Lucene search
K
SusecveRecent

59854 matches found

SUSE CVE
SUSE CVE
•added 2026/01/17 12:26 a.m.•4 views

SUSE CVE-2025-68954

Pterodactyl is a free, open-source game server management panel. Versions 1.11.11 and below do not revoke active SFTP connections when a user is removed from a server instance or has their permissions changes with respect to file access over SFTP. This allows a user that was already connected to...

7.5CVSS6.8AI score0.00218EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 2026/01/17 12:26 a.m.•4 views

SUSE CVE-2025-69413

In Gitea before 1.25.2, /api/v1/user has different responses for failed authentication depending on whether a username exists...

5.3CVSS7.2AI score0.00356EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 2026/01/17 12:26 a.m.•4 views

SUSE CVE-2025-71103

In the Linux kernel, the following vulnerability has been resolved: drm/msm: adreno: fix deferencing ifpcreglist when not declared On plaforms with an a7xx GPU not supporting IFPC, the ifpcreglist if still deferenced in a7xxpatchpwrupreglist which causes a kernel crash: Unable to handle kernel NU...

5.5CVSS6.4AI score0.00107EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/01/17 12:26 a.m.•26 views

SUSE CVE-2025-71109

In the Linux kernel, the following vulnerability has been resolved: MIPS: ftrace: Fix memory corruption when kernel is located beyond 32 bits Since commit e424054000878 "MIPS: Tracing: Reduce the overhead of dynamic Function Tracer", the macro UASMiLAmostly has been used, and this macro can...

5.5CVSS7AI score0.00171EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/01/17 12:26 a.m.•9 views

SUSE CVE-2025-71110

In the Linux kernel, the following vulnerability has been resolved: mm/slub: reset KASAN tag in deferfree before accessing freed memory When CONFIGSLUBTINY is enabled, kfreenolock calls kasanslabfree before deferfree. On ARM64 with MTE Memory Tagging Extension, kasanslabfree poisons the memory an...

7.8CVSS6.6AI score0.0012EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/01/17 12:26 a.m.•5 views

SUSE CVE-2025-71111

In the Linux kernel, the following vulnerability has been resolved: hwmon: w83791d Convert macros to functions to avoid TOCTOU The macro FANFROMREG evaluates its arguments multiple times. When used in lockless contexts involving shared driver data, this leads to Time-of-Check to Time-of-Use TOCTO...

5.5CVSS6.5AI score0.00089EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2026/01/17 12:25 a.m.•7 views

SUSE CVE-2025-71112

In the Linux kernel, the following vulnerability has been resolved: net: hns3: add VLAN id validation before using Currently, the VLAN id may be used without validation when receive a VLAN configuration mailbox from VF. The length of vlandelfailbmap is BITSTOLONGSVLANNVID. It may cause...

7CVSS6.4AI score0.00126EPSS
Exploits0References29
SUSE CVE
SUSE CVE
•added 2026/01/17 12:25 a.m.•7 views

SUSE CVE-2025-71118

In the Linux kernel, the following vulnerability has been resolved: ACPICA: Avoid walking the Namespace if startnode is NULL Although commit 0c9992315e73 "ACPICA: Avoid walking the ACPI Namespace if it is not there" fixed the situation when both startnode and acpigblrootnode are NULL, the Linux...

5.5CVSS6.4AI score0.00123EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2026/01/17 12:25 a.m.•5 views

SUSE CVE-2025-71120

In the Linux kernel, the following vulnerability has been resolved: SUNRPC: svcauthgss: avoid NULL deref on zero length gsstoken in gssreadproxyverf A zero length gsstoken results in pages == 0 and intoken-pages0 is NULL. The code unconditionally evaluates pageaddressintoken-pages0 for the initia...

7.5CVSS6.7AI score0.0016EPSS
Exploits0References125
SUSE CVE
SUSE CVE
•added 2026/01/17 12:25 a.m.•11 views

SUSE CVE-2025-71125

In the Linux kernel, the following vulnerability has been resolved: tracing: Do not register unsupported perf events Synthetic events currently do not have a function to register perf events. This leads to calling the tracepoint register functions with a NULL function pointer which triggers:...

3.3CVSS6.7AI score0.00136EPSS
Exploits0References15
SUSE CVE
SUSE CVE
•added 2026/01/17 12:25 a.m.•4 views

SUSE CVE-2025-71131

In the Linux kernel, the following vulnerability has been resolved: crypto: seqiv - Do not use req-iv after cryptoaeadencrypt As soon as cryptoaeadencrypt is called, the underlying request may be freed by an asynchronous completion. Thus dereferencing req-iv after it returns is invalid. Instead o...

