5.5

CVSS3.1

CVE-2025-37805 - sound/virtio: Fix cancel_sync warnings on uninitialized work_structs

In the Linux kernel, the following vulnerability has been resolved: sound/virtio: Fix cancel_sync warnings on uninitialized work_structs Betty reported hitting the following warning: [ 8.709131][ T221] WARNING: CPU: 2 PID: 221 at kernel/workqueue.c:4182 ... [ 8.713282][ T221] Call trace:…

πŸ“… Published: May 8, 2025, midnight πŸ”„ Last Modified: Nov. 3, 2025, 8:18 p.m.

6.1

CVSS3.1

CVE-2025-28073 -

phpList before 3.6.15 is vulnerable to Reflected Cross-Site Scripting (XSS) via the /lists/dl.php endpoint. An attacker can inject arbitrary JavaScript code by manipulating the id parameter, which is improperly sanitized.

πŸ“… Published: May 8, 2025, midnight πŸ”„ Last Modified: June 16, 2025, 6:39 p.m.

8.8

CVSS3.1

CVE-2025-45843 -

TOTOLINK NR1800X V9.1.0u.6681_B20230703 was discovered to contain an authenticated stack overflow via the ssid parameter in the setWiFiGuestCfg function.

πŸ“… Published: May 8, 2025, midnight πŸ”„ Last Modified: May 16, 2025, 3:39 p.m.

8.8

CVSS3.1

CVE-2025-45844 -

TOTOLINK NR1800X V9.1.0u.6681_B20230703 was discovered to contain an authenticated stack overflow via the ssid parameter in the setWiFiBasicCfg function.

πŸ“… Published: May 8, 2025, midnight πŸ”„ Last Modified: May 16, 2025, 3:39 p.m.

6.5

CVSS3.1

CVE-2025-44023 -

An issue in dlink DNS-320 v.1.00 and DNS-320LW v.1.01.0914.20212 allows an attacker to execute arbitrary via the account_mgr.cgi->cgi_chg_admin_pw components.

πŸ“… Published: May 8, 2025, midnight πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

4.3

CVSS3.1

CVE-2025-4476 - Libsoup: null pointer dereference in libsoup may lead to denial of service

A denial-of-service vulnerability has been identified in the libsoup HTTP client library. This flaw can be triggered when a libsoup client receives a 401 (Unauthorized) HTTP response containing a specifically crafted domain parameter within the WWW-Authenticate header. Processing this malformed hea…

πŸ“… Published: May 8, 2025, midnight πŸ”„ Last Modified: May 6, 2026, 3:16 p.m.

5.5

CVSS3.1

CVE-2025-37834 - mm/vmscan: don't try to reclaim hwpoison folio

In the Linux kernel, the following vulnerability has been resolved: mm/vmscan: don't try to reclaim hwpoison folio Syzkaller reports a bug as follows: Injecting memory failure for pfn 0x18b00e at process virtual address 0x20ffd000 Memory failure: 0x18b00e: dirty swapcache page still referenced b…

πŸ“… Published: May 8, 2025, midnight πŸ”„ Last Modified: Jan. 2, 2026, 3:29 p.m.

9.8

CVSS3.1

CVE-2023-31585 -

Grocery-CMS-PHP-Restful-API v1.3 is vulnerable to File Upload via /admin/add-category.php.

πŸ“… Published: May 8, 2025, midnight πŸ”„ Last Modified: April 15, 2026, 12:35 a.m.

6.5

CVSS3.1

CVE-2025-45797 -

TOTOlink A950RG V4.1.2cu.5204_B20210112 contains a buffer overflow vulnerability. The vulnerability arises from the improper input validation of the NoticeUrl parameter in the setNoticeCfg interface of /lib/cste_modules/system.so.

πŸ“… Published: May 8, 2025, midnight πŸ”„ Last Modified: May 16, 2025, 3:36 p.m.

5.5

CVSS3.1

CVE-2025-37807 - bpf: Fix kmemleak warning for percpu hashmap

In the Linux kernel, the following vulnerability has been resolved: bpf: Fix kmemleak warning for percpu hashmap Vlad Poenaru reported the following kmemleak issue: unreferenced object 0x606fd7c44ac8 (size 32): backtrace (crc 0): pcpu_alloc_noprof+0x730/0xeb0 bpf_map_alloc_perc…

πŸ“… Published: May 8, 2025, midnight πŸ”„ Last Modified: Jan. 2, 2026, 3:29 p.m.
Total resulsts: 349182
Page 5497 of 34,919
Β« previous page Β» next page
Filters