90509 matches found
The vulnerability of the devm_cxl_add_region() function in Linux operating systems, which allows a hacker to trigger a service failure
The vulnerability of the devmcxladdregion function in Linux operating systems is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the unregister_region() function in Linux operating system kernels, which allows a hacker to compromise the accessibility of protected information
The vulnerability of the unregisterregion function in Linux operating systems is related to the lack of memory release after the effective lifespan of the function has ended. Exploiting this vulnerability could allow an attacker to compromise the accessibility of protected information...
The vulnerability of the corporate version of the GitHub Enterprise Server, related to the lack of measures taken at the management level to clean up data, allows a violator to execute arbitrary code.
The vulnerability of the corporate version of the GitHub Enterprise Server is related to the lack of measures taken at the management level to protect data. Exploitation of this vulnerability could allow a malicious actor to execute arbitrary code remotely...
The vulnerability of the hws_pool_buddy_init() function in the drivers/net/ethernet/mellanox/mlx5/core/steering/hws/pool.c file of the Mellanox Ethernet network adapter driver for the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the hwspoolbuddyinit function in the drivers/net/ethernet/mellanox/mlx5/core/steering/hws/pool.c file of the Mellanox Ethernet network adapter driver for the Linux operating system is related to the failure to release resources after their useful life has expired. Exploiting...
The vulnerability of the iwl_mvm_tx_skb_sta() function in the drivers/net/wireless/intel/iwlwifi/mvm/tx.c file of the Intel wireless driver for the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the function iwlmvmtxskbsta in the driver code drivers/net/wireless/intel/iwlwifi/mvm/tx.c of the Intel wireless networking driver for the Linux operating system is related to the reutilization of previously freed memory. Exploiting this vulnerability could allow an attacker ...
The vulnerability of the nfsd_init_dirlist_pages() function in the fs/nfsd/nfsproc.c module, which is part of the Linux kernel’s Network File System support, allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the nfsdinitdirlistpages function in the fs/nfsd/nfsproc.c module, which is part of the Linux kernel’s Network File System support, involves copying buffers without checking their size—a classic buffer overflow attack. Exploiting this vulnerability could allow an attacker to...
The vulnerability of the rtw_usb_probe() function in the driver file drivers/net/wireless/realtek/rtw88/usb.c of the Realtek wireless adapter driver for the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the rtwusbprobe function in the driver/net/wireless/realtek/rtw88/usb.c file of the Realtek wireless adapter driver for the Linux operating system is related to improper memory release memory leak. Exploiting this vulnerability could allow an attacker to cause a system failur...
The vulnerability of the fill_frame_info() function in the net/hsr/hsr_forward.c module, which is part of the networking functions of the Linux operating system’s kernel, allows a hacker to cause a service failure.
The vulnerability of the fillframeinfo function in the net/hsr/hsrforward.c module, which is part of the networking functions in the Linux operating system’s kernel, relates to the use of uninitialized variables. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the `ionic_devlink_alloc()` function in the `drivers/net/ethernet/pensando/ionic/ionic_devlink.c` file of the Pensando Ethernet network adapter driver for the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the ionicdevlinkalloc function in the drivers/net/ethernet/pensando/ionic/ionicdevlink.c file of the Pensando Ethernet network adapter driver for the Linux operating system is related to the lack of checking the return value. Exploiting this vulnerability could allow an...
Vulnerability of the kgd2kfd_suspend() function in the drivers/gpu/drm/amd/amdkfd/kfd_device.c module – A driver for supporting Direct Rendering Infrastructure (DRI) in AMD graphics cards for Linux operating systems. This vulnerability allows a hacker to cause a service failure.
Vulnerability of the kgd2kfdsuspend function in the drivers/gpu/drm/amd/amdkfd/kfddevice.c module – The driver for AMD GPU Direct Rendering Infrastructure support in Linux operating systems is vulnerable due to improper control of resource identifiers “resource injection”. Exploiting this...
The vulnerability of the ctnetlink_exp_id() function in the net/netfilter/nf_conntrack_netlink.c module of the Linux kernel’s netfilter component allows a hacker to induce a service failure.
The vulnerability of the ctnetlinkexpid function in the net/netfilter/nfconntracknetlink.c module of the netfilter component of the Linux operating system is related to improper memory release memory leak. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerabilities of the functions ism_cmd() and ism_probe() in the driver drivers/s390/net/ism_drv.c file of the network driver for the S390 platform of the Linux operating system allow a malicious actor to cause service failures.
