175464 matches found
PT-2026-43910
Name of the Vulnerable Software and Affected Versions Linux kernel versions prior to 7.0.11-1.1 Description An issue exists in the RDMA/rxe component where the rxe rcv function fails to properly validate the incoming packet length before calculating the payload size. The payload size calculation...
PT-2026-43699
Slican telephone exchanges allow administrative protocol authentication bypass. An attacker can bypass the need to enter login credentials by executing the appropriate command. This issue was fixed in versions below: - NCP: version 1.24.0250 - IPx series: version 6.61.0040 - CCT-1668: version...
PT-2026-43966
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the caif connect function where a client is torn down after a remote shutdown by calling caif disconnect client and caif free client. The caif free client function...
PT-2026-43964
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory leak occurs in the tpm2 read public function within the tpm2-sessions module. The function calls tpm buf init to allocate a page but fails to call tpm buf destroy to release it ...
PT-2026-43671
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue exists in the arena vm close function during a fork operation. The arena vm open function increments the vml-mmap count but fails to register the child Virtual...
PT-2026-43676
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A flaw exists in the SLIP Serial Line IP implementation where the slhc init function allows a configuration with rslots set to 0, indicating no receive compression. In this state, the...
PT-2026-43675
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A divide-by-zero error exists in the netfilter component within the nf osf match one function. The issue occurs in the OSF WSS MODULO branch when calculating ctx-window % f-wss.val witho...
PT-2026-43858
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A heap out-of-bounds write can occur in the part descs loc table when mounting a crafted UDF image containing repeated partition descriptors. The handle partition descriptor function fai...
PT-2026-43971
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A lifetime bookkeeping error exists in the ucan driver within the CAN subsystem. USB drivers bind to USB interfaces, and device managed resources must have their lifetime tied to the...
PT-2026-43902
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description On Uniprocessor UP kernels where CONFIG SMP is not enabled, the spin trylock function acts as a no-op and succeeds unconditionally, even if the lock is already held. This allows alloc...
PT-2026-45945
Name of the Vulnerable Software and Affected Versions Apache HTTP Server affected versions not specified mod http2 versions prior to 2.0.41 Description Apache HTTP Server incorrectly handles certain cookie headers in its HTTP/2 implementation, leading to a denial of service. This issue, known as...
PT-2026-43678
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the netfilter arp tables component regarding the parsing of ARP payloads for IEEE1394 FireWire interfaces. The arp packet match function incorrectly assumes that both...
PT-2026-44648
Name of the Vulnerable Software and Affected Versions Google Chrome versions prior to 148.0.7778.216 Description A heap buffer overflow exists in ANGLE, which is a compatibility layer that allows OpenGL ES to run on various graphics APIs. This issue allows a remote attacker to potentially exploit...
PT-2026-43691
In the Linux kernel, the following vulnerability has been resolved: accel/amdxdna: Fix potential NULL pointer dereference in context cleanup aie destroy context is invoked during error handling in aie2 create context. However, aie destroy context assumes that the context's mailbox channel pointer...
PT-2026-43962
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An out-of-bounds access issue exists in the check xattrs function of the ext4 file system. The bounds check for the next extended attribute xattr entry uses a comparison that allows the...
PT-2026-43924
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the Landlock security module where the LOG SUBDOMAINS OFF setting is not correctly inherited across fork. The hook cred transfer function only copies the Landlock...
PT-2026-43934
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the DAMON core where the damos quota goal-nid value for node memcg used bp and node memcg free bp is not validated before being used in the NODE-DATA macro. This allow...
PT-2026-43928
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A deadlock occurs in the jbd2 journal cancel revoke function due to an incorrect lock ordering folio - buffer. This happens when the filesystem blocksize is smaller than the pagesize,...
PT-2026-43914
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A use-after-free issue exists in the QRTR nameservice driver during the remove process. If a packet arrives after destroy workqueue is called but before sock release, the qrtr ns data...
PT-2026-43872
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A resource leak exists in the xfs alloc buftarg function within the XFS file system. The issue occurs in the error path where the DAX Direct Access device reference is not properly...
PT-2026-43950
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A resource leak occurs during device setup failure in the SPI Serial Peripheral Interface subsystem. Specifically, if the spi setup function fails while registering a device, the...
PT-2026-43916
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the ALSA ctxfi component where the spdif passthru playback get resources function uses atc-pll rate as the Reference Sample Rate RSR for the Master Sample Rate MSR...
PT-2026-43956
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified openSUSE Tumbleweed versions prior to kernel-devel-7.0.11-1.1 Description A flaw exists in the ALSA control component within the snd ctl elem init enum names function. The function advances a pointe...
PT-2026-43948
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A memory corruption issue exists in the Linux kernel crypto acomp component. The function acomp save req incorrectly stores the address of the chain member &req-chain in req-base.data...
PT-2026-43885
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the ALSA USB audio component where the parse uac2 sample rate range function fails to fully terminate parsing when the number of enumerated rates reaches MAX NR RATES...
PT-2026-43908
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified openSUSE Tumbleweed versions prior to kernel-devel-7.0.11-1.1 Description A flaw exists in the greybus gb-beagleplay component where the hdlc append function calls usleep range while the tx producer...
PT-2026-43613
An low privileged remote attacker can exploit an unauthenticated SQL Injection vulnerability in the system tag view due to improper neutralization of special elements in a SQL SELECT command. This can result in a total loss of confidentiality...
PT-2026-43571
The Github Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'repo' shortcode attribute in the 'github' shortcode in all versions up to, and including, 0.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...
PT-2026-43883
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified openSUSE Tumbleweed versions prior to kernel-devel-7.0.11-1.1 Description A NULL pointer dereference issue exists in the remoteproc xlnx component. The system may crash if the receive callback does...
