Latest CVE Feed
-
5.5
MEDIUMCVE-2023-32360
An authentication issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.7.7, macOS Monterey 12.6.6, macOS Ventura 13.4. An unauthenticated user may be able to access recently printed documents.... Read more
Affected Products : macos- EPSS Score: %0.04
- Published: Jun. 23, 2023
- Modified: Dec. 05, 2024
-
5.5
MEDIUMCVE-2021-3620
A flaw was found in Ansible Engine's ansible-connection module, where sensitive information such as the Ansible user credentials is disclosed by default in the traceback error message. The highest threat from this vulnerability is to confidentiality.... Read more
- EPSS Score: %0.23
- Published: Mar. 03, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-1389
An information disclosure vulnerability exists when the Windows kernel fails to properly initialize a memory address, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2020-1367, CVE-2020-1419, CVE-2020-1426.... Read more
- EPSS Score: %0.67
- Published: Jul. 14, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2024-56710
In the Linux kernel, the following vulnerability has been resolved: ceph: fix memory leak in ceph_direct_read_write() The bvecs array which is allocated in iter_get_bvecs_alloc() is leaked and pages remain pinned if ceph_alloc_sparse_ext_map() fails. T... Read more
Affected Products : linux_kernel- Published: Dec. 29, 2024
- Modified: Apr. 17, 2025
-
5.5
MEDIUMCVE-2024-56750
In the Linux kernel, the following vulnerability has been resolved: erofs: fix blksize < PAGE_SIZE for file-backed mounts Adjust sb->s_blocksize{,_bits} directly for file-backed mounts when the fs block size is smaller than PAGE_SIZE. Previously, EROFS... Read more
Affected Products : linux_kernel- Published: Dec. 29, 2024
- Modified: Jan. 06, 2025
-
5.5
MEDIUMCVE-2024-56712
In the Linux kernel, the following vulnerability has been resolved: udmabuf: fix memory leak on last export_udmabuf() error path In export_udmabuf(), if dma_buf_fd() fails because the FD table is full, a dma_buf owning the udmabuf has already been creat... Read more
Affected Products : linux_kernel- Published: Dec. 29, 2024
- Modified: Apr. 17, 2025
-
5.5
MEDIUMCVE-2021-36374
When reading a specially crafted ZIP archive, or a derived formats, an Apache Ant build can be made to allocate large amounts of memory that leads to an out of memory error, even for small inputs. This can be used to disrupt builds using Apache Ant. Commo... Read more
Affected Products : retail_point-of-service agile_engineering_data_management primavera_unifier retail_predictive_application_server timesten_in-memory_database communications_diameter_intelligence_hub retail_bulk_data_integration retail_back_office retail_xstore_point_of_service enterprise_repository +26 more products- EPSS Score: %0.17
- Published: Jul. 14, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2022-42854
The issue was addressed with improved memory handling. This issue is fixed in macOS Monterey 12.6.2, macOS Ventura 13.1. An app may be able to disclose kernel memory.... Read more
Affected Products : macos- EPSS Score: %0.07
- Published: Dec. 15, 2022
- Modified: Apr. 21, 2025
-
5.5
MEDIUMCVE-2024-26684
In the Linux kernel, the following vulnerability has been resolved: net: stmmac: xgmac: fix handling of DPP safety error for DMA channels Commit 56e58d6c8a56 ("net: stmmac: Implement Safety Features in XGMAC core") checks and reports safety errors, but ... Read more
- Published: Apr. 02, 2024
- Modified: Mar. 17, 2025
-
5.5
MEDIUMCVE-2020-12459
In certain Red Hat packages for Grafana 6.x through 6.3.6, the configuration files /etc/grafana/grafana.ini and /etc/grafana/ldap.toml (which contain a secret_key and a bind_password) are world readable.... Read more
- EPSS Score: %0.07
- Published: Apr. 29, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2024-26815
