The vulnerability of the bpf_xdp_link_attach() function in the net/core/dev.c module, which supports networking functions of the Linux kernel, allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the bpfxdplinkattach function in the net/core/dev.c module, which supports networking functions of the Linux kernel, is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity,...

Vulnerability of the mwifiex_uninit_sw() function in the drivers/net/wireless/marvell/mwifiex/main.c module – This driver is part of the Linux kernel’s wireless adapter support mechanism; it allows a hacker to cause a service failure.

Vulnerability of the mwifiexuninitsw function in the drivers/net/wireless/marvell/mwifiex/main.c module – The Linux wireless adapter support driver is vulnerable to synchronization errors when using shared resources. Exploiting this vulnerability could allow an attacker to cause service failures...

Vulnerability of the save_iaa_wq() function in the drivers/crypto/intel/iaa/iaa_crypto_main.c module – a driver for the Intel cryptographic accelerator in the Linux operating system, which allows an attacker to compromise the confidentiality, integrity, and accessibility of protected information.

Vulnerability of the saveiaawq function in the drivers/crypto/intel/iaa/iaacryptomain.c module – The Linux kernel cryptographic accelerator driver has a vulnerability related to insufficient validation of input data when dividing by zero. Exploiting this vulnerability could allow an attacker to...

The vulnerability of the Ruby interpreter’s Rack module’s interface allows a hacker to trigger a service failure.

The vulnerability of the Ruby interpreter’s Rack module interface is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow a remote attacker to cause service interruptions...

The vulnerability of the update mechanism of the IBM QRadar SIEM system allows a perpetrator to execute arbitrary code.

The vulnerability of the IBM QRadar SIEM’s event collection and analysis update mechanism is related to improper external management of file names or paths. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by loading a specially crafted automatic update file...

The vulnerability of the securebio_identify() function in the Dell ControlVault3 security management driver allows a attacker to execute arbitrary code.

The vulnerability of the securebioidentify function in the Dell ControlVault3 security driver suite is related to buffer overflow in the stack. Exploiting this vulnerability could allow an attacker to execute arbitrary code...

The vulnerability of the kvm_vm_ioctl_unregister_coalesced_mmio() function in the virt/kvm/coalesced_mmio.c module of the Linux Kernel-Based Virtual Machine (KVM) virtualization subsystem allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the kvmvmioctlunregistercoalescedmmio function in the virt/kvm/coalescedmmio.c module of the Linux Kernel-Based Virtual Machine KVM virtualization subsystem is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to...

The vulnerability of the SLNX PC Client of the embedded application and document management tool RICOH Streamline NX allows a perpetrator to elevate their privileges and execute arbitrary code.

The vulnerability of the SLNX PC Client of the embedded application and document management tool RICOH Streamline NX lies in the use of an unreliable data source during the download of updates. Exploiting this vulnerability can allow attackers to enhance their privileges and execute arbitrary cod...

Vulnerability of the efx_nic_initinterrupt() function in the drivers/net/ethernet/sfc/nic.c module – A driver for supporting Ethernet network adapters in the Linux kernel, which allows a hacker to cause a service failure.

Vulnerability of the efxnicinitinterrupt function in the drivers/net/ethernet/sfc/nic.c module – The Linux kernel’s Ethernet network adapter support driver has a vulnerability where resources are not released after their useful life has ended. Exploiting this vulnerability could allow an attacker...

The vulnerability of the `ice_sriov_set_msix_vec_count()` function in the `drivers/net/ethernet/intel/ice/ice_sriov.c` file of the Linux operating system allows a attacker to compromise the confidentiality and accessibility of protected information.

The vulnerability of the icesriovsetmsixveccount function in the drivers/net/ethernet/intel/ice/icesriov.c file of the Linux operating system is related to reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to compromise the confidentiality and accessibili...

Vulnerability of the amdgpu_fbdevdestroy() function in the drivers/gpu/drm/amd/amdgpu/amdgpu_fb.c module – This driver provides support for AMD GPU cores in Linux systems. An attacker could exploit this vulnerability to gain access to protected information or cause system failures.

Vulnerability of the amdgpufbdevdestroy function in the drivers/gpu/drm/amd/amdgpu/amdgpufb.c module – The Linux driver for AMD GPU cores supporting Direct Rendering Infrastructure DRI is vulnerable to security vulnerabilities. Exploiting this vulnerability could allow an attacker to access...

