5.5

CVSS3.1

CVE-2025-22006 - net: ethernet: ti: am65-cpsw: Fix NAPI registration sequence

In the Linux kernel, the following vulnerability has been resolved: net: ethernet: ti: am65-cpsw: Fix NAPI registration sequence Registering the interrupts for TX or RX DMA Channels prior to registering their respective NAPI callbacks can result in a NULL pointer dereference. This is seen in prac…

πŸ“… Published: April 3, 2025, midnight πŸ”„ Last Modified: Oct. 1, 2025, 5:15 p.m.

9.8

CVSS3.1

CVE-2025-29369 -

Code-Projects Matrimonial Site V1.0 is vulnerable to SQL Injection in /view_profile.php?id=1.

πŸ“… Published: April 3, 2025, midnight πŸ”„ Last Modified: April 22, 2025, 3:20 p.m.

4.7

CVSS3.1

CVE-2025-21998 - firmware: qcom: uefisecapp: fix efivars registration race

In the Linux kernel, the following vulnerability has been resolved: firmware: qcom: uefisecapp: fix efivars registration race Since the conversion to using the TZ allocator, the efivars service is registered before the memory pool has been allocated, something which can lead to a NULL-pointer der…

πŸ“… Published: April 3, 2025, midnight πŸ”„ Last Modified: Oct. 1, 2025, 6:15 p.m.

7.5

CVSS3.1

CVE-2025-22931 -

An insecure direct object reference (IDOR) in the component /assets/stafffiles of OS4ED openSIS v7.0 to v9.1 allows unauthenticated attackers to access files uploaded by staff members.

πŸ“… Published: April 3, 2025, midnight πŸ”„ Last Modified: July 17, 2025, 6:17 p.m.

7.8

CVSS3.1

CVE-2025-22004 - net: atm: fix use after free in lec_send()

In the Linux kernel, the following vulnerability has been resolved: net: atm: fix use after free in lec_send() The ->send() operation frees skb so save the length before calling ->send() to avoid a use after free.

πŸ“… Published: April 3, 2025, midnight πŸ”„ Last Modified: Nov. 3, 2025, 8:17 p.m.

9

CVSS3.1

CVE-2025-30406 -

Gladinet CentreStack through 16.1.10296.56315 (fixed in 16.4.10315.56368) has a deserialization vulnerability due to the CentreStack portal's hardcoded machineKey use, as exploited in the wild in March 2025. This enables threat actors (who know the machineKey) to serialize a payload for server-side…

πŸ“… Published: April 3, 2025, midnight πŸ”„ Last Modified: Nov. 5, 2025, 7:27 p.m.

5.9

CVSS3.1

CVE-2025-32050 - Libsoup: integer overflow in append_param_quoted

A flaw was found in libsoup. The libsoup append_param_quoted() function may contain an overflow bug resulting in a buffer under-read.

πŸ“… Published: April 3, 2025, midnight πŸ”„ Last Modified: Nov. 6, 2025, 11:08 p.m.

5.9

CVSS3.1

CVE-2025-32051 - Libsoup: segmentation fault when parsing malformed data uri

A flaw was found in libsoup. The libsoup soup_uri_decode_data_uri() function may crash when processing malformed data URI. This flaw allows an attacker to cause a denial of service (DoS).

πŸ“… Published: April 3, 2025, midnight πŸ”„ Last Modified: Nov. 20, 2025, 8:45 p.m.

8.8

CVSS3.1

CVE-2024-45199 -

insightsoftware Hive JDBC through 2.6.13 has a remote code execution vulnerability. Attackers can inject malicious parameters into the JDBC URL, triggering JNDI injection during the process when the JDBC Driver uses this URL to connect to the database. This can further lead to remote code execution.

πŸ“… Published: April 3, 2025, midnight πŸ”„ Last Modified: April 7, 2025, 2:18 p.m.

5.5

CVSS3.1

CVE-2025-22000 - mm/huge_memory: drop beyond-EOF folios with the right number of refs

In the Linux kernel, the following vulnerability has been resolved: mm/huge_memory: drop beyond-EOF folios with the right number of refs When an after-split folio is large and needs to be dropped due to EOF, folio_put_refs(folio, folio_nr_pages(folio)) should be used to drop all page cache refs. …

πŸ“… Published: April 3, 2025, midnight πŸ”„ Last Modified: Oct. 1, 2025, 6:15 p.m.
Total resulsts: 343942
Page 5521 of 34,395
Β« previous page Β» next page
Filters