Latest CVE Feed
-
5.5
MEDIUMCVE-2022-44674
Windows Bluetooth Driver Information Disclosure Vulnerability... Read more
Affected Products : windows_10 windows_server_2016 windows_server_2019 windows_10_1809 windows_10_20h2 windows_10_21h2 windows_10_22h2 windows_server_2022 windows_11_21h2 windows_11_22h2 +3 more products- Published: Dec. 13, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2023-29532
A local attacker can trick the Mozilla Maintenance Service into applying an unsigned update file by pointing the service at an update file on a malicious SMB server. The update file can be replaced after the signature check, before the use, because the wr... Read more
- Published: Jun. 19, 2023
- Modified: Dec. 11, 2024
-
5.5
MEDIUMCVE-2024-26601
In the Linux kernel, the following vulnerability has been resolved: ext4: regenerate buddy after block freeing failed if under fc replay This mostly reverts commit 6bd97bf273bd ("ext4: remove redundant mb_regenerate_buddy()") and reintroduces mb_regener... Read more
Affected Products : linux_kernel- Published: Feb. 26, 2024
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2013-7461
A write protection and execution bypass vulnerability in McAfee (now Intel Security) Change Control (MCC) 6.1.0 for Linux and earlier allows authenticated users to change files that are part of write protection rules via specific conditions.... Read more
- Published: Mar. 14, 2017
- Modified: Apr. 20, 2025
-
5.5
MEDIUMCVE-2020-13632
ext/fts3/fts3_snippet.c in SQLite before 3.32.0 has a NULL pointer dereference via a crafted matchinfo() query.... Read more
Affected Products : ubuntu_linux fedora zfs_storage_appliance_kit debian_linux cloud_backup outside_in_technology sinec_ins sinec_infrastructure_network_services sqlite communications_network_charging_and_control +4 more products- Published: May. 27, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2024-26600
In the Linux kernel, the following vulnerability has been resolved: phy: ti: phy-omap-usb2: Fix NULL pointer dereference for SRP If the external phy working together with phy-omap-usb2 does not implement send_srp(), we may still attempt to call it. This... Read more
Affected Products : linux_kernel- Published: Feb. 26, 2024
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-24504
Uncontrolled resource consumption in some Intel(R) Ethernet E810 Adapter drivers for Linux before version 1.0.4 may allow an authenticated user to potentially enable denial of service via local access.... Read more
Affected Products : ethernet_network_adapter_e810_firmware ethernet_network_adapter_e810-cqda1 ethernet_network_adapter_e810-cqda1_for_ocp ethernet_network_adapter_e810-cqda1_for_ocp_3.0 ethernet_network_adapter_e810-cqda2 ethernet_network_adapter_e810-cqda2_for_ocp_3.0 ethernet_network_adapter_e810-xxvda2 ethernet_network_adapter_e810-xxvda2_for_ocp ethernet_network_adapter_e810-xxvda2_for_ocp_3.0 ethernet_network_adapter_e810-xxvda4- Published: Feb. 17, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2024-26595
In the Linux kernel, the following vulnerability has been resolved: mlxsw: spectrum_acl_tcam: Fix NULL pointer dereference in error path When calling mlxsw_sp_acl_tcam_region_destroy() from an error path after failing to attach the region to an ACL grou... Read more
Affected Products : linux_kernel- Published: Feb. 23, 2024
- Modified: Dec. 14, 2024
-
5.5
MEDIUMCVE-2024-26596
In the Linux kernel, the following vulnerability has been resolved: net: dsa: fix netdev_priv() dereference before check on non-DSA netdevice events After the blamed commit, we started doing this dereference for every NETDEV_CHANGEUPPER and NETDEV_PRECH... Read more
Affected Products : linux_kernel- Published: Feb. 23, 2024
- Modified: Feb. 21, 2025
-
5.5
MEDIUMCVE-2016-2317
Multiple buffer overflows in GraphicsMagick 1.3.23 allow remote attackers to cause a denial of service (crash) via a crafted SVG file, related to the (1) TracePoint function in magick/render.c, (2) GetToken function in magick/utility.c, and (3) GetTransfo... Read more
- Published: Feb. 03, 2017
- Modified: Apr. 20, 2025
-
5.5
MEDIUMCVE-2020-27900
An issue existed in the handling of snapshots. The issue was resolved with improved permissions logic. This issue is fixed in macOS Big Sur 11.0.1. A malicious application may be able to preview files it does not have access to.... Read more
Affected Products : macos- Published: Dec. 08, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2022-41946
pgjdbc is an open source postgresql JDBC Driver. In affected versions a prepared statement using either `PreparedStatement.setText(int, InputStream)` or `PreparedStatemet.setBytea(int, InputStream)` will create a temporary file if the InputStream is large... Read more
- Published: Nov. 23, 2022
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2013-7460
A write protection and execution bypass vulnerability in McAfee (now Intel Security) Application Control (MAC) 6.1.0 for Linux and earlier allows authenticated users to change binaries that are part of the Application Control whitelist and allows executio... Read more
- Published: Mar. 14, 2017
- Modified: Apr. 20, 2025
-
5.5
MEDIUMCVE-2020-27896
A path handling issue was addressed with improved validation. This issue is fixed in macOS Big Sur 11.0.1. A remote attacker may be able to modify the file system.... Read more
- Published: Dec. 08, 2020
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2022-4269
A flaw was found in the Linux kernel Traffic Control (TC) subsystem. Using a specific networking configuration (redirecting egress packets to ingress using TC action "mirred") a local unprivileged user could trigger a CPU soft lockup (ABBA deadlock) when ... Read more
Affected Products : linux_kernel- Published: Dec. 05, 2022
- Modified: Apr. 14, 2025
-
5.5
MEDIUMCVE-2022-48468
protobuf-c before 1.4.1 has an unsigned integer overflow in parse_required_member.... Read more
Affected Products : protobuf-c- Published: Apr. 13, 2023
- Modified: Feb. 07, 2025
-
5.5
MEDIUMCVE-2024-26591
In the Linux kernel, the following vulnerability has been resolved: bpf: Fix re-attachment branch in bpf_tracing_prog_attach The following case can cause a crash due to missing attach_btf: 1) load rawtp program 2) load fentry program with rawtp as targ... Read more
Affected Products : linux_kernel- Published: Feb. 22, 2024
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2023-3357
A NULL pointer dereference flaw was found in the Linux kernel AMD Sensor Fusion Hub driver. This flaw allows a local user to crash the system.... Read more
Affected Products : linux_kernel- Published: Jun. 28, 2023
- Modified: Mar. 10, 2025
-
5.5
MEDIUMCVE-2020-27842
There's a flaw in openjpeg's t2 encoder in versions prior to 2.4.0. An attacker who is able to provide crafted input to be processed by openjpeg could cause a null pointer dereference. The highest impact of this flaw is to application availability.... Read more
- Published: Jan. 05, 2021
- Modified: Nov. 21, 2024
-
5.5
MEDIUMCVE-2020-25635
A flaw was found in Ansible Base when using the aws_ssm connection plugin as garbage collector is not happening after playbook run is completed. Files would remain in the bucket exposing the data. This issue affects directly data confidentiality.... Read more
Affected Products : ansible- Published: Oct. 05, 2020
- Modified: Nov. 21, 2024