Lucene search
K

21727 matches found

Microsoft CVE
Microsoft CVE
•added 2025/10/08 8:2 a.m.•10 views

ssh in OpenSSH before 10.1 allows control characters in usernames that originate from certain possibly untrusted sources, potentially leading to code execution when a ProxyCommand is used. The untrusted sources are the command line and %-sequence expansion of a configuration file. (A configuration file that provides a complete literal username is not categorized as an untrusted source.)

...

3.6CVSS7AI score0.00221EPSS
Exploits2
Microsoft CVE
Microsoft CVE
•added 2025/10/08 8:2 a.m.•7 views

ssh in OpenSSH before 10.1 allows the '\0' character in an ssh:// URI, potentially leading to code execution when a ProxyCommand is used.

...

4.5CVSS7AI score0.00114EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/08 8:1 a.m.•3 views

Redis Lua Use-After-Free may lead to remote code execution

...

9.9CVSS7AI score0.86767EPSS
Exploits14
Microsoft CVE
Microsoft CVE
•added 2025/10/08 1:1 a.m.•7 views

octeontx2-pf: handle otx2_mbox_get_rsp errors in otx2_dmac_flt.c

...

5.5CVSS7AI score0.00236EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/08 1:1 a.m.•4 views

net/smc: initialize close_work early to avoid warning

...

5.5CVSS7AI score0.00213EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/08 1:1 a.m.•4 views

KVM: arm64: Disassociate vcpus from redistributor region on teardown

...

7.8CVSS7AI score0.00296EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/08 1:1 a.m.•4 views

tty: add the option to have a tty reject a new ldisc

...

5.5CVSS7AI score0.00288EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/08 1:1 a.m.•5 views

SUNRPC: lock against ->sock changing during sysfs read

...

4.7CVSS7AI score0.00254EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/07 8:1 a.m.•4 views

Use-after-free vulnerability in Qt SVG qsvghandler.cpp allows denial of service via crafted SVG

...

9.4CVSS7AI score0.00204EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/07 8:1 a.m.•9 views

Qemu-kvm: vnc websocket handshake use-after-free

...

7.5CVSS7AI score0.00783EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/07 1:1 a.m.•5 views

Uncontrolled recursion in Qt SVG module

...

9.4CVSS7AI score0.00203EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/06 1:38 a.m.•3 views

mm: /proc/pid/smaps_rollup: fix no vma's null-deref

...

7AI score
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/05 8:3 a.m.•2 views

net/mlx5e: Harden uplink netdev access against device unbind

...

5.5CVSS7AI score0.00136EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/05 8:3 a.m.•3 views

crypto: af_alg - Set merge to zero early in af_alg_sendmsg

...

5.5CVSS7AI score0.00137EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/05 8:3 a.m.•2 views

cgroup: split cgroup_destroy_wq into 3 workqueues

...

5.5CVSS7AI score0.00137EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/05 8:2 a.m.•4 views

cnic: Fix use-after-free bugs in cnic_delete_task

...

7.8CVSS7AI score0.00148EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/05 8:2 a.m.•2 views

qed: Don't collect too many protection override GRC elements

...

5.5CVSS7AI score0.00137EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/05 8:2 a.m.•7 views

net: rfkill: gpio: Fix crash due to dereferencering uninitialized pointer

...

5.5CVSS7AI score0.00137EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/05 8:2 a.m.•7 views

tls: make sure to abort the stream if headers are bogus

...

9.8CVSS7AI score0.08942EPSS
Exploits1
Microsoft CVE
Microsoft CVE
•added 2025/10/05 8:2 a.m.•4 views

ksmbd: smbdirect: verify remaining_data_length respects max_fragmented_recv_size

...

5.5CVSS7AI score0.00136EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/05 8:2 a.m.•3 views

ASoC: qcom: q6apm-lpass-dais: Fix NULL pointer dereference if source graph failed

...

5.5CVSS7AI score0.00136EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/05 8:2 a.m.•4 views

smb: client: fix smbdirect_recv_io leak in smbd_negotiate() error path

...

5.5CVSS7AI score0.00137EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/05 8:2 a.m.•3 views

drm: bridge: anx7625: Fix NULL pointer dereference with early IRQ

...

5.5CVSS7AI score0.00137EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/05 8:1 a.m.•2 views

pytorch v2.8.0 was discovered to display unexpected behavior when the components torch.rot90 and torch.randn_like are used together.

...

7.5CVSS7AI score0.0039EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/05 1:3 a.m.•2 views

octeontx2-pf: Fix use-after-free bugs in otx2_sync_tstamp()

...

7.8CVSS7AI score0.00138EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/05 1:3 a.m.•4 views

dm-stripe: fix a possible integer overflow

...