The vulnerabilities of the functions ismcmd and ismprobe in the drivers/s390/net/ismdrv.c file of the S390 network driver for the Linux operating system are related to state management errors. Exploiting these vulnerabilities can allow an attacker to cause a service failure...
The vulnerability of the PDF document viewing program Foxit PDF Reader (formerly Foxit Reader) and the PDF file editing program Foxit PDF Editor (formerly Foxit PhantomPDF) allows a perpetrator to execute arbitrary code or disclose protected information.
The vulnerability of the PDF document viewing program Foxit PDF Reader formerly Foxit Reader and the PDF file editing program Foxit PDF Editor formerly Foxit PhantomPDF lies in the ability to exploit memory after it is freed. Exploiting this vulnerability can allow an attacker to execute arbitrar...
The vulnerability of the formQuickIndex() function in the httpd daemon of the Tenda F456 microprogramming router allows a hacker to execute arbitrary code and cause a service failure.
The vulnerability of the formQuickIndex function in the httpd daemon of the Tenda F456 microprogramming router lies in the issue of the operation going beyond the buffer in memory when processing the mitlinktype parameter. Exploiting this vulnerability allows a remote attacker to execute arbitrar...
The vulnerability of the Google Chrome browser’s Media component, which allows a hacker to increase their privileges
The vulnerability of the Google Chrome browser’s Media component relates to the possibility of using memory after it is freed. Exploiting this vulnerability could allow a remote attacker to increase their privileges...
The vulnerability of the am65-cpsw_nuss_phylink_cleanup() function in the Linux operating system driver allows a hacker to cause a service failure.
The vulnerability of the am65-cpsw-nuss-phylinkcleanup function in the am65-cpsw kernel driver of Linux operating systems is related to the use of memory after it is freed. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the moxartprobe() function in the drivers/mmc/host/moxart-mmc.c file of the MMC/SD/SDIO card driver for the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the moxartprobe function in the drivers/mmc/host/moxart-mmc.c file of the MMC/SD/SDIO card driver for the Linux operating system is related to the lack of checking the return value. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the arm_trbe_probe_cpuhp() function in the drivers/hwtracing/coresight/coresight-trbe.c file of the Linux kernel’s hardware tracing driver allows a hacker to cause a service failure.
The vulnerability of the armtrbeprobecpuhp function in the drivers/hwtracing/coresight/coresight-trbe.c file of the Linux kernel’s hardware tracing driver is related to state management errors. Exploiting this vulnerability could allow an attacker to cause a system failure...
The vulnerability of the __pskb_pull_tail() function in the net/core/skbuff.c module, which supports kernel network functions in the Linux operating system, allows a hacker to trigger a service failure.
The vulnerability of the pskbpulltail function in the net/core/skbuff.c module related to kernel network functions of the Linux operating system involves disclosing confidential information. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the padata_do_parallel() function in the kernel/padata.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the padatadoparallel function in the kernel/padata.c module of the Linux operating system is related to the occurrence of mutual locking. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...
The vulnerability of the fcoe_init() function in the drivers/scsi/fcoe/fcoe.c driver for SCSI devices in the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the fcoeinit function in the drivers/scsi/fcoe/fcoe.c driver for Linux SCSI devices is related to the occurrence of operations outside of the buffer in memory. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibilit...
The vulnerability of the ath11k_mhi_register() function in the drivers/net/wireless/ath/ath11k/mhi.c module of the Atheros/Qualcomm wireless adapter driver for the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the ath11kmhiregister function in the drivers/net/wireless/ath/ath11k/mhi.c module of the Atheros/Qualcomm wireless adapter driver for the Linux operating system is related to the failure to release resources after their useful life has ended. Exploiting this vulnerability...
The vulnerability of the fsverity_ioctl_enable() function in the fs/verity/enable.c file of the Linux kernel file system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the fsverityioctlenable function in the fs/verity/enable.c file of the Linux kernel file system is related to initialization errors. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of the protected...
The vulnerability of the raid_component_add() function in the drivers/scsi/raid_class.c module of the Linux operating system’s SCSI device driver allows a hacker to cause a service failure.
The vulnerability of the raidcomponentadd function in the drivers/scsi/raidclass.c module of the Linux SCSI device driver is related to errors during link counters updates. Exploiting this vulnerability can allow an attacker to cause a service failure...
