Lucene search
K
SusecveMost viewed

59854 matches found

SUSE CVE
SUSE CVE
•added 2023/02/15 3:36 a.m.•9 views

SUSE CVE-2021-44532

Node.js 12.22.9, 14.18.3, 16.13.2, and 17.3.1 converts SANs Subject Alternative Names to a string format. It uses this string to check peer certificates against hostnames when validating connections. The string format was subject to an injection vulnerability when name constraints were used withi...

5.9CVSS7AI score0.10364EPSS
Exploits1References11
SUSE CVE
SUSE CVE
•added 2023/02/15 3:36 a.m.•9 views

SUSE CVE-2021-45105

Apache Log4j2 versions 2.0-alpha1 through 2.16.0 excluding 2.12.3 and 2.3.1 did not protect from uncontrolled recursion from self-referential lookups. This allows an attacker with control over Thread Context Map data to cause a denial of service when a crafted string is interpreted. This issue wa...

7.5CVSS7.4AI score0.99999EPSS
Exploits20References6
SUSE CVE
SUSE CVE
•added 2023/02/15 3:33 a.m.•9 views

SUSE CVE-2022-1974

A use-after-free flaw was found in the Linux kernel's NFC core functionality due to a race condition between kobject creation and delete. This vulnerability allows a local attacker with CAPNETADMIN privilege to leak kernel information...

6.8CVSS5.8AI score0.00142EPSS
Exploits0References32
SUSE CVE
SUSE CVE
•added 2023/02/15 3:32 a.m.•9 views

SUSE CVE-2022-2255

A vulnerability was found in modwsgi. The X-Client-IP header is not removed from a request from an untrusted proxy, allowing an attacker to pass the X-Client-IP header to the target WSGI application because the condition to remove it is missing...

5.6CVSS6.8AI score0.0069EPSS
Exploits1References7
SUSE CVE
SUSE CVE
•added 2023/02/15 3:30 a.m.•9 views

SUSE CVE-2022-4382

A use-after-free flaw caused by a race among the superblock operations in the gadgetfs Linux driver was found. It could be triggered by yanking out a device that is running the gadgetfs side...

7.4CVSS6.8AI score0.00484EPSS
Exploits1References12
SUSE CVE
SUSE CVE
•added 2023/02/15 3:30 a.m.•9 views

SUSE CVE-2022-21256

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Group Replication Plugin. Supported versions that are affected are 8.0.27 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

4.9CVSS5AI score0.02031EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2023/02/15 3:29 a.m.•9 views

SUSE CVE-2022-21289

Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: General. Supported versions that are affected are 7.4.34 and prior, 7.5.24 and prior, 7.6.20 and prior and 8.0.27 and prior. Difficult to exploit vulnerability allows high privileged attacker with access to the physica...

6.3CVSS5.8AI score0.02686EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2023/02/15 3:29 a.m.•9 views

SUSE CVE-2022-21288

Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: General. Supported versions that are affected are 7.4.34 and prior, 7.5.24 and prior, 7.6.20 and prior and 8.0.27 and prior. Difficult to exploit vulnerability allows high privileged attacker with access to the physica...

6.3CVSS5.8AI score0.02686EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2023/02/15 3:29 a.m.•9 views

SUSE CVE-2022-21334

Vulnerability in the MySQL Cluster product of Oracle MySQL component: Cluster: General. Supported versions that are affected are 8.0.27 and prior. Difficult to exploit vulnerability allows high privileged attacker with access to the physical communication segment attached to the hardware where th...

6.3CVSS5.8AI score0.02795EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2023/02/15 3:29 a.m.•9 views

SUSE CVE-2022-21436

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.28 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

4.9CVSS5.6AI score0.01252EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2023/02/15 3:28 a.m.•9 views

SUSE CVE-2022-22965

A Spring MVC or Spring WebFlux application running on JDK 9+ may be vulnerable to remote code execution RCE via data binding. The specific exploit requires the application to run on Tomcat as a WAR deployment. If the application is deployed as a Spring Boot executable jar, i.e. the default, it is...

9.8CVSS8.6AI score0.99677EPSS
Exploits102References3
SUSE CVE
SUSE CVE
•added 2023/02/15 3:26 a.m.•9 views

SUSE CVE-2022-27381

An issue in the component Field::setdefault of MariaDB Server v10.6 and below was discovered to allow attackers to cause a Denial of Service DoS via specially crafted SQL statements...

