VulDB Recent Entries

A vulnerability has been found in Microsoft HoloLens up to 10.0.22621.1244 and classified as critical. This vulnerability affects unknown code of the component Pairing Request. The manipulation leads to allocation of resources. This vulnerability was named CVE-2024-57972. The attack needs to be initiated within the local network. There is no exploit available.

A vulnerability, which was classified as problematic, was found in Samsung Mobile Processor, Wearable Processor, Modem Exynos 9820, 9825, 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, W920, W930, W1000, Modem 5123, Modem 5300 and Modem 5400. This affects an unknown part of the component NRMM. The manipulation leads to denial of service. This vulnerability is uniquely identified as CVE-2024-52923. The attack needs to be done within the local network. There is no exploit available.

A vulnerability, which was classified as critical, has been found in Samsung Exynos 9820, 9825, 980, 990, 850, 1080, 2100, 1280, 2200, 1330, 1380, 1480, 2400, 9110, W920, W930, W1000, Modem 5123, Modem 5300 and Modem 5400. Affected by this issue is some unknown functionality of the component NRMM. The manipulation leads to out-of-bounds write. This vulnerability is handled as CVE-2024-52924. The attack can only be initiated within the local network. There is no exploit available.

A vulnerability classified as problematic was found in Django up to 4.2.19/5.0.12/5.1.6. Affected by this vulnerability is the function django.utils.text.wrap of the component Template Filter Handler. The manipulation leads to denial of service. This vulnerability is known as CVE-2025-26699. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as problematic has been found in ServiceNow Now Platform. Affected is an unknown function. The manipulation leads to authorization bypass. This vulnerability is traded as CVE-2025-0337. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in NI G Web Development Software up to 22.3.1. It has been rated as very critical. This issue affects some unknown processing of the component Project File Handler. The manipulation leads to deserialization. The identification of this vulnerability is CVE-2024-12742. The attack may be initiated remotely. There is no exploit available.

A vulnerability was found in IBM Concert Software 1.0.5. It has been declared as problematic. This vulnerability affects unknown code. The manipulation leads to improper restriction of excessive authentication attempts. This vulnerability was named CVE-2024-51476. The attack can be initiated remotely. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.13.2. It has been classified as critical. This affects the function WARN_ON_ONCE. The manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2025-21833. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.128/6.6.77/6.12.13/6.13.2 and classified as problematic. Affected by this issue is the function blkdev_read_iter. The manipulation leads to insufficient verification of data authenticity. This vulnerability is handled as CVE-2025-21832. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 6.1.128/6.6.75/6.12.12/6.13.1 and classified as problematic. Affected by this vulnerability is an unknown functionality. The manipulation leads to an unknown weakness. This vulnerability is known as CVE-2025-21830. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as problematic, was found in Linux Kernel up to 6.12.13/6.13.2. Affected is the function npcm_video_ece_init. The manipulation leads to unchecked return value. This vulnerability is traded as CVE-2024-58082. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, has been found in Linux Kernel up to 6.1.128/6.6.77/6.12.13/6.13.2. This issue affects the function parent_map. The manipulation leads to null pointer dereference. The identification of this vulnerability is CVE-2024-58080. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical was found in Linux Kernel up to 6.1.128/6.6.77/6.12.13/6.13.2. This vulnerability affects the function parent_map of the component gcc-sm6350. The manipulation leads to null pointer dereference. This vulnerability was named CVE-2024-58076. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability classified as critical has been found in Linux Kernel up to 6.12.13/6.13.2/6.14-rc1. This affects an unknown part of the component seccomp. The manipulation leads to denial of service. This vulnerability is uniquely identified as CVE-2025-21834. Access to the local network is required for this attack. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.128/6.6.78/6.12.15/6.13.3. It has been rated as problematic. Affected by this issue is some unknown functionality of the component v3d. The manipulation leads to Privilege Escalation. This vulnerability is handled as CVE-2024-58086. The attack needs to be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.128/6.6.77/6.12.13/6.13.2. It has been declared as problematic. Affected by this vulnerability is the function tomoyo_write_control. The manipulation leads to allocation of resources. This vulnerability is known as CVE-2024-58085. The attack needs to be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.12.13/6.13.2. It has been classified as critical. Affected is the function qcom_scm_get_tzmem_pool. The manipulation leads to improper initialization. This vulnerability is traded as CVE-2024-58084. The attack can only be initiated within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability was found in Linux Kernel up to 6.1.128/6.6.75/6.12.12/6.13.1 and classified as problematic. This issue affects the function __rxe_cleanup. The manipulation leads to allocation of resources. The identification of this vulnerability is CVE-2025-21829. The attack can only be done within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability has been found in Linux Kernel up to 6.1.128/6.6.77/6.12.13/6.13.2 and classified as critical. This vulnerability affects the function kvm_get_vcpu. The manipulation leads to use after free. This vulnerability was named CVE-2024-58083. The attack needs to be approached within the local network. There is no exploit available. It is recommended to upgrade the affected component.

A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.12.13/6.13.2. This affects the function pm_genpd_init. The manipulation leads to null pointer dereference. This vulnerability is uniquely identified as CVE-2024-58081. Access to the local network is required for this attack to succeed. There is no exploit available. It is recommended to upgrade the affected component.