5.5CVSS6.5AI score0.00114EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2026/01/17 12:25 a.m.•6 views

SUSE CVE-2025-71134

In the Linux kernel, the following vulnerability has been resolved: mm/pagealloc: change all pageblocks migrate type on coalescing When a page is freed it coalesces with a buddy into a higher order page while possible. When the buddy page migrate type differs, it is expected to be updated to matc...

5.5CVSS6.5AI score0.00115EPSS
Exploits0References7
SUSE CVE
SUSE CVE
•added 2026/01/17 12:25 a.m.•5 views

SUSE CVE-2025-71135

In the Linux kernel, the following vulnerability has been resolved: md/raid5: fix possible null-pointer dereferences in raid5storegroupthreadcnt The variable mddev-private is first assigned to conf and then checked: conf = mddev-private; if !conf ... If conf is NULL, then mddev-private is also...

5.5CVSS6.6AI score0.0015EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2026/01/17 12:25 a.m.•6 views

SUSE CVE-2025-71136

In the Linux kernel, the following vulnerability has been resolved: media: adv7842: Avoid possible out-of-bounds array accesses in adv7842cplogstatus It's possible for cpread and hdmiread to return -EIO. Those values are further used as indexes for accessing arrays. Fix that by checking return...

5.5CVSS6.4AI score0.00117EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2026/01/17 12:25 a.m.•4 views

SUSE CVE-2025-71137

In the Linux kernel, the following vulnerability has been resolved: octeontx2-pf: fix "UBSAN: shift-out-of-bounds error" This patch ensures that the RX ring size rxpending is not set below the permitted length. This avoids UBSAN shift-out-of-bounds errors when users passes small or zero ring size...

5.5CVSS6.6AI score0.00157EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2026/01/17 12:25 a.m.•8 views

SUSE CVE-2025-71138

In the Linux kernel, the following vulnerability has been resolved: drm/msm/dpu: Add missing NULL pointer check for pingpong interface It is checked almost always in dpuencoderphyswbsetupctl, but in a single place the check is missing. Also use convenient locals instead of physenc- where availabl...

5.5CVSS6.5AI score0.00116EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2026/01/17 12:25 a.m.•4 views

SUSE CVE-2025-71144

In the Linux kernel, the following vulnerability has been resolved: mptcp: ensure context reset on disconnect After the blamed commit below, if the MPC subflow is already in TCPCLOSE status or has fallback to TCP at mptcpdisconnect time, mptcpdofastclose skips setting the sendfastclose flag and t...

5.5CVSS6.5AI score0.00116EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/01/17 12:25 a.m.•4 views

SUSE CVE-2026-0650

OpenFlagr versions prior to and including 1.1.18 contain an authentication bypass vulnerability in the HTTP middleware. Due to improper handling of path normalization in the whitelist logic, crafted requests can bypass authentication and access protected API endpoints without valid credentials...

9.3CVSS7.1AI score0.00439EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 2026/01/17 12:25 a.m.•3 views

SUSE CVE-2026-0858

Versions of the package net.sourceforge.plantuml:plantuml before 1.2026.0 are vulnerable to Stored XSS due to insufficient sanitization of interactive attributes in GraphViz diagrams. As a result, a crafted PlantUML diagram can inject malicious JavaScript into generated SVG output, leading to...

6.1CVSS6.3AI score0.00303EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/01/17 12:25 a.m.•5 views

SUSE CVE-2026-0915

Calling getnetbyaddr or getnetbyaddrr with a configured nsswitch.conf that specifies the library's DNS backend for networks and queries for a zero-valued network in the GNU C Library version 2.0 to version 2.42 can leak stack contents to the configured DNS resolver...

5.3CVSS6.9AI score0.00564EPSS
Exploits0References14
SUSE CVE
SUSE CVE
•added 2026/01/17 12:25 a.m.•5 views

SUSE CVE-2026-21483

listmonk is a standalone, self-hosted, newsletter and mailing list manager. Prior to version 6.0.0, lower-privileged user with campaign management permissions can inject malicious JavaScript into campaigns or templates. When a higher-privileged user Super Admin views or previews this content, the...

6.4CVSS6.2AI score0.00198EPSS
Exploits1References2
SUSE CVE
SUSE CVE
•added 2026/01/17 12:25 a.m.•2 views

SUSE CVE-2026-21859

Mailpit is an email testing tool and API for developers. Versions 1.28.0 and below have a Server-Side Request Forgery SSRF vulnerability in the /proxy endpoint, allowing attackers to make requests to internal network resources. The /proxy endpoint validates http:// and https:// schemes, but it do...