7.1CVSS8.5AI score0.02159EPSS
Exploits1References12
SUSE CVE
SUSE CVE
•added 2023/02/15 3:26 a.m.•9 views

SUSE CVE-2022-28390

emsusbstartxmit in drivers/net/can/usb/emsusb.c in the Linux kernel through 5.17.1 has a double free...

7CVSS6.6AI score0.0035EPSS
Exploits0References42
SUSE CVE
SUSE CVE
•added 2023/02/15 3:26 a.m.•9 views

SUSE CVE-2022-29217

PyJWT is a Python implementation of RFC 7519. PyJWT supports multiple different JWT signing algorithms. With JWT, an attacker submitting the JWT token can choose the used signing algorithm. The PyJWT library requires that the application chooses what algorithms are supported. The application can...

7.5CVSS9.4AI score0.012EPSS
Exploits0References29
SUSE CVE
SUSE CVE
•added 2023/02/15 3:22 a.m.•9 views

SUSE CVE-2022-47938

An issue was discovered in ksmbd in the Linux kernel 5.15 through 5.19 before 5.19.2. fs/ksmbd/smb2misc.c has an out-of-bounds read and OOPS for SMB2TREECONNECT...

6.5CVSS6.8AI score0.58461EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2 days ago•8 views

SUSE CVE-2026-53361

In the Linux kernel, the following vulnerability has been resolved: afunix: Set gcinprogress to true in unixgc. Igor Ushakov reported that unixgc could run with gcinprogress being false if the work is scheduled while running: Thread 1 Thread 2 Thread 3 -------- -------- -------- unixschedulegc...

5.8AI score0.00171EPSS
Exploits0References4
SUSE CVE
SUSE CVE
•added 3 days ago•8 views

SUSE CVE-2026-38969

ruby webrick through v1.9.2 WEBrick reparses trailer Content-Length into canonical request state, enabling request smuggling...

5.9AI score0.00162EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 3 days ago•8 views

SUSE CVE-2026-39883

OpenTelemetry-Go is the Go implementation of OpenTelemetry. From 1.15.0 to 1.42.0, the fix for CVE-2026-24051 changed the Darwin ioreg command to use an absolute path but left the BSD kenv command using a bare name, allowing the same PATH hijacking attack on BSD and Solaris platforms. This...

7CVSS7.1AI score0.0022EPSS
Exploits1References2
SUSE CVE
SUSE CVE
•added 4 days ago•8 views

SUSE CVE-2022-46294

Multiple out-of-bounds write vulnerabilities exist in the translationVectors parsing functionality in multiple supported formats of Open Babel 3.1.1 and master commit 530dbfa3. A specially-crafted malformed file can lead to arbitrary code execution. An attacker can provide a malicious file to...

7.8CVSS7.5AI score0.00863EPSS
Exploits1References2
SUSE CVE
SUSE CVE
•added 4 days ago•8 views

SUSE CVE-2026-20244

A vulnerability in the DMG file format parser of ClamAV could allow an unauthenticated, remote attacker to cause a DoS condition, or possibly other expanded impacts, resulting from memory corruption on an affected device. This vulnerability is due to improper boundary checks for content in DMG...

7.5CVSS7.2AI score0.00389EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 4 days ago•8 views

SUSE CVE-2026-53354

In the Linux kernel, the following vulnerability has been resolved: arm64: errata: Mitigate TLBI errata on various Arm CPUs A number of CPUs developed by Arm suffer from errata whereby a broadcast TLBI;DSB sequence may complete before the global observation of writes which are translated by an...

7CVSS5.8AI score0.00182EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/30 1:50 a.m.•8 views

SUSE CVE-2026-8461

An out-of-bounds write vulnerability in FFmpeg's libavcodec library, specifically in the MagicYUV decoder, allows denial-of-service and, in some cases, can be exploited for remote code execution. This vulnerability is associated with the file libavcodec/magicyuv.C. This issue affects FFmpeg befor...

8.8CVSS6AI score0.00477EPSS
Exploits3References3
SUSE CVE
SUSE CVE
•added 2026/06/30 1:49 a.m.•8 views

SUSE CVE-2026-12245

NSD from version 4.13.0 has a heap use-after-free bug in logging errors on TLS connections, causing a crash of the server process, which can be triggered trivially by sending a DNS query over a DoT connection, and closing the connection without reading the response...