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the ath12k_dp_cc_cleanup() function in the drivers/net/wireless/ath/ath12k/dp.c module of the Linux kernel allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the ath12kdpcccleanup function in the drivers/net/wireless/ath/ath12k/dp.c module of the Linux kernel is related to the reutilization of previously released memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

The vulnerability of the cv_upgrade_sensor_firmware() function in the Dell ControlVault3 security driver package allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the cvupgradesensorfirmware function in the Dell ControlVault3 security driver suite is related to writing beyond buffer boundaries. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...

Vulnerability of the topology_set_scale_freq_source() function in the drivers/base/arch_topology.c file – a driver for supporting bus devices in Linux kernels, which allows a hacker to cause a system failure.

Vulnerability of the topologysetscalefreqsource function in the drivers/base/archtopology.c file – The Linux kernel driver for bus devices relies on the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to cause a system failure...

The vulnerability of the SLNX PC Client of the embedded application and document management tool RICOH Streamline NX allows a perpetrator to re-record any files.

The vulnerability of the SLNX PC Client of the embedded application and document management tool RICOH Streamline NX relates to improper external manipulation of file names or file paths. Exploiting this vulnerability allows a malicious actor to re-record arbitrary files...

Vulnerability of the sa_run() function in the drivers/crypto/sa2ul.c module – A driver for the Linux kernel cryptographic accelerator, which allows an attacker to gain access to protected information

Vulnerability of the sarun function in the drivers/crypto/sa2ul.c module – The driver for the Linux kernel cryptographic accelerator is vulnerable to a vulnerability where memory is not properly freed before removing the last reference to memory memory leak. Exploiting this vulnerability could...

The vulnerability of sub_30394 in NETGEAR EX6120 microprogrammable router software allows a hacker to influence the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of sub30394 in NETGEAR EX6120 microprogrammed software routers lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability could allow an attacker to influence the confidentiality, integrity, and accessibility of the protected...

Vulnerability of the tlanremove_one() function in the drivers/net/ethernet/ti/tlan.c module – A driver for supporting Ethernet adapter devices from Texas Instruments’ Linux kernel, which allows a hacker to cause a service failure.

Vulnerability of the tlanremoveone function in the drivers/net/ethernet/ti/tlan.c module – The driver for supporting Ethernet adapter devices from Texas Instruments in the Linux operating system relies on the reutilization of previously freed memory. Exploiting this vulnerability could allow an...

Vulnerability of the __domain_mapping() function in the drivers/iommu/intel/iommu.c module – This is a driver for Linux’s IOMMU support, which allows an attacker to compromise the integrity and confidentiality of protected information.

Vulnerability of the domainmapping function in the drivers/iommu/intel/iommu.c module – The Linux kernel’s IOMMU support driver has a vulnerability due to incorrect input validation. Exploiting this vulnerability could allow an attacker to compromise the integrity and confidentiality of the...

Vulnerability of the mlx5e_rep_neigh_update() function in the drivers/net/ethernet/mellanox/mlx5/core/en/rep/neigh.c module – A driver for supporting Mellanox Ethernet network adapters in the Linux operating system, which allows a hacker to cause a service failure

Vulnerability of the mlx5erepneighupdate function in the drivers/net/ethernet/mellanox/mlx5/core/en/rep/neigh.c module – The Mellanox Ethernet network adapter driver for the Linux operating system is vulnerable due to the reutilization of previously freed memory. Exploiting this vulnerability cou...

Vulnerability of the nj_probe() function in the drivers/isdn/hardware/mISDN/netjet.c module – This driver is part of the mISDN device support in the Linux operating system. It allows a hacker to cause a service failure.

Vulnerability of the njprobe function in the drivers/isdn/hardware/mISDN/netjet.c module – The Linux kernel’s mISDN device driver has a vulnerability that leads to uncontrolled resource consumption. Exploiting this vulnerability could allow an attacker to cause service failures...

The vulnerability of the mptcp_get_options() function in the net/mptcp/options.c module, which is part of the Linux kernel’s networking functions, allows a hacker to cause a service failure.

The vulnerability of the mptcpgetoptions function in the net/mptcp/options.c module, which implements networking functions in the Linux kernel, relates to reading beyond the buffer boundaries. Exploiting this vulnerability could allow an attacker to cause a service failure...

Vulnerability of the xrx200_alloc_skb() function in the drivers/net/ethernet/lantiq_xrx200.c module – This driver for network adapter Ethernet in the Linux operating system allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

Vulnerability of the xrx200allocskb function in the drivers/net/ethernet/lantiqxrx200.c module – The Linux kernel’s Ethernet adapter driver relies on unconstrained and unrestricted resource allocation. Exploiting this vulnerability could allow attackers to compromise the confidentiality, integrit...

