Aggregator

CVE-2025-71135 | Linux Kernel up to 6.12.63/6.18.3/6.19-rc3 raid5_store_group_thread_cnt null pointer dereference (Nessus ID 298917 / WID-SEC-2026-0119)

Vuldb Updates
1 month 3 weeks ago
A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.12.63/6.18.3/6.19-rc3. This impacts the function raid5_store_group_thread_cnt. Performing a manipulation results in null pointer dereference. This vulnerability is reported as CVE-2025-71135. The attacker must have access to the local network to execute the attack. No exploit exists. It is advisable to upgrade the affected component.
vuldb.com

CVE-2025-71133 | Linux Kernel up to 6.1.159/6.6.119/6.12.63/6.18.3/6.19-rc3 irdma_net_event null pointer dereference (EUVD-2026-2474 / Nessus ID 298917)

Vuldb Updates
1 month 3 weeks ago
A vulnerability identified as critical has been detected in Linux Kernel up to 6.1.159/6.6.119/6.12.63/6.18.3/6.19-rc3. Affected by this vulnerability is the function irdma_net_event. This manipulation causes null pointer dereference. This vulnerability is tracked as CVE-2025-71133. The attack is only possible within the local network. No exploit exists. You should upgrade the affected component.
vuldb.com

CVE-2025-71095 | Linux Kernel up to 6.1.159/6.6.119/6.12.63/6.18.3/6.19-rc3 xdp_convert_buff_to_frame denial of service (Nessus ID 298917)

Vuldb Updates
1 month 3 weeks ago
A vulnerability classified as critical was found in Linux Kernel up to 6.1.159/6.6.119/6.12.63/6.18.3/6.19-rc3. This vulnerability affects the function xdp_convert_buff_to_frame. The manipulation results in denial of service. This vulnerability is reported as CVE-2025-71095. The attacker must have access to the local network to execute the attack. No exploit exists. Upgrading the affected component is advised.
vuldb.com

CVE-2025-71097 | Linux Kernel up to 6.1.159/6.6.119/6.12.63/6.18.3/6.19-rc3 fib_table_flush reference count (Nessus ID 298917)

Vuldb Updates
1 month 3 weeks ago
A vulnerability has been found in Linux Kernel up to 6.1.159/6.6.119/6.12.63/6.18.3/6.19-rc3 and classified as critical. Affected by this issue is the function fib_table_flush. This manipulation causes improper update of reference count. This vulnerability appears as CVE-2025-71097. The attacker needs to be present on the local network. There is no available exploit. The affected component should be upgraded.
vuldb.com

CVE-2025-71123 | Linux Kernel up to 6.1.159/6.6.119/6.12.63/6.18.2 ext4 string.h parse_apply_sb_mount_options s_mount_opts buffer overflow (EUVD-2026-2490 / Nessus ID 298917)

Vuldb Updates
1 month 3 weeks ago
A vulnerability was found in Linux Kernel up to 6.1.159/6.6.119/6.12.63/6.18.2. It has been rated as critical. The affected element is the function parse_apply_sb_mount_options in the library string.h of the component ext4. Performing a manipulation of the argument s_mount_opts results in buffer overflow. This vulnerability is identified as CVE-2025-71123. The attack can only be performed from the local network. There is not any exploit available. Upgrading the affected component is advised.
vuldb.com

CVE-2025-71088 | Linux Kernel up to 6.1.159/6.6.119/6.12.64/6.18.3/6.19-rc3 mptcp net/mptcp/subflow.c sk_state_change state issue (Nessus ID 298917)

Vuldb Updates
1 month 3 weeks ago
A vulnerability classified as critical has been found in Linux Kernel up to 6.1.159/6.6.119/6.12.64/6.18.3/6.19-rc3. This issue affects the function sk_state_change of the file net/mptcp/subflow.c of the component mptcp. The manipulation leads to state issue. This vulnerability is traded as CVE-2025-71088. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2025-71094 | Linux Kernel up to 6.1.159/6.6.119/6.12.63/6.18.3/6.19-rc3 ASIX Driver mdio_bus.c asix_read_phy_addr information disclosure (Nessus ID 298917)

Vuldb Updates
1 month 3 weeks ago
A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.1.159/6.6.119/6.12.63/6.18.3/6.19-rc3. Affected by this vulnerability is the function asix_read_phy_addr of the file drivers/net/phy/mdio_bus.c of the component ASIX Driver. The manipulation results in information disclosure. This vulnerability is reported as CVE-2025-71094. The attacker must have access to the local network to execute the attack. No exploit exists. You should upgrade the affected component.
vuldb.com

CVE-2025-71080 | Linux Kernel up to 6.12.63/6.18.3/6.19-rc3 ipv6 rt6_get_pcpu_route allocation of resources (Nessus ID 298917)