7AI score0.00135EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/05 1:3 a.m.•5 views

smb: client: let recv_done verify data_offset, data_length and remaining_data_length

...

5.5CVSS7AI score0.0012EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/05 1:2 a.m.•6 views

wifi: wilc1000: avoid buffer overflow in WID string configuration

...

7.8CVSS7AI score0.00158EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/05 1:2 a.m.•10 views

smb: client: let smbd_destroy() call disable_work_sync(&info->post_send_credits_work)

...

7AI score0.00135EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/05 1:2 a.m.•7 views

um: virtio_uml: Fix use-after-free after put_device in probe

...

7.8CVSS7AI score0.0014EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/05 1:2 a.m.•5 views

ksmbd: smbdirect: validate data_offset and data_length field of smb_direct_data_transfer

...

7.1CVSS7AI score0.0014EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/05 1:1 a.m.•7 views

io_uring/io-wq: Use set_bit() and test_bit() at worker->flags

...

4.7CVSS7AI score0.00198EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/05 1:1 a.m.•4 views

Bluetooth: HCI: Remove HCI_AMP support

...

5.5CVSS7AI score0.00209EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/05 1:1 a.m.•8 views

pytorch v2.8.0 was discovered to contain an integer overflow in the component torch.nan_to_num-.long().

...

5.3CVSS7AI score0.00294EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/05 1:1 a.m.•6 views

An issue in the component torch.linalg.lu of pytorch v2.8.0 allows attackers to cause a Denial of Service (DoS) when performing a slice operation.

...

7.5CVSS7AI score0.00391EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/04 1:1 a.m.•5 views

f2fs: assign CURSEG_ALL_DATA_ATGC if blkaddr is valid

...

5.5CVSS7AI score0.00222EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/03 2:0 p.m.•21 views

MITRE: CVE-2025-59489 Unity Gaming Engine Editor vulnerability

Unity announced a security vulnerability CVE-2025-59489 that is affecting games or applications built with the Unity Gaming Engine Editor version 2017.1 or later. You may be using a Microsoft app or playing a Microsoft game that should be uninstalled until an update is available. We are working t...

8.4CVSS6.7AI score0.00583EPSS
Exploits4
Microsoft CVE
Microsoft CVE
•added 2025/10/03 8:1 a.m.•4 views

Denial of Service in CivetWeb

...

8.7CVSS7AI score0.00711EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/03 3:48 a.m.•7 views

Chromium: CVE-2025-11219 Use after free in V8

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

3.1CVSS6.4AI score0.00231EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/03 3:48 a.m.•5 views

Chromium: CVE-2025-11216 Inappropriate implementation in Storage

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.3CVSS6.4AI score0.00206EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/03 3:48 a.m.•5 views

Chromium: CVE-2025-11215 Off by one error in V8

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

4.3CVSS6.4AI score0.00215EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/03 3:48 a.m.•2 views

Chromium: CVE-2025-11213 Inappropriate implementation in Omnibox

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.3CVSS6.4AI score0.00192EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/03 3:48 a.m.•5 views

Chromium: CVE-2025-11212 Inappropriate implementation in Media

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.3CVSS6.4AI score0.00178EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/03 3:48 a.m.•3 views

Chromium: CVE-2025-11211 Out of bounds read in Media

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

7.5CVSS6.4AI score0.00329EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/03 3:48 a.m.•2 views

Chromium: CVE-2025-11210 Side-channel information leakage in Tab

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

5.4CVSS6.4AI score0.00197EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/03 3:48 a.m.•2 views

Chromium: CVE-2025-11209 Inappropriate implementation in Omnibox

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.2CVSS6.4AI score0.00224EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/03 3:47 a.m.•2 views

Chromium: CVE-2025-11207 Side-channel information leakage in Storage

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.5CVSS6.4AI score0.00224EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/03 3:47 a.m.•4 views

Chromium: CVE-2025-11208 Inappropriate implementation in Media

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

6.3CVSS6.4AI score0.00192EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/03 3:47 a.m.•8 views

Chromium: CVE-2025-11206 Heap buffer overflow in Video

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

7.1CVSS6.4AI score0.00191EPSS
Exploits0
Microsoft CVE
Microsoft CVE
•added 2025/10/03 3:47 a.m.•3 views

Chromium: CVE-2025-11205 Heap buffer overflow in WebGPU

This CVE was assigned by Chrome. Microsoft Edge Chromium-based ingests Chromium, which addresses this vulnerability. Please see Google Chrome Releases for more information...

8.8CVSS6.4AI score0.0028EPSS
Exploits0
Total number of security vulnerabilities21727