Lucene search
K
UbuntucveRecent

68528 matches found

UbuntuCve
UbuntuCve
•added 2026/02/04 4:16 p.m.•5 views

CVE-2026-23044

In the Linux kernel, the following vulnerability has been resolved: PM: hibernate: Fix crash when freeing invalid crypto compressor When cryptoallocacomp fails, it returns an ERRPTR value, not NULL. The cleanup code in savecompressedimage and loadcompressedimage unconditionally calls...

5.8AI score0.00145EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/02/04 4:16 p.m.•2 views

CVE-2026-23042

In the Linux kernel, the following vulnerability has been resolved: idpf: fix aux device unplugging when rdma is not supported by vport If vport flags do not contain VIRTCHNL2VPORTENABLERDMA, driver does not allocate vdevinfo for this vport. This leads to kernel NULL pointer dereference in...

5.7AI score0.00145EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/02/04 4:16 p.m.•6 views

CVE-2026-23040

In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211hwsim: fix typo in frequency notification The NAN notification is for 5745 MHz which corresponds to channel 149 and not 5475 which is not actually a valid channel. This could result in a NULL pointer dereference in...

5.7AI score0.00145EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/02/04 4:16 p.m.•5 views

CVE-2026-23043

In the Linux kernel, the following vulnerability has been resolved: btrfs: fix NULL pointer dereference in doabortlogreplay Coverity reported a NULL pointer dereference issue CID 1666756 in doabortlogreplay. When btrfsallocpath fails in replayonebuffer, wc-subvolpath is NULL, but...

5.7AI score0.00145EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/02/04 4:16 p.m.•4 views

CVE-2026-23045

In the Linux kernel, the following vulnerability has been resolved: net/ena: fix missing lock when update devlink params Fix assert lock warning while calling devlparamdriverinitvalueset in ena. WARNING: net/devlink/core.c:261 at devlassertlocked+0x62/0x90, CPU0: kworker/0:0/9 CPU: 0 UID: 0 PID: ...

5.7AI score0.00151EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/02/04 4:16 p.m.•7 views

CVE-2025-71192

In the Linux kernel, the following vulnerability has been resolved: ALSA: ac97: fix a double free in sndac97controllerregister If ac97addadapter fails, putdevice is the correct way to drop the device reference. kfree is not required. Add kfree if idralloc fails and in ac97adapterrelease to do the...

5.8AI score0.00156EPSS
Exploits0References13
UbuntuCve
UbuntuCve
•added 2026/02/04 4:16 p.m.•3 views

CVE-2026-23041

In the Linux kernel, the following vulnerability has been resolved: bnxten: Fix NULL pointer crash in bnxtptpenable during error cleanup When bnxtinitone fails during initialization e.g., bnxtinitintmode returns -ENODEV, the error path calls bnxtfreehwrmresources which destroys the DMA pool and...

5.7AI score0.00145EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/02/04 4:16 p.m.•4 views

CVE-2026-23048

In the Linux kernel, the following vulnerability has been resolved: udp: call skborphan before skbattemptdeferfree Standard UDP receive path does not use skb-destructor. But skmsg layer does use it, since it calls skbsetownersksafe from udpreadskb. This then triggers this warning in...

5.7AI score0.00145EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/02/04 4:16 p.m.•5 views

CVE-2026-23046

In the Linux kernel, the following vulnerability has been resolved: virtionet: fix device mismatch in devmkzalloc/devmkfree Initial rsshdr allocation uses virtiodevice-device, but virtnetsetqueues frees using netdevice-device. This device mismatch causing below devres warning 3788.514041...

5.7AI score0.00176EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/02/04 4:16 p.m.•6 views

CVE-2026-23047

In the Linux kernel, the following vulnerability has been resolved: libceph: make calctarget set t-paused, not just clear it Currently calctarget clears t-paused if the request shouldn't be paused anymore, but doesn't ever set t-paused even though it's able to determine when the request should be...

5.9AI score0.00161EPSS
Exploits0References25
UbuntuCve
UbuntuCve
•added 2026/02/04 3:16 p.m.•7 views

CVE-2026-1642

A vulnerability exists in NGINX OSS and NGINX Plus when configured to proxy to upstream Transport Layer Security TLS servers. An attacker with a man-in-the-middle MITM position on the upstream server side—along with conditions beyond the attacker's control—may be able to inject plain text data in...

8.2CVSS6.1AI score0.00339EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/02/04 7:16 a.m.•4 views

CVE-2026-24447

If a malformed data is input to the affected product, a CSV file downloaded from the affected product may contain such malformed data. When a victim user download and open such a CSV file, the embedded code may be executed in the user's environment. Note that Movable Type 7 series and 8.4 series,...