The vulnerability of the OpenConfig.Set command in the Arist EOS operating system allows a attacker to influence the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the OpenConfig.Set command in the Arist EOS operating system is related to access control errors. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality, integrity, and accessibility of protected information...

The vulnerability of the Product Delivery Service component of the software for collecting, analyzing, and visualizing meteorological data, Visual Weather, and related products such as NAMIS, Aero Weather, and Satellite Weather, allows a perpetrator to execute arbitrary code or cause service failures.

The vulnerability of the Product Delivery Service component of the software for collecting, analyzing, and visualizing meteorological data Visual Weather and related products such as NAMIS and Aero Weather lies in insufficient validation of input data. Exploiting this vulnerability could allow an...

The vulnerability of the formSetPPTPServerCfg function in the Tenda AC10 router software allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the formSetPPTPServer /goform/SetPptpServerCfg function in the Tenda AC10 router software lies in the copying of buffers without checking the size of the input data. Exploiting this vulnerability allows an attacker to compromise the confidentiality, integrity, and accessibili...

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the binder_txns_pending_ilocked() function in the drivers/android/binder.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the bindertxnspendingilocked function in the drivers/android/binder.c module of the Linux operating system’s kernel is related to synchronization errors when using shared resources. Exploiting this vulnerability can allow an attacker to compromise the confidentiality,...

The vulnerability of the Versa Director network infrastructure management software platform, related to the use of default credentials, allows a perpetrator to gain unauthorized access to the platform.

The vulnerability of the Versa Director network infrastructure management software platform is related to the use of default credentials. Exploiting this vulnerability could allow an attacker to gain unauthorized access to the platform remotely...

Vulnerability of the mt7915_txp_skb_unmap() function in the drivers/net/wireless/mediatek/mt76/mt7915/mac.c module – The driver for supporting wireless communication adapters in the Linux operating system, which allows an attacker to gain access to protected information.

Vulnerability of the mt7915txpskbunmap function in the drivers/net/wireless/mediatek/mt76/mt7915/mac.c module – The Linux kernel’s wireless adapter support driver is vulnerable due to improper memory release before deleting the last reference memory leak. Exploiting this vulnerability could allow...

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system lies in the insufficient protection of website structures, allowing attackers to execute arbitrary code.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to insufficient protection of the website structure. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

The vulnerability of the bpf_link_show_fdinfo() function in the kernel/bpf/syscall.c module of the Linux operating system’s BPF component allows a attacker to compromise the confidentiality and accessibility of the protected information.

The vulnerability of the bpflinkshowfdinfo function in the kernel/bpf/syscall.c module of the Linux operating system’s BPF component involves reading memory beyond the boundaries of the allocated buffer. Exploiting this vulnerability could allow an attacker to compromise the confidentiality and...

The vulnerability of the `tcindex_filter_result_init()` function in the `net/sched/cls_tcindex.c` module of the network scheduling subsystem of the Linux operating system allows a hacker to trigger a service failure.

The vulnerability of the tcindexfilterresultinit function in the net/sched/clstcindex.c module of the network scheduling subsystem of the Linux operating system is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a remote attacker to cause service...

The vulnerability of the Adobe Experience Manager (AEM) content and media data management system, related to deficiencies in authentication procedures, allows attackers to escalate their privileges.

The vulnerability of the Adobe Experience Manager AEM content and media data management system is related to deficiencies in the authentication process. Exploiting this vulnerability could allow a malicious actor to gain increased privileges remotely...

The vulnerability of the Messages component in operating systems such as watchOS, macOS, iOS, and iPadOS allows a hacker to carry out a zero-click attack.

The vulnerability of the Messages component in operating systems such as watchOS, macOS, iOS, and iPadOS is related to insufficient validation of input data. Exploiting this vulnerability can allow a remote attacker to carry out a zero-click attack using a specially crafted iCloud link...

The vulnerability of the Advantive VeraCore cloud-based business process management system lies in its ability to allow unlimited loading of dangerous types of files, enabling attackers to gain unauthorized access to protected information.

The vulnerability of the Advantive VeraCore cloud-based business process management system is related to the unlimited loading of dangerous types of files. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected information...

The software for data protection solutions from Dell RecoverPoint for virtual machines is vulnerable due to errors in the use of standard permissions. This allows attackers to gain unauthorized access to protected information.

The vulnerability of Dell RecoverPoint’s data protection software for virtual machines is related to errors in the use of standard permissions. Exploiting this vulnerability can allow an intruder to gain unauthorized access to protected information...

