Aggregator

CVE-2017-12626 | Oracle Endeca Information Discovery Integrator 12.0/12.1 Integrator ETL infinite loop (BID-102879)

Vuldb Updates
1 day 12 hours ago
A vulnerability has been found in Oracle Endeca Information Discovery Integrator 12.0/12.1 and classified as critical. This affects an unknown part of the component Integrator ETL. The manipulation leads to infinite loop. This vulnerability is referenced as CVE-2017-12626. Remote exploitation of the attack is possible. No exploit is available. The affected component should be upgraded.
vuldb.com

CVE-2025-38662 | Linux Kernel up to 6.12.40/6.15.8 ASoC mt8365_dai_set_priv out-of-bounds (Nessus ID 276629 / WID-SEC-2025-1898)

Vuldb Updates
1 day 12 hours ago
A vulnerability has been found in Linux Kernel up to 6.12.40/6.15.8 and classified as critical. The affected element is the function mt8365_dai_set_priv of the component ASoC. The manipulation leads to out-of-bounds read. This vulnerability is uniquely identified as CVE-2025-38662. The attack can only be initiated within the local network. No exploit exists. The affected component should be upgraded.
vuldb.com

CVE-2025-38663 | Linux Kernel up to 6.1.147/6.6.100/6.12.40/6.15.8 nilfs2 assertion (Nessus ID 276629 / WID-SEC-2025-1898)

Vuldb Updates
1 day 12 hours ago
A vulnerability was found in Linux Kernel up to 6.1.147/6.6.100/6.12.40/6.15.8 and classified as critical. The impacted element is an unknown function of the component nilfs2. The manipulation results in reachable assertion. This vulnerability was named CVE-2025-38663. The attack needs to be approached within the local network. There is no available exploit. It is suggested to upgrade the affected component.
vuldb.com

CVE-2025-38660 | Linux Kernel up to 6.12.41/6.15.9/6.16.0 parse_longname memory corruption (Nessus ID 266176 / WID-SEC-2025-1898)

Vuldb Updates
1 day 12 hours ago
A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.12.41/6.15.9/6.16.0. Impacted is the function parse_longname. Executing a manipulation can lead to memory corruption. This vulnerability is handled as CVE-2025-38660. The attack can only be done within the local network. There is not any exploit available. You should upgrade the affected component.
vuldb.com

CVE-2025-38659 | Linux Kernel up to 6.6.101/6.12.41/6.15.9/6.16.0 gfs2 gfs2_recover_func null pointer dereference (Nessus ID 270575 / WID-SEC-2025-1898)

Vuldb Updates
1 day 12 hours ago
A vulnerability classified as critical has been found in Linux Kernel up to 6.6.101/6.12.41/6.15.9/6.16.0. Impacted is the function gfs2_recover_func of the component gfs2. Performing a manipulation results in null pointer dereference. This vulnerability is reported as CVE-2025-38659. The attacker must have access to the local network to execute the attack. No exploit exists. It is recommended to upgrade the affected component.
vuldb.com

CVE-2025-38661 | Linux Kernel up to 6.15.8 dmi_system_id privilege escalation (WID-SEC-2025-1898)

Vuldb Updates
1 day 12 hours ago
A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.15.8. Affected is the function dmi_system_id. This manipulation causes privilege escalation. This vulnerability appears as CVE-2025-38661. The attacker needs to be present on the local network. There is no available exploit. It is advisable to upgrade the affected component.
vuldb.com

CVE-2025-38658 | Linux Kernel up to 6.16.0 /dev/nvme0n1 nvmet_req_init state issue (WID-SEC-2025-1898)

Vuldb Updates
1 day 12 hours ago
A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.16.0. This issue affects the function nvmet_req_init of the file /dev/nvme0n1. Performing a manipulation results in state issue. This vulnerability is known as CVE-2025-38658. Access to the local network is required for this attack. No exploit is available. It is advisable to upgrade the affected component.
vuldb.com

Windows 11 Deploys Algorithmic CPU Bursting via the Low Latency Profile

Penetration Testing Tools - Metepreter.org
1 day 12 hours ago

Microsoft recently initiated the development of an experimental system feature designated as the Low Latency Profile within Windows 11. Specifically, this optimization layer accelerates the execution speeds of core shell components. These assets include...

The post Windows 11 Deploys Algorithmic CPU Bursting via the Low Latency Profile appeared first on Information Security News.

ddos

三星利用智能手表研究GLP-1药物副作用

不安全
1 day 12 hours ago
三星利用智能手表研究GLP-1药物副作用三星 Galaxy Watch 提供的健康指标范围比大多数竞争对手更广泛。而三星现在计划使用这些指标来帮助使用 GLP-1 RA 药物进行减肥的患者预防副作用。

INC

Dark Feed IO
1 day 12 hours ago

You must login to view this content

cohenido

CVE-2018-14835 | Intelliants Subrion CMS 4.2.1 Tooltop Information Stored cross site scripting (Issue 760 / EUVD-2022-3534)

Vuldb Updates
1 day 12 hours ago
A vulnerability categorized as problematic has been discovered in Intelliants Subrion CMS 4.2.1. This impacts an unknown function of the component Tooltop Information Handler. Executing a manipulation can lead to cross site scripting (Stored). The identification of this vulnerability is CVE-2018-14835. The attack may be launched remotely. There is no exploit available.
vuldb.com

CVE-2022-30198 | Microsoft Windows up to Server 2022 Point-to-Point Tunneling Protocol race condition (EUVD-2022-35404)

Vuldb Updates
1 day 12 hours ago
A vulnerability classified as critical has been found in Microsoft Windows. This affects an unknown part of the component Point-to-Point Tunneling Protocol. Performing a manipulation results in race condition. This vulnerability is identified as CVE-2022-30198. The attack can be initiated remotely. There is not any exploit available. To fix this issue, it is recommended to deploy a patch.
vuldb.com

CVE-2022-30114 | Fastweb FASTGate MediaAccess FGA2130FWB HTTP Request heap-based overflow (EUVD-2022-35327)

Vuldb Updates
1 day 12 hours ago
A vulnerability labeled as critical has been found in Fastweb FASTGate MediaAccess FGA2130FWB and FASTGate MediaAccess DGA4131FWB. This impacts an unknown function of the component HTTP Request Handler. Executing a manipulation can lead to heap-based buffer overflow. The identification of this vulnerability is CVE-2022-30114. The attack may be launched remotely. There is no exploit available.
vuldb.com

CVE-2022-30067 | GNOME GIMP 2.10.30/2.99.10 XCF File buffer overflow (Issue 8120 / EUVD-2022-35281)

Vuldb Updates
1 day 12 hours ago
A vulnerability was found in GNOME GIMP 2.10.30/2.99.10. It has been rated as critical. Impacted is an unknown function of the component XCF File Handler. The manipulation leads to buffer overflow. This vulnerability is traded as CVE-2022-30067. It is possible to initiate the attack remotely. There is no exploit available. Upgrading the affected component is advised.
vuldb.com

Managed ad