8.7CVSS5.8AI score0.00274EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/30 1:49 a.m.•8 views

SUSE CVE-2026-12490

When a provide-xfr is given with a tls-auth-name, a secondary requesting a transfer should provide a client certificate with that name. However, no client certificate is needed when the request comes in over TLS over the regular tls-port and not the tls-auth-port or over over TCP over the regular...

8.2CVSS5.8AI score0.00139EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/30 1:49 a.m.•8 views

SUSE CVE-2026-13588

A vulnerability was determined in seladb PcapPlusPlus 25.05. The impacted element is the function pcpp::SSLClientHelloMessage::getHandshakeVersion of the file Packet++/src/SSLHandshake.cpp of the component TLS Hello Handler. Executing a manipulation of the argument handshakeVersion can lead to...

6.3CVSS6.1AI score0.0038EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/30 1:44 a.m.•8 views

SUSE CVE-2026-47778

Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to 1.35.11, 1.36.7, 1.37.3, and 1.38.1, a structural flaw was identified in DefaultCertValidator::verifySubjectAltName where the extracted DNS SAN string is cast to a C-style string using .cstr before bei...

4.4CVSS5.8AI score0.00212EPSS
Exploits1References2
SUSE CVE
SUSE CVE
•added 2026/06/30 1:44 a.m.•8 views

SUSE CVE-2026-48751

unknown...

5.7AI score
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/30 1:44 a.m.•8 views

SUSE CVE-2026-48755

unknown...

5.7AI score
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/30 1:44 a.m.•8 views

SUSE CVE-2026-48756

unknown...

5.7AI score0.00025EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/30 1:44 a.m.•8 views

SUSE CVE-2026-48804

unknown...

5.7AI score
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/30 1:43 a.m.•8 views

SUSE CVE-2026-53087

In the Linux kernel, the following vulnerability has been resolved: net: bcmgenet: fix leaking freebds While reclaiming the tx queue we fast forward the write pointer to drop any data in flight. These dropped frames are not added back to the pool of free bds. We also need to tell the netdev that ...

7.5CVSS5.8AI score0.00376EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/30 1:43 a.m.•8 views

SUSE CVE-2026-53090

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix ldabs,ind failure path analysis in subprogs Usage of ldabs,ind instructions got extended into subprogs some time ago via commit 09b28d76eac4 "bpf: Add abnormal return checks.". These are only allowed in subprograms when...

7.8CVSS5.9AI score0.00123EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/30 1:43 a.m.•8 views

SUSE CVE-2026-53092

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix linked reg delta tracking when srcreg == dstreg Consider the case of rX += rX where srcreg and dstreg are pointers to the same bpfregstate in adjustregminmaxvals. The latter first modifies the dstreg in-place, and later ...

7.8CVSS5.5AI score0.00123EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/30 1:43 a.m.•8 views

SUSE CVE-2026-53108

In the Linux kernel, the following vulnerability has been resolved: powerpc/64s: Fix unmap race with PMD migration entries The following race is possible with migration swap entries or device-private THP entries. e.g. when movepages is called on a PMD THP page, then there maybe an intermediate...

5.8AI score0.00151EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/30 1:42 a.m.•8 views

SUSE CVE-2026-53325

In the Linux kernel, the following vulnerability has been resolved: agp/amd64: Fix broken error propagation in agpamd64probe A NULL pointer dereference was observed in the AMD64 AGP driver when running in a virtualized environment e.g. qemu/kvm without a physical AMD northbridge. The crash occurs...

4.4CVSS5.8AI score0.00203EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/30 1:42 a.m.•8 views

SUSE CVE-2026-58050

libssh2 through 1.11.1 reads an attacker-controlled 32-bit attribute count from a publickey-subsystem response and uses it in the allocation numattrs sizeoflibssh2publickeyattribute without bounds checking, so on 32-bit platforms the multiplication overflows to an undersized buffer. A malicious S...

8.3CVSS6AI score0.00333EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/30 1:42 a.m.•8 views

SUSE CVE-2026-58055

nghttp2's nghttpx proxy through 1.69.0 forwards an HTTP/1.1 Upgrade request that also carries a Content-Length header and body onto reusable keep-alive backend connections, re-adding the Upgrade and Connection headers while passing Content-Length verbatim. A backend that resolves the resulting...

5.4CVSS5.8AI score0.00202EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/28 1:9 a.m.•8 views

SUSE CVE-2026-53279

In the Linux kernel, the following vulnerability has been resolved: drm/gma500/oaktraillvds: fix hang on init failure The LVDS init code looks up an I2C adapter using i2cgetadapter and tries to read the EDID before falling back to allocating and registering its own adapter. The error handling doe...