The vulnerability of the xe_reg_sr_add() function in the drivers/gpu/drm/xe/xe_reg_sr.c kernel of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the xeregsradd function in the drivers/gpu/drm/xe/xeregsr.c kernel of the Linux operating system is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility o...

The vulnerability of the check_helper_mem_access() function in the kernel/bpf/verifier.c module of the Linux operating system allows a attacker to compromise the integrity and accessibility of the protected information.

The vulnerability of the checkhelpermemaccess function in the kernel/bpf/verifier.c module of the Linux operating system is related to errors in the code. Exploiting this vulnerability could allow an attacker to compromise the integrity and accessibility of the protected information...

The vulnerability of the rtw89_mac_c2h_mrc_func{} function in the drivers/net/wireless/realtek/rtw89/mac.h file of the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the rtw89macc2hmrcfunc function in the drivers/net/wireless/realtek/rtw89/mac.h file of the Linux kernel is related to reading beyond the buffer boundaries. Exploiting this vulnerability can allow an attacker to cause a service failure...

The vulnerability of the `udp_gro_receive()` function in the `net/ipv4/udp_offload.c` module of the Linux operating system’s IPv4 protocol implementation allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the udpgroreceive function in the net/ipv4/udpoffload.c module of the Linux operating system’s IPv4 protocol implementation is related to incorrect input validation. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...

Vulnerability of the sun8i_ss_prng_generate() function in the drivers/crypto/allwinner/sun8i-ss/sun8i-ss-prng.c module – a driver for the Linux operating system’s cryptographic acceleration engine, allowing a hacker to cause a service failure.

Vulnerability of the sun8issprngGenerate function in the drivers/crypto/allwinner/sun8i-ss/sun8i-ss-prng.c module – The driver for the Linux operating system’s cryptographic acceleration engine is vulnerable due to the absence of restrictions and controls on resource distribution. Exploiting this...

The vulnerability of the svc_create_socket() function in the net/sunrpc/svcsock.c module of the Linux operating system’s RPC protocol implementation allows a attacker to cause a service failure.

The vulnerability of the svccreatesocket function in the net/sunrpc/svcsock.c module of the Linux operating system’s RPC implementation is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the IhisiServiceSmm component in the InsydeH2O UEFI firmware creation framework allows a attacker to escalate their privileges.

The vulnerability of the IhisiServiceSmm component in the InsydeH2O UEFI firmware creation framework is related to writing beyond the buffer boundaries in memory. Exploiting this vulnerability can allow an attacker to increase their privileges remotely...

Vulnerability of the dwc3_meson_g12a_setup_regmaps() function in the driver/usb/dwc3/dwc3-meson-g12a.c file – This driver is used to support USB devices in Linux operating systems. It allows a hacker to cause a service failure.

Vulnerability of the dwc3mesong12asetupregmaps function in the driver/usb/dwc3/dwc3-meson-g12a.c file – The Linux kernel’s USB device support driver is vulnerable due to a NULL pointer dereferencing issue. Exploiting this vulnerability could allow an attacker to cause a system failure...

The vulnerability of the usb_stream_free() function in the sound/usb/usx2y/usb_stream.c module allows a hacker to cause a service failure for USB audio devices in Linux operating systems.

The vulnerability of the usbstreamfree function in the sound/usb/usx2y/usbstream.c module, which handles USB audio devices in Linux operating systems, is related to the assignment of the NULL pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the nvmet_data_transfer_len() function in the drivers/nvme/target/core.c module of the Linux kernel allows a hacker to cause a service failure.

The vulnerability of the nvmetdatatransferlen function in the drivers/nvme/target/core.c module of the Linux kernel is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker to cause a service failure...

The vulnerability of the software for configuring and setting up devices of the Universal Relay (UR) series, GE Vernova Enervista UR Setup, stems from the lack of authenticity verification for a critical function. This allows attackers to carry out “man-in-the-middle” type attacks.

The vulnerability of the software for configuring and setting up Universal Relay UR devices from GE Vernova Enervista UR Setup is related to the lack of authenticity verification for a critical function. Exploiting this vulnerability allows an attacker who operates remotely to carry out...

The vulnerability of the device_block_translation() function in the drivers/iommu/intel/iommu.c kernel module of the Linux operating system allows a hacker to cause a service failure.

The vulnerability of the deviceblocktranslation function in the drivers/iommu/intel/iommu.c kernel module of the Linux operating system is related to the dereferencing of the NULL pointer. Exploiting this vulnerability could allow an attacker to cause a service failure...