8181 matches found
ROS-20260220-73-0004
A vulnerability in the hisiaccvfiopci driver of Linux kernel operating systems is related to insufficient input validation when processing DMA Direct Memory Access addresses. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260220-73-0002
A vulnerability in the skbsendsock function of the BPF component of the Linux kernel is related to incorrect resource locking. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260216-73-0033
A vulnerability in the Networking component of the Oracle Java SE software platform, Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines is related to insufficient input validation. Exploitation of the vulnerability could allow an attacker acting remotely to gain access ...
ROS-20260216-73-0039
A vulnerability in the Security component of the Oracle Java SE software platform, Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines is associated with uncontrolled resource consumption. Exploitation of the vulnerability could allow an attacker acting remotely to cause...
ROS-20260216-73-0034
A vulnerability in the Networking component of the Oracle Java SE software platform, Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines is related to insufficient input validation. Exploitation of the vulnerability could allow an attacker acting remotely to gain access ...
ROS-20260216-73-0042
A vulnerability in the Security component of the Oracle Java SE software platform, Oracle GraalVM for JDK and Oracle GraalVM Enterprise Edition virtual machines is associated with uncontrolled resource consumption. Exploitation of the vulnerability could allow an attacker acting remotely to cause...
ROS-20260209-73-0027
A vulnerability in the encoding/asn1 component of the Go programming language is related to a lack of memory release after an effective lifetime. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...
ROS-20260209-73-0041
A vulnerability in the Agent component of the Zabbix IT infrastructure monitoring system is related to the use of an insecure search path. Exploitation of the vulnerability could allow an attacker to gain write access to arbitrary system files in the /home/cecuser directory...
ROS-20260209-73-0036
Vulnerability in pgbouncer related to the use of an insecure search path. Exploitation of the vulnerability could allow an attacker to escalate their privileges...
ROS-20260205-73-0033
A vulnerability in the currentpasswordstore function of the dell-wmi-sysman driver of the Linux kernel is related to buffer copying without input validation. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260205-73-0016
A vulnerability in the drivers/media/usb/cx231xx/cx231xx-417.c module of the Linux kernel is related to incorrect management of resource identifiers. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260202-73-0050
A vulnerability in the chip.c component of the Linux operating system kernel is related to a flaw in the data type conversion mechanism. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260202-73-0053
A vulnerability in the p9clientwrite function of the 9p/net component of the Linux kernel is related to pointer dereferencing errors. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260202-73-0043
A vulnerability in the dispc.c component of the Linux operating system kernel is related to memory initialization errors. Exploitation of the vulnerability could allow an attacker to gain access to sensitive data, compromise its integrity, and cause denial of service...
ROS-20260129-73-0075
A vulnerability in the HTTP/2 protocol implementation is related to the ability to generate a stream of requests within an already established network connection, without opening new network connections and without acknowledging the receipt of packets. Exploitation of the vulnerability could allo...
ROS-20260129-73-0004
A vulnerability in the Samba networking software package is related to authorization errors. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to sensitive data...
ROS-20260129-73-0042
A vulnerability in the libpq library of the PostgreSQL database management system is related to integer overflow. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...
ROS-20260129-73-0063
The vulnerability in the Go programming language is related to a flaw in the authorization procedure. Exploitation of the vulnerability allows an attacker acting remotely to affect the confidentiality and integrity of protected information...
ROS-20260129-73-0046
Vulnerability in nextcloud related to flaws in access to personal information. Exploitation of the vulnerability could allow a remote attacker to gain unauthorized access to protected information...
ROS-20260126-73-0056
A vulnerability in the krbauthenticate function of the fs/smb/server/smb2pdu.c module of the Linux operating system kernel is related to memory usage after it has been freed. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260122-73-0004
Vulnerability in python-sentry-sdk related to a flaw in the error reporting mechanism. Exploitation of the vulnerability may allow a remote intruder to gain unauthorized access to protected information...
ROS-20260122-73-0006
Vulnerability in python-sentry-sdk related to bypassing the authentication procedure by using an alternate path or channel. Exploitation of the vulnerability could allow an attacker acting remotely to bypass existing security restrictions...
ROS-20260120-7366
A vulnerability in the radeonvcecsparse function of the Linux kernel is related to the use of an uninitialized pointer. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260120-7324
A vulnerability in the iwlparsetlvfirmware function drivers/net/wireless/intel/iwlwifi/iwl-drv.c of the Linux operating system kernel is related to an operation exceeding buffer boundaries in memory. Exploiting the vulnerability could allow an attacker to cause a denial of service...
ROS-20260120-7319
Vulnerability in kernel-lt related to incorrect resource locking. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260119-7355
A vulnerability in the ovsvportcmdfillinfo function of the net/openvswitch/datapath.c module of the Open vSwitch router support module of the Linux kernel is related to the reuse of previously freed memory. Exploitation of the vulnerability may allow an attacker to affect confidentiality, integri...