PT-2026-47100
A heap-buffer overflow was found in the way openjpeg2 handled certain PNG format files. An attacker could use this flaw to cause an application crash or in some cases execute arbitrary code with the permission of the user running such an application...
PT-2026-44401
Name of the Vulnerable Software and Affected Versions Notepad++ affected versions not specified Description Multiple issues exist in the software. The config.xml configuration file fails to neutralize special elements when processing the commandLineInterpreter parameter. Additionally, the...
PT-2026-43160
A vulnerability was determined in hemant6488 CodeIgniter-StudentManagementSystem. The affected element is an unknown function of the file /index.php/students/addStudentView of the component Student Management Handler. Executing a manipulation can lead to improper access controls. The attack can b...
PT-2026-43194
A flaw has been found in Totolink CA750-PoE 6.2c.510. This affects the function setWiFiWpsConfig of the file /cgi-bin/cstecgi.cgi of the component Setting Handler. Executing a manipulation of the argument PIN can lead to os command injection. It is possible to launch the attack remotely. The...
PT-2026-43203
Name of the Vulnerable Software and Affected Versions MediaArea MediaInfoLib affected versions not specified Description A heap buffer overflow occurs during the parsing of ID3v2 tags. A heap buffer overflow is a memory corruption issue that happens when a program writes more data to a...
PT-2026-43210
This vulnerability stems from a business logic flaw.Attackers can exploit legitimate application functions in unintended and abnormal ways, deviating from the designer's expectations, to carry out malicious attacks...
PT-2026-43211
Name of the Vulnerable Software and Affected Versions Xibo CMS versions prior to 4.4.2 Description A vulnerability chain involving Stored Cross-Site Scripting XSS and Iframe Sandbox escape exists in the Xibo CMS. Users with DataSet permissions can utilize the Data Connector functionality to craft...
PT-2026-43248
A vulnerability has been found in Totolink N300RH 6.1c.1353 B20190305. Affected is the function setPasswordCfg of the file /cgi-bin/cstecgi.cgi of the component Web Management Interface. Such manipulation of the argument admpass leads to os command injection. The attack can be executed remotely...
PT-2026-43273
Name of the Vulnerable Software and Affected Versions FastNetMon Community Edition versions prior to 1.2.10 Description A stack-based buffer overflow exists in the BGP NLRI Network Layer Reachability Information decoder. The function decode bgp subnet encoding ipv4 raw in src/bgp protocol.cpp rea...
PT-2026-43267
e107 is a content management system CMS. Prior to 2.3.4, a Host Header Injection vulnerability in the password reset page allows attackers to manipulate the Host header to generate password reset links pointing to attacker-controlled domains. This can lead to phishing attacks, account takeover, o...
PT-2026-43370
Name of the Vulnerable Software and Affected Versions IBM HTTP Server versions 8.5 and 9.0 IBM WebSphere Application Server versions 8.5 and 9.0 IBM WebSphere Application Server Liberty versions 8.5 and 9.0 Description IBM Web Server Plug-ins for WebSphere Application Server and WebSphere Liberty...
PT-2026-43345
FACTION is a PenTesting Report Generation and Collaboration Framework. Prior to 1.8.3, Faction is vulnerable to stored cross-site scripting XSS via attachment filenames in remediation verification file preview flows. User-supplied filename values are persisted and then rendered into HTML and...
PT-2026-43337
Name of the Vulnerable Software and Affected Versions NVIDIA Display Driver for Linux affected versions not specified Description A flaw exists in a kernel mode layer handler that allows a user to cause improper permission handling. This issue could lead to denial of service, escalation of...
PT-2026-43326
A vulnerability has been found in sambitraj STUDENT-MANAGEMENT-SYSTEM up to 56ba287f2e9031523ccb4244cb6e3fe530e4e5d5. The affected element is an unknown function of the component Dashboard. Such manipulation leads to improper access controls. The attack may be launched remotely. The exploit has...
PT-2026-43309
Name of the Vulnerable Software and Affected Versions FastNetMon Community Edition versions prior to 1.2.10 Description An integer overflow occurs during packet capture buffer allocation in the allocate buffer function. The software calculates memory size in bytes using 32-bit unsigned integer...
PT-2026-43311
Name of the Vulnerable Software and Affected Versions FastNetMon Community Edition versions prior to 1.2.10 Description A local symlink attack is possible due to predictable file paths in the /tmp directory. The software uses a default statistics file path at '/tmp/fastnetmon.dat'. The print scre...
PT-2026-43383
Missing Authorization vulnerability in bPlugins Tiktok Feed allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Tiktok Feed: from n/a through 1.0.24...
PT-2026-43415
A vulnerability was identified in JeecgBoot up to 3.9.1. The impacted element is an unknown function of the file /sys/comment/add. Such manipulation leads to improper access controls. The attack can be executed remotely. The exploit is publicly available and might be used. Upgrading to version...
PT-2026-43627
Name of the Vulnerable Software and Affected Versions tmp affected versions not specified Description The tmp npm package contains a path traversal issue that allows escaping the intended temporary directory when untrusted data is passed into the prefix, postfix, or dir options. By embedding...
PT-2026-43251
gix-submodule before 0.82.0 incorrectly validates the update field in .gitmodules, allowing attackers to bypass the CommandForbiddenInModulesConfiguration guard when a submodule has been initialized with only partial configuration in .git/config. An attacker can inject arbitrary shell commands vi...
PT-2026-43252
Name of the Vulnerable Software and Affected Versions libyang versions prior to 5.2.6 Description A heap use-after-free write occurs in the lyd parser set data flags function. This happens when the software incorrectly updates metadata list pointers while freeing non-head default metadata entries...