5.5
CVE-2022-49908 - Bluetooth: L2CAP: Fix memory leak in vhci_write
In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix memory leak in vhci_write Syzkaller reports a memory leak as follows: ==================================== BUG: memory leak unreferenced object 0xffff88810d81ac00 (size 240): [...] hex dump (first 32 bytβ¦
5.5
CVE-2025-37745 - PM: hibernate: Avoid deadlock in hibernate_compressor_param_set()
In the Linux kernel, the following vulnerability has been resolved: PM: hibernate: Avoid deadlock in hibernate_compressor_param_set() syzbot reported a deadlock in lock_system_sleep() (see below). The write operation to "/sys/module/hibernate/parameters/compressor" conflicts with the registratioβ¦
8.7
CVE-2025-4142 - Netgear EX6200 sub_3C8EC buffer overflow
A vulnerability has been found in Netgear EX6200 1.0.3.94 and classified as critical. This vulnerability affects the function sub_3C8EC. The manipulation of the argument host leads to buffer overflow. The attack can be initiated remotely. The vendor was contacted early about this disclosure but didβ¦
8.7
CVE-2025-4141 - Netgear EX6200 sub_3C03C buffer overflow
A vulnerability, which was classified as critical, was found in Netgear EX6200 1.0.3.94. This affects the function sub_3C03C. The manipulation of the argument host leads to buffer overflow. It is possible to initiate the attack remotely. The vendor was contacted early about this disclosure but did β¦
8.7
CVE-2025-4140 - Netgear EX6120 sub_30394 buffer overflow
A vulnerability, which was classified as critical, has been found in Netgear EX6120 1.0.3.94. Affected by this issue is the function sub_30394. The manipulation of the argument host leads to buffer overflow. The attack may be launched remotely. The vendor was contacted early about this disclosure bβ¦
4.1
CVE-2024-30146 - HCL Domino Leap is affected by improper access control
Improper access control of endpoint in HCL Domino Leap allows certain admin users to import applications from the server's filesystem.
6.5
CVE-2024-30145 - HCL Domino Volt and Domino Leap are affected by a cross-site scripting (XSS) vulnerability
Multiple vectors in HCL Domino Volt and Domino Leap allow client-side script injection in the authoring environment and deployed applications.
6.3
CVE-2024-30115 - HCL Domino Volt and Domino Leap are affected by a cross-site scripting (XSS) vulnerability
Insufficient sanitization policy in HCL Leap allows client-side script injection in the deployed application through the HTML widget.
5.3
CVE-2023-45721 - HCL Domino Volt and Domino Leap are affected by a disclosure of private personal information vulnerβ¦
Insufficient default configuration in HCL Leap allows anonymous access to directory information.
7.1
CVE-2023-37535 - HCL Domino Volt and Domino Leap are affected by a Cross-site scripting (XSS) vulnerability
Insufficient URI protocol whitelist in HCL Domino Volt and Domino Leap allow script injection through query parameters.