In the Linux kernel, the following vulnerability has been resolved: net/sched: taprio: proper TCA_TAPRIO_TC_ENTRY_INDEX check taprio_parse_tc_entry() is not correctly checking TCA_TAPRIO_TC_ENTRY_INDEX attribute: int tc; // Signed value tc = nla_get... Read more
Affected Products : linux_kernel- Published: Apr. 10, 2024
- Modified: Mar. 27, 2025
-
5.5
MEDIUMCVE-2018-12881
Adobe Acrobat and Reader versions 2018.011.20063 and earlier, 2017.011.30102 and earlier, and 2015.006.30452 and earlier have an integer overflow vulnerability. Successful exploitation could lead to information disclosure.... Read more
- EPSS Score: %1.90
- Published: Oct. 12, 2018
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2024-26841
In the Linux kernel, the following vulnerability has been resolved: LoongArch: Update cpu_sibling_map when disabling nonboot CPUs Update cpu_sibling_map when disabling nonboot CPUs by defining & calling clear_cpu_sibling_map(), otherwise we get such err... Read more
Affected Products : linux_kernel- Published: Apr. 17, 2024
- Modified: Apr. 02, 2025
-
5.5
MEDIUMCVE-2022-44515
Acrobat Reader DC version 22.001.20085 (and earlier), 20.005.3031x (and earlier) and 17.012.30205 (and earlier) are affected by an out-of-bounds read vulnerability when parsing a crafted file, which could result in a read past the end of an allocated memo... Read more
- Published: Dec. 19, 2024
- Modified: Jan. 10, 2025
-
5.5
MEDIUMCVE-2018-6554
Memory leak in the irda_bind function in net/irda/af_irda.c and later in drivers/staging/irda/net/af_irda.c in the Linux kernel before 4.17 allows local users to cause a denial of service (memory consumption) by repeatedly binding an AF_IRDA socket.... Read more
- EPSS Score: %0.05
- Published: Sep. 04, 2018
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2019-0149
Insufficient input validation in i40e driver for Intel(R) Ethernet 700 Series Controllers versions before 2.8.43 may allow an authenticated user to potentially enable a denial of service via local access.... Read more
Affected Products : ethernet_controller_x710-tm4_firmware ethernet_controller_x710-at2_firmware ethernet_controller_xxv710-am2_firmware ethernet_controller_xxv710-am1_firmware ethernet_controller_x710-bm2_firmware ethernet_controller_710-bm1_firmware ethernet_700_series_software ethernet_controller_x710-tm4 ethernet_controller_x710-at2 ethernet_controller_xxv710-am2 +3 more products- EPSS Score: %0.12
- Published: Nov. 14, 2019
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-21096
Adobe Bridge versions 10.1.1 (and earlier) and 11.0.1 (and earlier) are affected by an Improper Authorization vulnerability in the Genuine Software Service. A low-privileged attacker could leverage this vulnerability to achieve application denial-of-servi... Read more
- EPSS Score: %0.16
- Published: Apr. 15, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2021-30892
An inherited permissions issue was addressed with additional restrictions. This issue is fixed in macOS Monterey 12.0.1, Security Update 2021-007 Catalina, macOS Big Sur 11.6.1. A malicious application may be able to modify protected parts of the file sys... Read more
- EPSS Score: %1.57
- Published: Aug. 24, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2012-5931
Directory traversal vulnerability in the set_log_config function in regclnt.dll in unifid.exe in NetIQ Privileged User Manager 2.3.x before 2.3.1 HF2 allows remote authenticated users to create or overwrite arbitrary files via directory traversal sequence... Read more
- EPSS Score: %4.06
- Published: Dec. 24, 2012
- Modified: Apr. 11, 2025
-
5.5
MEDIUMCVE-2024-53210
In the Linux kernel, the following vulnerability has been resolved: s390/iucv: MSG_PEEK causes memory leak in iucv_sock_destruct() Passing MSG_PEEK flag to skb_recv_datagram() increments skb refcount (skb->users) and iucv_sock_recvmsg() does not decreme... Read more
Affected Products : linux_kernel- Published: Dec. 27, 2024
- Modified: Jan. 14, 2025