Lucene search
K

22107 matches found

Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•10 views

vt: fix unicode buffer corruption when deleting characters

...

5.3CVSS7.3AI score0.00907EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•3 views

Bluetooth: btusb: mediatek: Fix double free of skb in coredump

...

7.8CVSS6.6AI score0.00248EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•4 views

dm-raid: really frozen sync_thread during suspend

...

5.5CVSS7.6AI score0.00223EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•3 views

media: imx: csc/scaler: fix v4l2_ctrl_handler memory leak

...

5.5CVSS6AI score0.00289EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•2 views

netfilter: iptables: Fix potential null-ptr-deref in ip6table_nat_table_init().

...

5.5CVSS6.7AI score0.00226EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•10 views

usb: dwc3: core: remove lock of otg mode during gadget suspend/resume to avoid deadlock

...

5.5CVSS7.3AI score0.00176EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•4 views

nvme: avoid double free special payload

...

7.8CVSS7.3AI score0.00248EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•1 views

filelock: fix potential use-after-free in posix_lock_inode

...

7.8CVSS7.6AI score0.00258EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•4 views

media: mc: Fix graph walk in media_pipeline_start

...

5.5CVSS7.3AI score0.00211EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•4 views

clk: Get runtime PM before walking tree for clk_summary

...

5.5CVSS6.7AI score0.00173EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•3 views

crypto: qat - resolve race condition during AER recovery

...

7CVSS6.8AI score0.00192EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•5 views

drm/vmwgfx: Create debugfs ttm_resource_manager entry only if needed

...

5.5CVSS7.3AI score0.00227EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•3 views

drm/i915/vma: Fix UAF on destroy against retire race

...

7CVSS7.3AI score0.00239EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•1 views

x86/mm: Ensure input to pfn_to_kaddr() is treated as a 64-bit type

...

5.5CVSS7.6AI score0.00219EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•5 views

usb: typec: altmodes/displayport: create sysfs nodes as driver's default device attribute group

...

5.5CVSS7.2AI score0.00225EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•6 views

Vault May be Vulnerable to a Denial of Service Through Memory Exhaustion When Handling Large HTTP Requests

...

7.5CVSS7AI score0.00792EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•2 views

Qemu: vnc: infinite loop in inflate_buffer() leads to denial of service

...

6.5CVSS6.7AI score0.01891EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•5 views

QEMU through 8.0.0 could trigger a division by zero in scsi_disk_reset in hw/scsi/scsi-disk.c because scsi_disk_emulate_mode_select does not prevent s->qdev.blocksize from being 256. This stops QEMU and the guest immediately.

...

5.5CVSS6.3AI score0.00376EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•1 views

Qemu: 9pfs: improper access control on special files

...

7.1CVSS6.9AI score0.00376EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•3 views

Heap buffer overflow in virtio_crypto_sym_op_helper()

...

6.5CVSS6.7AI score0.00234EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•4 views

A vulnerability was found in openldap. This security flaw causes a null pointer dereference in ber_memalloc_x() function.

...

7.5CVSS7AI score0.01947EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•5 views

Shim: interger overflow leads to heap buffer overflow in verify_sbat_section on 32-bits systems

...

7.4CVSS7AI score0.00432EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•2 views

Shim: out-of-bound read in verify_buffer_sbat()

...

5.5CVSS7AI score0.00394EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•5 views

Groups not dropped before running subprocess when using empty 'extra_groups' parameter

...

6.1CVSS9.6AI score0.01326EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•3 views

io_uring/net: fix overflow check in io_recvmsg_mshot_prep()

...

5.5CVSS7.4AI score0.00209EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•13 views

md/dm-raid: don't call md_reap_sync_thread() directly

...

5.5CVSS7.6AI score0.00174EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•6 views

firewire: ohci: prevent leak of left-over IRQ on unbind

...

5.5CVSS7AI score0.00222EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•4 views

xfs: fix log recovery buffer allocation for the legacy h_size fixup

...

5.5CVSS6.7AI score0.00229EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•2 views

bonding: Fix out-of-bounds read in bond_option_arp_ip_targets_set()

...