The vulnerability of the vxlan_flagattr_error() function in the Linux operating system’s kernel module allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the vxlanflagattrerror function in the Linux kernel module is related to the occurrence of operations that go beyond the buffer boundaries in memory. Exploitation of this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of...
The vulnerability of the __sta_infodestroy_part1() function in the net/mac80211/sta_info.c module, part of the mac80211 stack in the Linux operating system, allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the stainfodestroypart1 function in the net/mac80211/stainfo.c module, part of the mac80211 stack in the Linux operating system, is related to access to an uninitialized pointer. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrit...
The vulnerability of the vmbus_disconnect() function in the drivers/hv/connection.c module of the Microsoft HyperV Linux kernel driver allows a attacker to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the vmbusdisconnect function in the drivers/hv/connection.c module of the Microsoft HyperV Linux operating system kernel is related to the dereferencing of the NULL pointer. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, an...
The vulnerability of the __acquires() function in the kernel/workqueue.c module of the Linux operating system allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the acquires function in the kernel/workqueue.c module of the Linux operating system is related to the race condition that occurs when a shared resource is used. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and...
The vulnerability of the blk_mq_elv_switchnone() function in the block/blk-mq.c module, which supports the block-level kernel in the Linux operating system. This vulnerability allows an attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the blkmqelvswitchnone function in the block/blk-mq.c module, which supports the block-level kernel in the Linux operating system, is related to the assignment of a NULL pointer. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrit...
The vulnerability of the icmp6_dev() function in the net/ipv6/icmp.c module of the Linux operating system’s IPv6 kernel implementation allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the icmp6dev function in the net/ipv6/icmp.c module of the Linux operating system’s IPv6 kernel implementation is related to the use of the NULL pointer. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, and accessibility of t...
The vulnerability of the TTM_TT_FLAG_PRIV_POPULATED() function in Linux operating systems allows a hacker to exploit it to compromise privacy.
The vulnerability of the TTMTTFLAGPRIVPOPULATED function in Linux operating systems is related to reading data beyond the permitted range of memory. Exploiting this vulnerability could allow an attacker to cause a breach of privacy...
The vulnerability of the finalize_pkvm() function in Linux operating systems allows a hacker to trigger a service failure.
The vulnerability of the finalizepkvm function in Linux operating systems is related to improper release of resources. Exploiting this vulnerability can allow an attacker to cause service failures...
The vulnerability of the mac80211 component in Linux operating systems allows attackers to compromise the accessibility of protected information.
The vulnerability of the mac80211 component in Linux operating systems is related to improper cleaning or release of resources. Exploiting this vulnerability can allow an attacker to compromise the accessibility of protected information...
The vulnerability of the Secure Boot component in Linux operating systems allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the Secure Boot component in Linux operating systems is related to the lack of authentication for critical functions. Exploiting this vulnerability could allow attackers to compromise the confidentiality, integrity, and accessibility of protected information...
The vulnerability of the mpi3mrremove() function in Linux operating system kernels allows a attacker to compromise the accessibility of protected information.
The vulnerability of the mpi3mrremove function in Linux operating systems is related to the lack of memory release after the effective lifespan of the function has ended. Exploiting this vulnerability could allow an attacker to compromise the accessibility of protected information...
The vulnerability of the remove() function in Linux operating system kernels, which allows a attacker to compromise the accessibility of protected information
The vulnerability of the remove function in Linux operating system kernels is related to the lack of memory release after the effective lifespan of the function has ended. Exploiting this vulnerability could allow an attacker to compromise the accessibility of protected information...
The vulnerability of the cxl_port_attach_region() function in Linux operating systems allows a attacker to compromise the accessibility of protected information.
The vulnerability of the cxlportattachregion function in Linux operating systems is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to compromise the accessibility of protected information...
The vulnerability of the sk_stream_kill_queues() function in the Linux operating system allows a hacker to compromise the accessibility of protected information.
The vulnerability of the skstreamkillqueues function in the Linux operating system is related to state management errors. Exploiting this vulnerability could allow an attacker to compromise the accessibility of protected information...
The vulnerability of the ieee80211_subif_start_xmit() function in Linux operating systems allows a hacker to cause a service failure.
The vulnerability of the ieee80211subifstartxmit function in Linux operating systems is related to pointer manipulation. Exploiting this vulnerability could allow an attacker to cause a service failure...
The vulnerability of the CamelCoapResourceHandleRequest() function in the camel-coap Java framework by Apache Camel allows a attacker to execute arbitrary code.