6.5CVSS6.6AI score0.00216EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/02/04 7:16 a.m.•3 views

CVE-2026-21393

Movable Type contains a stored cross-site scripting vulnerability in Edit Comment. If crafted input is stored by an attacker, arbitrary script may be executed on a logged-in user's web browser. Note that Movable Type 7 series and 8.4 series, which are End-of-Life EOL, are affected by the...

5.4CVSS6.3AI score0.00208EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/02/04 7:16 a.m.•2 views

CVE-2026-23704

A non-administrative user can upload malicious files. When an administrator or the product accesses that file, an arbitrary script may be executed on the administrator's browser. Note that Movable Type 7 series and 8.4 series, which are End-of-Life EOL, are affected by the vulnerability as well...

6.5CVSS6.6AI score0.00202EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/02/04 7:16 a.m.•4 views

CVE-2026-22875

Movable Type contains a stored cross-site scripting vulnerability in Export Sites. If crafted input is stored by an attacker, arbitrary script may be executed on a logged-in user's web browser. Note that Movable Type 7 series and 8.4 series, which are End-of-Life EOL, are affected by the...

5.4CVSS6.3AI score0.00208EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/02/04 12:0 a.m.•2 views

CVE-2026-25541

Bytes is a utility library for working with bytes. From version 1.2.1 to before 1.11.1, Bytes is vulnerable to integer overflow in BytesMut::reserve. In the unique reclaim path of BytesMut::reserve, if the condition "vcapacity = newcap + offset" uses an unchecked addition. When newcap + offset...

7.5CVSS5.7AI score0.00559EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2026/02/03 9:16 p.m.•5 views

CVE-2026-1862

Type Confusion in V8 in Google Chrome prior to 144.0.7559.132 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.1AI score0.00579EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2026/02/03 9:16 p.m.•4 views

CVE-2026-1861

Heap buffer overflow in libvpx in Google Chrome prior to 144.0.7559.132 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. Chromium security severity: High...

8.8CVSS6.3AI score0.00413EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/02/03 9:16 p.m.•3 views

CVE-2026-1801

A flaw was found in libsoup, an HTTP client/server library. This HTTP Request Smuggling vulnerability arises from non-RFC-compliant parsing in the soupfilterinputstreamreadline logic, where libsoup accepts malformed chunk headers, such as lone line feed LF characters instead of the required...

6.5CVSS7.1AI score0.00376EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/02/03 8:15 p.m.•3 views

CVE-2025-62601

Fast DDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group . Prior to versions 3.4.1, 3.3.1, and 2.6.11, when the security mode is enabled, modifying the DATA Submessage within an SPDP packet sent by a publisher causes a heap buffer overflow,...

7.5CVSS6.1AI score0.00527EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/02/03 8:15 p.m.•3 views

CVE-2025-64438

Fast DDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group . Prior to versions 3.4.1, 3.3.1, and 2.6.11, a remotely triggerable Out-of-Memory OOM denial-of-service exists in Fast -DDS when processing RTPS GAP submessages under RELIABLE QoS. B...

7.5CVSS5.9AI score0.0054EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/02/03 8:15 p.m.•3 views

CVE-2025-62603

Fast DDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group . ParticipantGenericMessage is the DDS Security control-message container that carries not only the handshake but also on going security-control traffic after the handshake, such as...

7.5CVSS5.9AI score0.00501EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/02/03 8:15 p.m.•3 views

CVE-2025-64098

Fast DDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group . Prior to versions 3.4.1, 3.3.1, and 2.6.11, when the security mode is enabled, modifying the DATA Submessage within an SPDP packet sent by a publisher causes an Out-Of-Memory OOM...

6.3CVSS6AI score0.00434EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/02/03 8:15 p.m.•2 views

CVE-2025-62799

Fast DDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group . Prior to versions 3.4.1, 3.3.1, and 2.6.11, a heap buffer overflow exists in the Fast-DDS DATAFRAG receive path. An un authenticated sender can transmit a single malformed RTPS...

9.8CVSS6AI score0.00483EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/02/03 8:15 p.m.•3 views

CVE-2025-62602

Fast DDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group . Prior to versions 3.4.1, 3.3.1, and 2.6.11, when the security mode is enabled, modifying the DATA Submessage within an SPDP packet sent by a publisher causes a heap buffer overflow,...

7.5CVSS6.1AI score0.00489EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/02/03 7:16 p.m.•3 views

CVE-2026-25234

PEAR is a framework and distribution system for reusable PHP components. Prior to version 1.33.0, a SQL injection vulnerability in category deletion can allow an attacker with access to the category manager workflow to inject SQL via a category id. This issue has been patched in version 1.33.0...

