Aggregator

A vulnerability, which was classified as problematic, has been found in Linux Kernel up to 6.7.5. Affected by this issue is the function dcn35_clkmgr of the component DRM. The manipulation leads to improper validation of array index. This vulnerability is handled as CVE-2024-26699. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.1.81/6.6.17/6.7.5. This affects an unknown part of the component DRM. The manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2024-26700. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.10.209/5.15.148/6.1.78/6.6.17/6.7.5. It has been rated as problematic. Affected by this issue is the function netvsc_probe of the component hv_netvsc. The manipulation leads to race condition. This vulnerability is handled as CVE-2024-26698. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.6.17/6.7.5. It has been rated as problematic. This issue affects the function iwl_mvm_is_dup of the component mvm. The manipulation leads to denial of service. The identification of this vulnerability is CVE-2024-26693. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Linux Kernel up to 5.10.209/5.15.148/6.1.78/6.6.17/6.7.5. Affected is the function __sev_platform_shutdown_locked of the component crypto. The manipulation leads to null pointer dereference. This vulnerability is traded as CVE-2024-26695. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.6.17/6.7.5 and classified as problematic. This issue affects some unknown processing of the component iwlwifi. The manipulation leads to double free. The identification of this vulnerability is CVE-2024-26694. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

Робот собирает киборгов из живых насекомых — и это только начало автоматизации биологических тел.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.6.17/6.7.5. Affected is the function pkvm_create_hyp_vm of the component arm64. The manipulation leads to deadlock. This vulnerability is traded as CVE-2024-26691. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic was found in Linux Kernel up to 5.10.209/5.15.148/6.1.78/6.6.17/6.7.5. This vulnerability affects the function encode_cap_msg of the file fs/ceph/caps.c. The manipulation leads to use after free. This vulnerability was named CVE-2024-26689. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Linux Kernel up to 6.6.17/6.7.5. This issue affects the function stmmac_xmit. The manipulation leads to deserialization. The identification of this vulnerability is CVE-2024-26690. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.80/6.6.18/6.7.5. It has been declared as problematic. Affected by this vulnerability is the function xen_irq_info_cleanup of the component Event Channel Handler. The manipulation leads to allocation of resources. This vulnerability is known as CVE-2024-26687. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in vim up to 9.1.1042. It has been classified as critical. This affects an unknown part of the component Silent Ex Mode. The manipulation leads to out-of-bounds write. This vulnerability is uniquely identified as CVE-2025-24014. An attack has to be approached locally. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in GNU C Library up to 2.40. This affects the function assert. The manipulation leads to incorrect calculation of buffer size. This vulnerability is uniquely identified as CVE-2025-0395. The attack needs to be done within the local network. There is no exploit available.

审计一个适合java审计新手的项目studentmanager

关键词数据库勒索Everest 勒索软件组织近日在其暗网泄密站点宣称，已成功入侵知名邮件营销平台 Mailch

关键词恶意程序谷歌云在《Cloud Threat Horizons 2025年上半年报告》中披露，朝鲜国家支持

关键词安全漏洞黑客被发现利用 SAP NetWeaver 的一个关键漏洞 CVE-2025-31324，在一家