5.5

CVSS3.1

CVE-2024-57988 - Bluetooth: btbcm: Fix NULL deref in btbcm_get_board_name()

In the Linux kernel, the following vulnerability has been resolved: Bluetooth: btbcm: Fix NULL deref in btbcm_get_board_name() devm_kstrdup() can return a NULL pointer on failure,but this returned value in btbcm_get_board_name() is not checked. Add NULL check in btbcm_get_board_name(), to handle โ€ฆ

๐Ÿ“… Published: Feb. 27, 2025, midnight ๐Ÿ”„ Last Modified: Oct. 1, 2025, 8:18 p.m.

8.1

CVSS3.1

CVE-2025-25477 -

A host header injection vulnerability in SysPass 3.2x allows an attacker to load malicious JS files from an arbitrary domain which would be executed in the victim's browser.

๐Ÿ“… Published: Feb. 27, 2025, midnight ๐Ÿ”„ Last Modified: July 9, 2025, 7:30 p.m.

7.1

CVSS3.1

CVE-2025-21789 - LoongArch: csum: Fix OoB access in IP checksum code for negative lengths

In the Linux kernel, the following vulnerability has been resolved: LoongArch: csum: Fix OoB access in IP checksum code for negative lengths Commit 69e3a6aa6be2 ("LoongArch: Add checksum optimization for 64-bit system") would cause an undefined shift and an out-of-bounds read. Commit 8bd795fedb8โ€ฆ

๐Ÿ“… Published: Feb. 27, 2025, midnight ๐Ÿ”„ Last Modified: Oct. 1, 2025, 8:18 p.m.

7.5

CVSS3.1

CVE-2025-25760 -

A Server-Side Request Forgery (SSRF) in the component admin_webgather.php of SUCMS v1.0 allows attackers to access internal data and services via a crafted GET request.

๐Ÿ“… Published: Feb. 27, 2025, midnight ๐Ÿ”„ Last Modified: April 9, 2025, 2:08 p.m.

5.5

CVSS3.1

CVE-2024-57989 - wifi: mt76: mt7925: fix NULL deref check in mt7925_change_vif_links

In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: mt7925: fix NULL deref check in mt7925_change_vif_links In mt7925_change_vif_links() devm_kzalloc() may return NULL but this returned value is not checked.

๐Ÿ“… Published: Feb. 27, 2025, midnight ๐Ÿ”„ Last Modified: Oct. 1, 2025, 8:18 p.m.

5.4

CVSS3.1

CVE-2024-53408 -

AVE System Web Client v2.1.131.13992 was discovered to contain a cross-site scripting (XSS) vulnerability.

๐Ÿ“… Published: Feb. 27, 2025, midnight ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.5

CVSS3.1

CVE-2025-25729 -

An information disclosure vulnerability in Bosscomm IF740 Firmware versions:11001.7078 & v11001.0000 and System versions: 6.25 & 6.00 allows attackers to obtain hardcoded cleartext credentials via the update or boot process.

๐Ÿ“… Published: Feb. 27, 2025, midnight ๐Ÿ”„ Last Modified: April 15, 2026, 12:35 a.m.

7.8

CVSS3.1

CVE-2025-21764 - ndisc: use RCU protection in ndisc_alloc_skb()

In the Linux kernel, the following vulnerability has been resolved: ndisc: use RCU protection in ndisc_alloc_skb() ndisc_alloc_skb() can be called without RTNL or RCU being held. Add RCU protection to avoid possible UAF.

๐Ÿ“… Published: Feb. 27, 2025, midnight ๐Ÿ”„ Last Modified: Nov. 3, 2025, 8:17 p.m.

7.1

CVSS3.1

CVE-2025-21782 - orangefs: fix a oob in orangefs_debug_write

In the Linux kernel, the following vulnerability has been resolved: orangefs: fix a oob in orangefs_debug_write I got a syzbot report: slab-out-of-bounds Read in orangefs_debug_write... several people suggested fixes, I tested Al Viro's suggestion and made this patch.

๐Ÿ“… Published: Feb. 27, 2025, midnight ๐Ÿ”„ Last Modified: Nov. 3, 2025, 9:19 p.m.

5.5

CVSS3.1

CVE-2025-21740 - kernel: KVM: x86/mmu: Ensure NX huge page recovery thread is alive before waking

This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.

๐Ÿ“… Published: Feb. 27, 2025, midnight ๐Ÿ”„ Last Modified: March 27, 2025, 2:15 p.m.
Total resulsts: 345209
Page 6144 of 34,521
ยซ previous page ยป next page
Filters