7.1CVSS7.3AI score0.0024EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•2 views

KEYS: trusted: Fix memory leak in tpm2_key_encode()

...

5.5CVSS7.3AI score0.00212EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•5 views

Denial of Service of protobuf-java parsing procedure

...

7.5CVSS6.7AI score0.01655EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•4 views

In Go before 1.15.13 and 1.16.x before 1.16.5 some configurations of ReverseProxy (from net/http/httputil) result in a situation where an attacker is able to drop arbitrary headers.

...

5.3CVSS7AI score0.02279EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•5 views

Integer Overflow in Chunked Transfer-Encoding

...

9.1CVSS7AI score0.01133EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•8 views

rust-vmm linux-loader vulnerable to Out-of-bounds Read

...

5.5CVSS7AI score0.00207EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•4 views

golang.org/x/text/language in golang.org/x/text before 0.3.7 can panic with an out-of-bounds read during BCP 47 language tag parsing. Index calculation is mishandled. If parsing untrusted user input this can be used as a vector for a denial-of-service attack.

...

7.5CVSS7.5AI score0.01356EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•6 views

An issue was discovered in the nix crate 0.16.0 and later before 0.20.2 0.21.x before 0.21.2 and 0.22.x before 0.22.2 for Rust. unistd::getgrouplist has an out-of-bounds write if a user is in more than 16 /etc/groups groups.

...

9.8CVSS7AI score0.0165EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•4 views

In x/text in Go before v0.3.5 a "slice bounds out of range" panic occurs in language.ParseAcceptLanguage while processing a BCP 47 tag. (x/text/language is supposed to be able to parse an HTTP Accept-Language header.)

...

7.5CVSS7AI score0.01674EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•2 views

Shim: out-of-bounds read printing error messages

...

6.2CVSS7AI score0.00434EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•5 views

Shim: out-of-bounds read in verify_buffer_authenticode() malformed pe file

...

6.2CVSS7AI score0.00409EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•2 views

Triggerable assertion due to race condition in hot-unplug

...

5.6CVSS6.7AI score0.00251EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•6 views

Mercurial configuration injectable in repo revision when installing via pip

...

5.5CVSS7AI score0.00476EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•5 views

There's a possible overflow in handle_image() when shim tries to load and execute crafted EFI executables

...

7.8CVSS6.8AI score0.00332EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•3 views

Qemu: pvrdma: out-of-bounds read in pvrdma_ring_next_elem_read()

...

6.3CVSS6.7AI score0.00309EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•4 views

Heap buffer overflow in finfo_buffer

...

9.8CVSS7AI score0.01659EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•3 views

GJSON before 1.9.3 allows a ReDoS (regular expression denial of service) attack.

...

7.5CVSS9.3AI score0.02246EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•5 views

In x/text in Go 1.15.4 an "index out of range" panic occurs in language.ParseAcceptLanguage while parsing the -u- extension. (x/text/language is supposed to be able to parse an HTTP Accept-Language header.)

...

7.5CVSS7AI score0.02297EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•2 views

Go before 1.15.13 and 1.16.x before 1.16.5 has functions for DNS lookups that do not validate replies from DNS servers and thus a return value may contain an unsafe injection (e.g. XSS) that does not conform to the RFC1035 format.

...

7.5CVSS7AI score0.03231EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•10 views

Lenient Parsing of Content-Length Header When Prefixed with Plus Sign

...

5.3CVSS7AI score0.00886EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•4 views

Prometheus Exporter Toolkit vulnerable to basic authentication bypass

...

8.8CVSS7AI score0.01166EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2024/09/11 7:0 a.m.•4 views

A stack overflow vulnerability was found in the Intel HD Audio device (intel-hda) of QEMU. A malicious guest could use this flaw to crash the QEMU process on the host resulting in a denial of service condition. The highest threat from this vulnerability is to system availability. This flaw affects QEMU versions prior to 7.0.0.

...

6.5CVSS6.8AI score0.00489EPSS
Exploits1
Total number of security vulnerabilities22107