5.8AI score0.00172EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/28 1:9 a.m.•8 views

SUSE CVE-2026-53280

In the Linux kernel, the following vulnerability has been resolved: iommu: Fix NULL group-domain dereference in pcidevresetiommudone Local sashiko review pointed it out that group-domain could be NULL when a default domain fails to allocate during the first probe, which can crash at...

5.8AI score0.00155EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/28 1:9 a.m.•8 views

SUSE CVE-2026-53283

In the Linux kernel, the following vulnerability has been resolved: iommu/amd: Bounds-check devid in rlookupamdiommu iommudeviceregister walks every device on the PCI bus via busforeachdev and calls amdiommuprobedevice for each. The inlined checkdevice path computes the device's sbdf, calls...

5.8AI score0.00166EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/28 1:9 a.m.•8 views

SUSE CVE-2026-53288

In the Linux kernel, the following vulnerability has been resolved: arm64: Reserve an extra page for early kernel mapping The final part of data, end segment may overflow into the next page of initpgend1 which is the gap page before earlyinitstack2: 1 crasharm64v9.0.1 vtop ffffffed00601000 VIRTUA...

5.9AI score0.00168EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/28 1:9 a.m.•8 views

SUSE CVE-2026-53292

In the Linux kernel, the following vulnerability has been resolved: net: phonet: do not BUGON in pnsocketautobind on failed bind syzbot reported a kernel BUG triggered from pnsocketsendmsg via pnsocketautobind: kernel BUG at net/phonet/socket.c:213! RIP: 0010:pnsocketautobind...

5.8AI score0.00155EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/28 1:9 a.m.•8 views

SUSE CVE-2026-53293

In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix AMDGPUINFOREADMMRREG There were multiple issues in that code. First of all the order between the reset semaphore and the mmlock was wrong e.g. copytouser was called while holding the lock. Then we allocated memory...

5.8AI score0.00168EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/28 1:9 a.m.•8 views

SUSE CVE-2026-53299

In the Linux kernel, the following vulnerability has been resolved: net: airoha: Move ndesc initialization at end of airohaqdmainittx If queue entry list allocation fails in airohaqdmainittxqueue routine, airohaqdmacleanuptxqueue will trigger a NULL pointer dereference accessing the queue entry...

5.8AI score0.00166EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/28 1:9 a.m.•8 views

SUSE CVE-2026-53301

In the Linux kernel, the following vulnerability has been resolved: reset: amlogic: t7: Fix null reset ops Fix missing reset ops causing kernel null pointer dereference. This SOC's reset is currently not used yet...

5.8AI score0.00166EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/28 1:8 a.m.•8 views

SUSE CVE-2026-53309

In the Linux kernel, the following vulnerability has been resolved: ocfs2/dlm: fix off-by-one in dlmmatchregions region comparison The local-vs-remote region comparison loop uses '=' instead of '', causing it to read one entry past the valid range of qrregions. The other loops in the same functio...

9.8CVSS5.8AI score0.00404EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/28 1:8 a.m.•8 views

SUSE CVE-2026-53312

In the Linux kernel, the following vulnerability has been resolved: iommu/riscv: Remove overflows on the invalidation path Since RISC-V supports a sign extended page table it should support a gather-end of ULONGMAX, but if this happens it will infinite loop because of the overflow. Also avoid...

5.9AI score0.00154EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/28 1:8 a.m.•8 views

SUSE CVE-2026-53318

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7925: prevent NULL pointer dereference in mt7925txcheckaggr Move the NULL check for 'sta' before dereferencing it to prevent a possible crash...

5.8AI score0.00157EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/28 1:8 a.m.•8 views

SUSE CVE-2026-53320

In the Linux kernel, the following vulnerability has been resolved: nilfs2: reject zero bdoblocknr in nilfsioctlmarkblocksdirty nilfsioctlmarkblocksdirty uses bdoblocknr to detect dead blocks by comparing it with the current block number bdblocknr. If they differ, the block is considered dead and...

5.8AI score0.00173EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/06/27 2:5 a.m.•8 views

SUSE CVE-2026-11625

Bytes::Random::Secure versions through 0.29 for Perl share internal state across forked processes. When an object is initialised before forking, or when the functional interface is used, then the internal state for the PRNG is shared across processes and identical random streams will be produced...

7.5CVSS5.7AI score0.00309EPSS
Exploits0References3
Total number of security vulnerabilities5000