure to take measures to neutralize special elements. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

9CVSS6.1AI score0.05304EPSS
Exploits1References8Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.4 views

The vulnerability of the n8n automation platform, related to synchronization errors when using a shared resource, allows a hacker to read any files on the host where n8n is running, leading to a complete compromise of the system.

The vulnerability of the n8n automation platform is related to synchronization errors when using a shared resource. Exploiting this vulnerability allows a malicious actor to read any files on the host where n8n is running, which can lead to a complete compromise of the system...

9.9CVSS6.1AI score0.00306EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.3 views

The vulnerability of the n8n automation platform, which stems from the lack of measures taken to protect the website structure, allows a hacker to intercept the session and gain access to the user account.

The vulnerability of the n8n automation platform exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to intercept sessions and gain control of the user account remotely...

8.5CVSS6AI score0.00187EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.3 views

The vulnerability of the n8n automation platform, related to the lack of file upload restrictions, allows a hacker to execute arbitrary code.

The vulnerability of the n8n automation platform lies in the absence of restrictions on file uploads. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9CVSS6.4AI score0.00664EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.2 views

The vulnerability of the n8n automation platform, related to the breach of the data protection mechanism, allows a perpetrator to execute arbitrary code.

The vulnerability of the n8n automation platform for work processes is related to the breach of data protection mechanisms. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

9.9CVSS6.4AI score0.00526EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.3 views

The vulnerability of the brcmf_c_preinit_dcmds() function in the drivers/net/wireless/broadcom/brcm80211/brcmfmac/common.c file of the Broadcom wireless adapter driver for the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the brcmfcpreinitdcmds function in the drivers/net/wireless/broadcom/brcm80211/brcmfmac/common.c file of the Broadcom wireless driver for the Linux operating system is related to reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to...

7.8CVSS6.2AI score0.00153EPSS
Exploits0References20Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.3 views

The vulnerability of the jbd2_fc_wait_bufs() function in the fs/jbd2/journal.c file of the Linux kernel file system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the jbd2fcwaitbufs function in the fs/jbd2/journal.c file of the Linux kernel operating system is related to the reutilization of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility ...

7.8CVSS6AI score0.00149EPSS
Exploits0References14Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.4 views

The vulnerability of the `brcmfmac/core.c` function in the Broadcom wireless adapter driver framework of the `drivers/net/wireless/broadcom/brcm80211` module in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the brcmfmac/core.c function in the Broadcom wireless adapter driver’s drivers/net/wireless/broadcom/brcm80211/brcmfmac module in the Linux operating system kernel is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacke...

7.8CVSS6AI score0.0015EPSS
Exploits0References20Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.3 views

The vulnerability of the Gstreamer multimedia framework, related to buffer overflows in the stack, allows a hacker to execute arbitrary code.

The vulnerability of the Gstreamer multimedia framework is related to buffer overflow in the stack. Exploiting this vulnerability can allow an attacker to execute arbitrary code as a result of H266 parsing...

7.8CVSS6.4AI score0.00325EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.3 views

The vulnerability of the get_max_inline_xattr_value_size() function in the fs/ext4/inline.c module of the Linux file system’s kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the getmaxinlinexattrvaluesize function in the fs/ext4/inline.c module of the Linux file system’s kernel is related to operations that go beyond the allocated buffer. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

7.8CVSS6.4AI score0.00145EPSS
Exploits0References22Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.5 views

The vulnerability of the function ieee80211_rx_h_action() in the file net/mac80211/rx.c, part of the mac80211 stack in the Linux kernel, allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the function ieee80211rxhaction in the net/mac80211/rx.c module of the mac80211 stack implementation in the Linux kernel is related to reading memory beyond the bounds of the allocated buffer. Exploiting this vulnerability could allow an attacker to compromise the...

7.8CVSS5.8AI score0.00144EPSS
Exploits0References12Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.3 views

The vulnerability of the Visual Studio Code Markdown Preview Enhanced editor extension relates to improper code generation management, allowing an attacker to execute arbitrary code.

The vulnerability of the Visual Studio Code Markdown Preview Enhanced editor extension is related to improper handling of code generation. Exploiting this vulnerability allows an attacker to execute arbitrary code by loading a specially created file with the extension .Md...

10CVSS6.5AI score0.00639EPSS
Exploits1References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.3 views

The vulnerability of the Live Server extension of the Visual Studio Code source editor allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the Live Server extension of the Visual Studio Code editor relates to the lack of protective measures for website structures. Exploiting this vulnerability allows a malicious actor to gain unauthorized access to protected information through a specially created HTML page...

5CVSS6.2AI score0.00511EPSS
Exploits1References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.2 views

The vulnerability of the FreePBX IP-telephony system’s API module lies in errors related to context switching for privilege escalation, allowing attackers to elevate their privileges.

The vulnerability of the FreePBX IP-telephony system’s API module is related to errors in context switching for privileges. Exploiting this vulnerability can allow a malicious actor to enhance their privileges remotely...

4.4CVSS5.7AI score0.00296EPSS
Exploits0References5Affected Software1
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.2 views

The vulnerability of the tar-fs package from the tar-stream library, which allows an attacker to compromise the integrity of protected information.

The vulnerability of the tar-fs package from the tar-stream library relates to an incorrect pathname limitation for the restricted-access directory. Exploiting this vulnerability could allow a remote attacker to compromise the integrity of the protected information...

7.8CVSS6.5AI score0.00516EPSS
Exploits0References4Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.5 views

The vulnerability of the load_firmware_cb() function in the XCeive xc2028/xc3028 kernel driver for Linux operating systems allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the loadfirmwarecb function in the drivers/media/tuners/xc2028.c file of the XCeive xc2028/xc3028 tuner driver for the Linux operating system is related to the recursive reuse of previously freed memory due to concurrent access to resources. Exploiting this vulnerability coul...

7.8CVSS6.6AI score0.00214EPSS
Exploits0References48Affected Software2
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.2 views

The vulnerability of the rpcrdma_is_bcall() function in the net/sunrpc/xprtrdma/rpc_rdma.c module of the Linux operating system’s RPC protocol implementation allows a attacker to cause a service failure.

The vulnerability of the rpcrdmaisbcall function in the net/sunrpc/xprtrdma/rpcrdma.c module of the Linux operating system’s RPC protocol is related to the assignment of the NULL pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

5.5CVSS6.7AI score0.00272EPSS
Exploits0References21Affected Software3
BDU FSTEC
BDU FSTEC
added 2026/02/25 12:0 a.m.2 views

The vulnerability of the dx_probe() function in the fs/ext4/namei.c module of the Linux file system support module allows a hacker to cause a service failure.

The vulnerability of the dxprobe function in the fs/ext4/namei.c module of the Linux file system support module is related to the distribution of resources without any restrictions or regulation. Exploiting this vulnerability could allow a hacker to cause service failures...

5.5CVSS6.3AI score0.00276EPSS
Exploits0References21Affected Software3
Total number of security vulnerabilities90604