The vulnerability of the CamelCoapResourceHandleRequest function in the camel-coap Java framework by Apache Camel is related to deficiencies in the mechanism for controlling modifications to dynamically defined object properties. Exploiting this vulnerability could allow an attacker to execute...
The vulnerability of the search function in the text editor Notepad++ allows a perpetrator to gain unauthorized access to protected information and cause service failure.
The vulnerability of the search function in the Notepad++ text editor is related to deficiencies in the formatting string processing mechanism. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected information and cause service failures through a specially...
The vulnerability of the Microsoft Partner Center cloud platform, related to access control errors, allows a perpetrator to escalate their privileges.
The vulnerability of the Microsoft Partner Center cloud platform is related to access control errors. Exploiting this vulnerability could allow a malicious actor to increase their privileges remotely...
The vulnerability of the az6027_i2c_xfer() function in the driver/media/usb/dvb-usb/az6027.c file of the Linux operating system’s multimedia device USB driver module allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the az6027i2cxfer function in the driver/media/usb/dvb-usb/az6027.c file of the Linux multimedia device driver framework is related to the dereferencing of the NULL pointer. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrity, an...
The vulnerability of the power_supply_get_battery_info() function in the drivers/power/supply/power_supply_core.c file of the Linux kernel’s power management driver allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the powersupplygetbatteryinfo function in the drivers/power/supply/powersupplycore.c file of the Linux kernel’s power management driver is related to the assignment of the NULL pointer. Exploiting this vulnerability could allow an attacker to compromise the confidentiality,...
The vulnerability of the io_msg_send_fd() function in the io_uring/msg_ring.c module, a component of the Linux kernel’s asynchronous input/output interface, allows a attacker to compromise the confidentiality, integrity, and accessibility of the protected information.
The vulnerability of the iomsgsendfd function in the iouring/msgring.c module, a component of the Linux kernel’s asynchronous input/output interface, is related to the assignment of the NULL pointer. Exploiting this vulnerability could allow an attacker to compromise the confidentiality, integrit...
The vulnerability of the __copy_xstate_to_uabi_buf() function in the arch/x86/kernel/fpu/xstate.c module, which is part of the Linux kernel support for x86 architecture, allows a malicious actor to trigger a service denial.
The vulnerability of the copyxstatetouabibuf function in the arch/x86/kernel/fpu/xstate.c module, which is part of the Linux kernel support for x86 architecture, involves the dereferencing of the NULL pointer. Exploiting this vulnerability could allow an attacker to trigger a service denial...
The vulnerability of the mlx5_ldev_free() function in the drivers/net/ethernet/mellanox/mlx5/core/lag/lag.c file of the Mellanox Ethernet network adapter driver for the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the mlx5ldevfree function in the drivers/net/ethernet/mellanox/mlx5/core/lag/lag.c file of the Mellanox Ethernet network adapter driver for the Linux operating system is related to the assignment of a null pointer. Exploiting this vulnerability could allow an attacker to caus...
The vulnerability of the cros_usbpd_notify_init() function in the drivers/platform/chrome/cros_usbpd_notify.c module, which is part of the Chrome OS hardware support for Linux kernel-based devices, allows a hacker to trigger a service failure.
The vulnerability of the crosusbpdnotifyinit function in the drivers/platform/chrome/crosusbpdnotify.c module, which is part of the Chrome OS hardware support for Linux kernel-based operating systems, stems from the lack of checking the return value. Exploiting this vulnerability could allow an...
The vulnerability of the __ibmvnic_open() function in the drivers/net/ethernet/ibm/ibmvnic.c file of the Ethernet network adapter driver for the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the ibmvnicopen function in the drivers/net/ethernet/ibm/ibmvnic.c file of the Ethernet network adapter driver for the Linux operating system is related to the copying of buffers without checking the size of the input data a classic buffer overflow attack. Exploiting this...
The vulnerability of the hws_action_get_shared_stc_nic() function in the drivers/net/ethernet/mellanox/mlx5/core/steering/hws/action.c file of the Mellanox Ethernet network adapter driver for the Linux operating system allows a hacker to cause a service failure.
The vulnerability of the hwsactiongetsharedstcnic function in the drivers/net/ethernet/mellanox/mlx5/core/steering/hws/action.c file of the Mellanox Ethernet network adapter driver for the Linux operating system is related to the failure to release resources after their useful life has expired...