ROS-20260119-7367
A vulnerability in the ax25setsockopt function of the net/ax25/afax25.c component of the Linux operating system kernel is related to improper memory freeing before deleting the last reference. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260119-7309
A vulnerability in the net/sched/schsfq.c component of the Linux operating system kernel is related to unchecked array indexing. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260119-7325
A vulnerability in the padatareorder function of the kernel/padata.c module of the Linux kernel is related to the reuse of previously freed memory. Exploitation of the vulnerability may allow an attacker to affect confidentiality, integrity and availability of protected information...
ROS-20260119-7370
A vulnerability in the tegraemcfindnodebyramcode function of the drivers/memory/tegra/tegra20-emc.c component of the Linux kernel is related to the use of memory after it has been freed. Exploitation of the vulnerability could allow an attacker to gain access to sensitive data, compromise its...
ROS-20260119-7373
A vulnerability in the devmrequestmemregion function of the pcie-rcar-ep.c component of the Linux operating system kernel is related to a buffer overflow on the stack. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260114-7302
A vulnerability in the rfcommsockalloc function of the net/bluetooth/rfcomm/sock.c module of the Linux kernel is related to the reuse of previously freed memory. Exploitation of the vulnerability may allow an intruder to affect confidentiality, integrity and availability of protected information...
ROS-20260113-7381
A vulnerability in the drivers/nvme/host/tcp.c component of the Linux operating system kernel is related to simultaneous execution using a shared resource with improper synchronization. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260113-7347
A vulnerability in the linkdestruct function in the drivers/gpu/drm/amd/display/dc/link/linkfactory.c module of the amdgpu driver of the Linux kernel is related to the re-release of previously freed memory. Exploitation of the vulnerability could allow an attacker to affect the confidentiality,...
ROS-20260113-7360
A vulnerability in the drivers/gpu/drm/amd/display component of the Linux operating system kernel is related to synchronization errors. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20260112-7315
A vulnerability in the fecsetmacaddress function of the drivers/net/ethernet/freescale/fecmain.c module of the Linux operating system kernel is related to insufficient resource locking. Exploitation of the vulnerability could allow an attacker to cause a denial of service...
ROS-20251226-7307
A vulnerability in Mozilla Firefox, Firefox ESR and Thunderbird email client is related to the use of insecure mechanisms for processing authentication data in the operating system memory. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...
ROS-20251217-7315
A vulnerability in the V8 JavaScript script handler of Google Chrome browser is related to data type mixing errors. Exploitation of the vulnerability could allow a remote attacker to affect the confidentiality, integrity and availability of protected information using a specially crafted HTML pag...
ROS-20251203-14
MongoDB database management system vulnerability is related to DDL operation execution during query execution. query execution. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...
ROS-20251203-19
Vulnerability in the Ruby programming language library that implements the MQTT protocol Rubygem MQTT is related to the lack of hostname validation. Exploitation of the vulnerability could allow A remote attacker to perform a man-in-the-middle attack...
ROS-20251201-02
A vulnerability in the vfsinode.c component of the Linux kernel is related to the use of an uninitialized resource. of an uninitialized resource. Exploitation of the vulnerability could allow an attacker to cause a denial of denial of service A vulnerability in the llcpsock.c component of the Lin...
ROS-20251128-02
A vulnerability in OpenBao's secret management and encryption system is related to the fact that OpenBao's audit logs incorrectly edited fields when the corresponding subsystems sent byte response parameters rather than strings. strings. Exploitation of the vulnerability could allow an attacker...
ROS-20251125-04
A vulnerability in OpenBao's secret management and encryption system is related to the fact that the software stores sensitive information in log files. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to confidential information...
ROS-20251125-12
Vulnerability of QuerySet and Q objects of Django web application development platform is related to failure to take measures to protect the SQL query structure when processing an argument with the connector keyword. Exploitation of the vulnerability could allow an attacker acting remotely to...
ROS-20251124-05
The Redis database management system DBMS vulnerability is related to the use of memory after its release. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary code...
ROS-20251117-08
Vulnerability of the ksmbdexpiresession function in the fs/smb/server/mgmt/usersession.c module of the in-core CIFS/SMB3 ksmbd server kernel of the Linux operating system is related to reuse of previously of previously freed memory. Exploitation of the vulnerability could allow an attacker to...
ROS-20251117-04
A vulnerability in the LXD container and lightweight virtual machine management system is related to redundant API data output. Exploitation of the vulnerability could allow an attacker acting remotely to gain access to potentially sensitive information The vulnerability in the LXD container and...
ROS-20251021-01
The vulnerability of the parisc component of the Linux kernel is related to incorrect error handling in the fixupexception function in arch/parisc/mm/fault.c, as well as in emulateldh, emulateldw, emulateldd, emulatesth, emulatestw, and emulatestd in arch/parisc/kernel/unaligned.c. Exploitation o...
ROS-20251016-04
Vulnerability of X509VERIFYPARAMadd0policy function of OpenSSL library is related to errors in the procedure of of certificate authentication. Exploitation of the vulnerability could allow an attacker acting remotely to perform a "man-in-the-middle" type of attack. remotely to perform a...
ROS-20250925-04
Vulnerability of TarFile.extractall and TarFile.extract functions of tarfile module of Python programming language interpreter CPython is related to incorrect restriction of path name of the directory with restricted directory. Python programming language interpreter CPython functions...