VulDB Recent Entries

A vulnerability was found in Linux Kernel up to 5.15.90/6.1.8. It has been classified as critical. This affects the function platform_get_resource of the component uniphier-glue. The manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2022-49758. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.15.90/6.1.7 and classified as problematic. Affected by this issue is the function put_cpu. The manipulation of the argument perpcu leads to allocation of resources. This vulnerability is handled as CVE-2023-53029. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 4.19.271/5.4.230/5.10.165/5.15.90/6.1.8. Affected is the function bpf_ringbuf_output. The manipulation leads to type confusion. This vulnerability is traded as CVE-2023-53024. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 6.1.8 and classified as critical. Affected by this vulnerability is the function highbank_mc_probe. The manipulation leads to memory leak. This vulnerability is known as CVE-2022-49757. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.1.8. This issue affects the function sp_usb_phy_probe. The manipulation leads to null pointer dereference. The identification of this vulnerability is CVE-2022-49756. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 5.4.230/5.10.165/5.15.90/6.1.8. This vulnerability affects unknown code of the component RDMA. The manipulation leads to infinite loop. This vulnerability was named CVE-2023-53026. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Linux Kernel up to 5.15.90/6.1.8. This affects the function enetc_tx_onestep_tstamp. The manipulation leads to deadlock. This vulnerability is uniquely identified as CVE-2023-53022. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.10. It has been rated as critical. Affected by this issue is the function release_request of the file drivers/firewire/core-cdev.c of the component FCP Handler. The manipulation leads to use after free. This vulnerability is handled as CVE-2023-52989. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.15.92/6.1.10. It has been declared as critical. Affected by this vulnerability is the function bic_set_bfqq. The manipulation leads to use after free. This vulnerability is known as CVE-2023-52983. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.10. It has been classified as critical. Affected is the function __guc_reset_context of the component i915. The manipulation leads to improper update of reference count. This vulnerability is traded as CVE-2023-52981. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.8 and classified as critical. This issue affects the function dma_chan_get in the library lib/refcount.c of the component dmaengine. The manipulation leads to use after free. The identification of this vulnerability is CVE-2022-49753. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 5.10.163/5.15.88/6.1.6 and classified as problematic. This vulnerability affects unknown code of the component nft_payload. The manipulation leads to privilege escalation. This vulnerability was named CVE-2023-53033. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 5.4.230/5.10.165/5.15.90/6.1.8. This affects the function net_tx_action of the component sch_taprio. The manipulation leads to use after free. This vulnerability is uniquely identified as CVE-2023-53021. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, has been found in Linux Kernel up to 6.1.10. Affected by this issue is the function xattr_ids. The manipulation leads to insufficient verification of data authenticity. This vulnerability is handled as CVE-2023-52933. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 6.1.7. Affected by this vulnerability is the function vmci_dispatch_dgs of the file drivers/misc/vmw_vmci/vmci_guest.c. The manipulation leads to deadlock. This vulnerability is known as CVE-2022-49759. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Linux Kernel up to 6.1.8. Affected is the function local_cleanup of the component nfc. The manipulation leads to use after free. This vulnerability is traded as CVE-2023-53023. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 5.10.164/5.15.89/6.1.7. It has been rated as critical. This issue affects the function ieee80211_if_add. The manipulation leads to memory leak. The identification of this vulnerability is CVE-2023-53028. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.10. It has been declared as problematic. This vulnerability affects the function find_pmd_or_thp_or_none. The manipulation leads to state issue. This vulnerability was named CVE-2023-52934. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in gnuplot and classified as critical. Affected by this vulnerability is the function utf8_copy_one. The manipulation leads to heap-based buffer overflow. This vulnerability is known as CVE-2025-31177. The attack needs to be approached within the local network. There is no exploit available.

A vulnerability, which was classified as critical, was found in TOTOLINK A800R 4.1.2cu.5137_B20200730. Affected is the function setNoticeCfg. The manipulation of the argument NoticeUrl leads to privilege escalation. This vulnerability is traded as CVE-2025-28138. It is possible to launch the attack remotely. There is no exploit available.