9.8CVSS5.6AI score0.00252EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/02/03 7:16 p.m.•10 views

CVE-2026-25237

PEAR is a framework and distribution system for reusable PHP components. Prior to version 1.33.0, use of pregreplace with the /e modifier in bug update email handling can enable PHP code execution if attacker-controlled content reaches the evaluated replacement. This issue has been patched in...

9.8CVSS6AI score0.00395EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/02/03 7:16 p.m.•5 views

CVE-2026-25239

PEAR is a framework and distribution system for reusable PHP components. Prior to version 1.33.0, a SQL injection vulnerability in apidoc queue insertion can allow query manipulation if an attacker can influence the inserted filename value. This issue has been patched in version 1.33.0...

8.2CVSS5.5AI score0.00214EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/02/03 7:16 p.m.•1 views

CVE-2025-62600

eprosima Fast DDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group. Prior to 2.6.11, 2.14.6, 3.2.4, 3.3.1, and 3.4.1, when the security mode is enabled, modifying the DATA Submessage within an SPDP packet sent by a publisher causes an...

8.6CVSS5.9AI score0.00412EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/02/03 7:16 p.m.•4 views

CVE-2026-25238

PEAR is a framework and distribution system for reusable PHP components. Prior to version 1.33.0, a SQL injection vulnerability in bug subscription deletion may allow attackers to inject SQL via a crafted email value. This issue has been patched in version 1.33.0...

9.8CVSS5.6AI score0.00266EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/02/03 7:16 p.m.•3 views

CVE-2026-25241

PEAR is a framework and distribution system for reusable PHP components. Prior to version 1.33.0, an unauthenticated SQL injection in the /get// endpoint allows remote attackers to execute arbitrary SQL via a crafted package version. This issue has been patched in version 1.33.0...

9.8CVSS5.7AI score0.00413EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/02/03 7:16 p.m.•1 views

CVE-2026-25240

PEAR is a framework and distribution system for reusable PHP components. Prior to version 1.33.0, a SQL injection vulnerability can occur in user::maintains when role filters are provided as an array and interpolated into an IN ... clause. This issue has been patched in version 1.33.0...

9.8CVSS5.6AI score0.00266EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/02/03 7:16 p.m.•3 views

CVE-2026-25233

PEAR is a framework and distribution system for reusable PHP components. Prior to version 1.33.0, logic bug in the roadmap role check allows non-lead maintainers to create, update, or delete roadmaps. This issue has been patched in version 1.33.0...

9.1CVSS5.4AI score0.00314EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/02/03 7:16 p.m.•1 views

CVE-2026-25235

PEAR is a framework and distribution system for reusable PHP components. Prior to version 1.33.0, predictable verification hashes may allow attackers to guess verification tokens and potentially verify election account requests without authorization. This issue has been patched in version 1.33.0...

8.2CVSS5.3AI score0.0025EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/02/03 7:16 p.m.•4 views

CVE-2026-25236

PEAR is a framework and distribution system for reusable PHP components. Prior to version 1.33.0, a SQL injection risk exists in karma queries due to unsafe literal substitution for an IN ... list. This issue has been patched in version 1.33.0...

9.8CVSS5.7AI score0.00266EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/02/03 6:16 p.m.•3 views

CVE-2025-70559

pdfminer.six before 20251230 contains an insecure deserialization vulnerability in the CMap loading mechanism. The library uses Python pickle to deserialize CMap cache files without validation. An attacker with the ability to place a malicious pickle file in a location accessible to the applicati...

6.5CVSS6.4AI score0.00223EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/02/03 6:16 p.m.•6 views

CVE-2025-62599

eprosima Fast DDS is a C++ implementation of the DDS Data Distribution Service standard of the OMG Object Management Group. Prior to 2.6.11, 2.14.6, 3.2.4, 3.3.1, and 3.4.1, when the security mode is enabled, modifying the DATA Submessage within an SPDP packet sent by a publisher causes an...

8.6CVSS5.9AI score0.0036EPSS
Exploits0References2
UbuntuCve
UbuntuCve
•added 2026/02/03 2:0 p.m.•5 views

CVE-2026-1207

An issue was discovered in 6.0 before 6.0.2, 5.2 before 5.2.11, and 4.2 before 4.2.28. Raster lookups on RasterField only implemented on PostGIS allows remote attackers to inject SQL via the band index parameter. Earlier, unsupported Django series such as 5.0.x, 4.1.x, and 3.2.x were not evaluate...

5.4CVSS7.2AI score0.09436EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2026/02/03 2:0 p.m.•5 views

CVE-2026-1312

An issue was discovered in 6.0 before 6.0.2, 5.2 before 5.2.11, and 4.2 before 4.2.28. .QuerySet.orderby is subject to SQL injection in column aliases containing periods when the same alias is, using a suitably crafted dictionary, with dictionary expansion, used in FilteredRelation. Earlier,...