5.8CVSS6.8AI score0.00755EPSS
Exploits2References2
SUSE CVE
SUSE CVE
•added 2026/01/17 12:25 a.m.•6 views

SUSE CVE-2026-21885

Miniflux 2 is an open source feed reader. Prior to version 2.2.16, Miniflux's media proxy endpoint GET /proxy/encodedDigest/encodedURL can be abused to perform Server-Side Request Forgery SSRF. An authenticated user can cause Miniflux to generate a signed proxy URL for attacker-chosen media URLs...

6.5CVSS6.8AI score0.00258EPSS
Exploits1References2
SUSE CVE
SUSE CVE
•added 2026/01/17 12:25 a.m.•4 views

SUSE CVE-2026-22036

Undici is an HTTP/1.1 client for Node.js. Prior to 7.18.0 and 6.23.0, the number of links in the decompression chain is unbounded and the default maxHeaderSize allows a malicious server to insert thousands compression steps leading to high CPU usage and excessive memory allocation. This...

3.7CVSS6.8AI score0.00433EPSS
Exploits0References8
SUSE CVE
SUSE CVE
•added 2026/01/17 12:25 a.m.•4 views

SUSE CVE-2026-22045

Traefik is an HTTP reverse proxy and load balancer. Prior to 2.11.35 and 3.6.7, there is a potential vulnerability in Traefik ACME TLS certificates' automatic generation: the ACME TLS-ALPN fast path can allow unauthenticated clients to tie up go routines and file descriptors indefinitely when the...

7.5CVSS6.8AI score0.00321EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/01/17 12:24 a.m.•4 views

SUSE CVE-2026-22253

Soft Serve is a self-hostable Git server for the command line. Prior to version 0.11.2, an authorization bypass in the LFS lock deletion endpoint allows any authenticated user with repository write access to delete locks owned by other users by setting the force flag. The vulnerable code path...

5.4CVSS7AI score0.00273EPSS
Exploits1References2
SUSE CVE
SUSE CVE
•added 2026/01/17 12:24 a.m.•4 views

SUSE CVE-2026-22687

WeKnora is an LLM-powered framework designed for deep document understanding and semantic retrieval. Prior to version 0.2.5, after WeKnora enables the Agent service, it allows users to call the database query tool. Due to insufficient backend validation, an attacker can use prompt-based bypass...

9.8CVSS6.6AI score0.00353EPSS
Exploits1References2
SUSE CVE
SUSE CVE
•added 2026/01/17 12:24 a.m.•4 views

SUSE CVE-2026-22688

WeKnora is an LLM-powered framework designed for deep document understanding and semantic retrieval. Prior to version 0.2.5, there is a command injection vulnerability that allows authenticated users to inject stdioconfig.command/args into MCP stdio settings, causing the server to execute...

9.9CVSS7.7AI score0.01747EPSS
Exploits1References2
SUSE CVE
SUSE CVE
•added 2026/01/17 12:24 a.m.•4 views

SUSE CVE-2026-22775

Svelte devalue is a JavaScript library that serializes values into strings when JSON.stringify isn't sufficient for the job. From 5.1.0 to 5.6.1, certain inputs can cause devalue.parse to consume excessive CPU time and/or memory, potentially leading to denial of service in systems that parse inpu...

7.5CVSS6.8AI score0.0057EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/01/17 12:24 a.m.•3 views

SUSE CVE-2026-22863

Deno is a JavaScript, TypeScript, and WebAssembly runtime. Before 2.6.0, node:crypto doesn't finalize cipher. The vulnerability allows an attacker to have infinite encryptions. This can lead to naive attempts at brute forcing, as well as more refined attacks with the goal to learn the server...

9.2CVSS6.9AI score0.00195EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/01/17 12:24 a.m.•8 views

SUSE CVE-2026-22864

Deno is a JavaScript, TypeScript, and WebAssembly runtime. Before 2.5.6, a prior patch aimed to block spawning Windows batch/shell files by returning an error when a spawned path's extension matched .bat or .cmd. That check performs a case-sensitive comparison against lowercase literals and...

9.8CVSS6.8AI score0.00619EPSS
Exploits1References3
SUSE CVE
SUSE CVE
•added 2026/01/16 1:8 a.m.•5 views

SUSE CVE-2018-3750

The utilities function in all versions = 0.5.0 of the deep-extend node module can be tricked into modifying the prototype of Object when the attacker can control part of the structure passed to this function. This can let an attacker add or modify existing properties that will exist on all object...