Vuldb Updates
1 month 3 weeks ago
A vulnerability marked as critical has been reported in Linux Kernel up to 6.12.63/6.18.3/6.19-rc3. The affected element is the function rt6_get_pcpu_route of the component ipv6. This manipulation causes allocation of resources. This vulnerability is tracked as CVE-2025-71080. The attack is only possible within the local network. No exploit exists. It is suggested to upgrade the affected component.
vuldb.com

CVE-2025-71084 | Linux Kernel up to 6.1.159/6.6.119/6.12.63/6.18.3/6.19-rc3 RDMA cancel_work_sync reference count (Nessus ID 298917)

Vuldb Updates
1 month 3 weeks ago
A vulnerability classified as critical has been found in Linux Kernel up to 6.1.159/6.6.119/6.12.63/6.18.3/6.19-rc3. This affects the function cancel_work_sync of the component RDMA. Performing a manipulation results in improper update of reference count. This vulnerability is cataloged as CVE-2025-71084. The attack must originate from the local network. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

INC

Dark Feed IO
1 month 3 weeks ago

You must login to view this content

cohenido

What proactive measures can be taken for NHI lifecycle management?

Security Boulevard
1 month 3 weeks ago

How Can We Streamline NHI Lifecycle Management for Better Cloud Security? What if you could seamlessly integrate non-human identity management into your cybersecurity strategy to bolster cloud security across your organization? With digital transforms rapidly, the importance of proactive NHI lifecycle management becomes ever more crucial. Let’s explore how organizations can optimize NHI lifecycle management […]

The post What proactive measures can be taken for NHI lifecycle management? appeared first on Entro.

The post What proactive measures can be taken for NHI lifecycle management? appeared first on Security Boulevard.

Alison Mack

Are there guaranteed cybersecurity benefits with Agentic AI implementation?

Security Boulevard
1 month 3 weeks ago

Can Non-Human Identities Reinvent Cybersecurity with Agentic AI? What if the key to fortifying cybersecurity lies not in more layers of defense, but in effectively managing the machine identities that already exist within your organization’s infrastructure? Enter Non-Human Identities (NHIs)—the machine identities that are increasingly important. Understanding Non-Human Identities NHIs function much like machine passports. […]

The post Are there guaranteed cybersecurity benefits with Agentic AI implementation? appeared first on Entro.

The post Are there guaranteed cybersecurity benefits with Agentic AI implementation? appeared first on Security Boulevard.

Alison Mack

How assured is identity security with the adoption of NHIs?

Security Boulevard
1 month 3 weeks ago

How Does Non-Human Identity Management Enhance Identity Security Assurance? How can organizations bolster their identity security assurance amidst the growing complexity of cloud environments and the proliferation of machine identities? The answer lies in adopting Non-Human Identities (NHIs). This approach is increasingly crucial for diverse industries, providing a comprehensive solution to the security challenges posed […]

The post How assured is identity security with the adoption of NHIs? appeared first on Entro.

The post How assured is identity security with the adoption of NHIs? appeared first on Security Boulevard.

Alison Mack

Why should IT managers feel relieved by advanced secrets management?

Security Boulevard
1 month 3 weeks ago

Why Should IT Managers Prioritize Non-Human Identities and Secrets Security Management? How well do you know the invisible workforce within your organization? No, it’s not the human workforce that charms at meetings or brainstorms ideas in conference rooms. Instead, it’s the machine identities—also known as Non-Human Identities (NHIs)—that silently perform myriad tasks, from managing applications […]

The post Why should IT managers feel relieved by advanced secrets management? appeared first on Entro.

The post Why should IT managers feel relieved by advanced secrets management? appeared first on Security Boulevard.

Alison Mack

CVE-2024-53122 | Linux Kernel up to 6.1.118/6.6.62/6.11.9 mptcp_rcv_space_adjust divide by zero (Nessus ID 213470 / WID-SEC-2024-3575)

Vuldb Updates
1 month 3 weeks ago
A vulnerability, which was classified as problematic, was found in Linux Kernel up to 6.1.118/6.6.62/6.11.9. This issue affects the function mptcp_rcv_space_adjust. The manipulation results in divide by zero. This vulnerability is cataloged as CVE-2024-53122. The attack must originate from the local network. There is no exploit available. You should upgrade the affected component.
vuldb.com

CVE-2024-53121 | Linux Kernel up to 6.1.118/6.6.62/6.11.9 lib/refcount.c fs_core race condition (Nessus ID 213018 / WID-SEC-2024-3575)

Vuldb Updates
1 month 3 weeks ago
A vulnerability, which was classified as problematic, was found in Linux Kernel up to 6.1.118/6.6.62/6.11.9. Affected by this issue is the function fs_core in the library lib/refcount.c. Executing a manipulation can lead to race condition. This vulnerability is registered as CVE-2024-53121. The attack requires access to the local network. No exploit is available. You should upgrade the affected component.
vuldb.com

Managed ad