5.4CVSS7.2AI score0.00802EPSS
Exploits1References3
UbuntuCve
UbuntuCve
•added 2026/02/03 2:0 p.m.•4 views

CVE-2025-14550

An issue was discovered in 6.0 before 6.0.2, 5.2 before 5.2.11, and 4.2 before 4.2.28. ASGIRequest allows a remote attacker to cause a potential denial-of-service via a crafted request with multiple duplicate headers. Earlier, unsupported Django series such as 5.0.x, 4.1.x, and 3.2.x were not...

7.5CVSS7.1AI score0.00993EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/02/03 2:0 p.m.•3 views

CVE-2026-1287

An issue was discovered in 6.0 before 6.0.2, 5.2 before 5.2.11, and 4.2 before 4.2.28. FilteredRelation is subject to SQL injection in column aliases via control characters, using a suitably crafted dictionary, with dictionary expansion, as the kwargs passed to QuerySet methods annotate, aggregat...

5.4CVSS7.2AI score0.00754EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/02/03 2:0 p.m.•8 views

CVE-2025-13473

An issue was discovered in 6.0 before 6.0.2, 5.2 before 5.2.11, and 4.2 before 4.2.28. The django.contrib.auth.handlers.modwsgi.checkpassword function for authentication via modwsgi allows remote attackers to enumerate users via a timing attack. Earlier, unsupported Django series such as 5.0.x,...

5.3CVSS5.9AI score0.00713EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/02/03 2:0 p.m.•5 views

CVE-2026-1285

An issue was discovered in 6.0 before 6.0.2, 5.2 before 5.2.11, and 4.2 before 4.2.28. django.utils.text.Truncator.chars and Truncator.words methods with html=True and the truncatecharshtml and truncatewordshtml template filters allow a remote attacker to cause a potential denial-of-service via...

7.5CVSS7.1AI score0.00993EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/02/03 11:15 a.m.•3 views

CVE-2025-67855

A flaw was found in mooodle. A remote attacker could exploit a reflected Cross-Site Scripting XSS vulnerability in the policy tool return URL. This vulnerability arises from insufficient sanitization of URL parameters, allowing attackers to inject malicious scripts through specially crafted links...

6.1CVSS6.1AI score0.00362EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/02/03 11:15 a.m.•3 views

CVE-2025-67850

A flaw was found in moodle. This vulnerability, known as Cross-Site Scripting XSS, occurs due to insufficient checks on user-provided data in the formula editor's arithmetic expression fields. A remote attacker could inject malicious code into these fields. When other users view these expressions...

7.3CVSS6AI score0.00289EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/02/03 11:15 a.m.•3 views

CVE-2025-67852

A flaw was found in Moodle. An open redirect vulnerability in the OAuth login flow allows a remote attacker to redirect users to attacker-controlled pages after they have successfully authenticated. This occurs due to insufficient validation of redirect parameters, which could lead to phishing...

6.1CVSS5.9AI score0.00246EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/02/03 11:15 a.m.•6 views

CVE-2025-67848

A flaw was found in Moodle. This authentication bypass vulnerability allows suspended users to authenticate through the Learning Tools Interoperability LTI Provider. The issue arises from the LTI authentication handlers failing to enforce the user's suspension status, enabling unauthorized access...

8.1CVSS5.8AI score0.00373EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/02/03 11:15 a.m.•2 views

CVE-2025-67853

A flaw was found in Moodle. A remote attacker could exploit a lack of proper rate limiting in the confirmation email service. This vulnerability allows attackers to more easily enumerate or guess user credentials, facilitating brute-force attacks against user accounts...

7.5CVSS5.9AI score0.00417EPSS
Exploits0References3
UbuntuCve
UbuntuCve
•added 2026/02/03 11:15 a.m.•2 views

CVE-2025-67857

A flaw was found in moodle. During anonymous assignment submissions, user identifiers were inadvertently exposed in URLs. This data exposure allows unauthorized viewers to see internal user IDs, compromising the intended anonymity and potentially leading to information disclosure...

5.3CVSS5.8AI score0.00342EPSS
Exploits0References4
UbuntuCve
UbuntuCve
•added 2026/02/03 11:15 a.m.•6 views

CVE-2025-67851

A flaw was found in moodle. This formula injection vulnerability occurs when data fields are exported without proper escaping. A remote attacker could exploit this by providing malicious data that, when exported and opened in a spreadsheet, allows arbitrary formulas to execute. This can lead to...

7.8CVSS6AI score0.00251EPSS
Exploits0References4
Total number of security vulnerabilities68528