9.8CVSS7AI score0.02147EPSS
Exploits1References2
SUSE CVE
SUSE CVE
•added 2026/01/16 1:6 a.m.•5 views

SUSE CVE-2020-14799

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Security: Encryption. Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

4.9CVSS5.4AI score0.01333EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 2026/01/16 1:6 a.m.•5 views

SUSE CVE-2021-1998

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

3.8CVSS4.8AI score0.01595EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 2026/01/16 1:6 a.m.•7 views

SUSE CVE-2021-2006

Vulnerability in the MySQL Client product of Oracle MySQL component: C API. Supported versions that are affected are 8.0.19 and prior. Difficult to exploit vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Client. Successful attacks of thi...

5.3CVSS5.7AI score0.0182EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 2026/01/16 1:6 a.m.•6 views

SUSE CVE-2021-2007

Vulnerability in the MySQL Client product of Oracle MySQL component: C API. Supported versions that are affected are 5.6.47 and prior, 5.7.29 and prior and 8.0.19 and prior. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise...

3.7CVSS4.7AI score0.02272EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 2026/01/16 1:6 a.m.•4 views

SUSE CVE-2021-2009

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Security: Roles. Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successf...

4.9CVSS5.4AI score0.02359EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 2026/01/16 1:6 a.m.•4 views

SUSE CVE-2021-2012

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Security: Privileges. Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

4.9CVSS5.4AI score0.02295EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 2026/01/16 1:6 a.m.•5 views

SUSE CVE-2021-2016

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

4.9CVSS5.4AI score0.02145EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 2026/01/16 1:6 a.m.•5 views

SUSE CVE-2021-2019

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Security: Privileges. Supported versions that are affected are 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server...

2.7CVSS4.1AI score0.01618EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 2026/01/16 1:6 a.m.•4 views

SUSE CVE-2021-2020

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

6.5CVSS6AI score0.02939EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 2026/01/16 1:6 a.m.•7 views

SUSE CVE-2021-2144

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Parser. Supported versions that are affected are 5.7.29 and prior and 8.0.19 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL...

7.2CVSS6.3AI score0.01886EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 2026/01/16 1:6 a.m.•4 views

SUSE CVE-2021-2160

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 5.7.30 and prior and 8.0.17 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL...

4.9CVSS5.4AI score0.0111EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 2026/01/16 1:5 a.m.•3 views

SUSE CVE-2021-35537

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: DML. Supported versions that are affected are 8.0.25 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks o...

4.9CVSS5.4AI score0.01663EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 2026/01/16 1:5 a.m.•8 views

SUSE CVE-2021-35629

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 8.0.25 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful...

4.9CVSS5.4AI score0.01655EPSS
Exploits0References2
SUSE CVE
SUSE CVE
•added 2026/01/16 12:27 a.m.•9 views

SUSE CVE-2025-68803

In the Linux kernel, the following vulnerability has been resolved: NFSD: NFSv4 file creation neglects setting ACL An NFSv4 client that sets an ACL with a named principal during file creation retrieves the ACL afterwards, and finds that it is only a default ACL based on the mode bits and not the...

4.6CVSS6.4AI score0.00173EPSS
Exploits0References20
SUSE CVE
SUSE CVE
•added 2026/01/16 12:27 a.m.•8 views

SUSE CVE-2025-68818

In the Linux kernel, the following vulnerability has been resolved: scsi: Revert "scsi: qla2xxx: Perform lockless command completion in abort path" This reverts commit 0367076b0817d5c75dfb83001ce7ce5c64d803a9. The commit being reverted added code to qla2x00abortallcmds to call sp-done without...

5.5CVSS6.6AI score0.00173EPSS
Exploits0References12
SUSE CVE
SUSE CVE
•added 2026/01/16 12:27 a.m.•5 views

SUSE CVE-2025-68819

In the Linux kernel, the following vulnerability has been resolved: media: dvb-usb: dtv5100: fix out-of-bounds in dtv5100i2cmsg rlen value is a user-controlled value, but dtv5100i2cmsg does not check the size of the rlen value. Therefore, if it is set to a value larger than sizeofst-data, an...

5.5CVSS6.5AI score0.00173EPSS
Exploits0References21
SUSE CVE
SUSE CVE
•added 2026/01/16 12:27 a.m.•7 views

SUSE CVE-2025-68823

In the Linux kernel, the following vulnerability has been resolved: ublk: fix deadlock when reading partition table When one processsuch as udev opens ublk block device e.g., to read the partition table via bdevopen, a deadlock1 can occur: 1. bdevopen grabs disk-openmutex 2. The process issues re...

5.5CVSS6.4AI score0.0012EPSS
Exploits0References3
SUSE CVE
SUSE CVE
•added 2026/01/16 12:27 a.m.•9 views

SUSE CVE-2025-70968

FreeImage 3.18.0 contains a Use After Free in PluginTARGA.cpp;loadRLE...

9.8CVSS7AI score0.00451EPSS
Exploits1References3
Total number of security vulnerabilities59854