Aggregator

CVE-2023-53591 | Linux Kernel up to 5.15.114/6.1.30/6.3.4 mlx5e deadlock (EUVD-2023-60017 / WID-SEC-2025-2194)

Vuldb Updates
2 weeks 6 days ago
A vulnerability was found in Linux Kernel up to 5.15.114/6.1.30/6.3.4 and classified as critical. The impacted element is an unknown function of the component mlx5e. The manipulation results in deadlock. This vulnerability is cataloged as CVE-2023-53591. The attack must originate from the local network. There is no exploit available. It is suggested to upgrade the affected component.
vuldb.com

CVE-2023-53592 | Linux Kernel up to 5.10.162/5.15.86/6.0.18/6.1.4 gpio of_irq_find_parent reference count (EUVD-2023-60016 / WID-SEC-2025-2194)

Vuldb Updates
2 weeks 6 days ago
A vulnerability was found in Linux Kernel up to 5.10.162/5.15.86/6.0.18/6.1.4. It has been rated as critical. Impacted is the function of_irq_find_parent of the component gpio. This manipulation causes improper update of reference count. This vulnerability is registered as CVE-2023-53592. The attack requires access to the local network. No exploit is available. Upgrading the affected component is advised.
vuldb.com

CVE-2023-53590 | Linux Kernel up to 6.2.4 sctp sctp_sched_prio_free_sid reference count (EUVD-2023-60018 / Nessus ID 302981)

Vuldb Updates
2 weeks 6 days ago
A vulnerability classified as critical was found in Linux Kernel up to 5.4.234/5.10.172/5.15.99/6.1.17/6.2.4. Affected by this issue is the function sctp_sched_prio_free_sid of the component sctp. Such manipulation leads to improper update of reference count. This vulnerability is uniquely identified as CVE-2023-53590. The attack can only be initiated within the local network. No exploit exists. Upgrading the affected component is advised.
vuldb.com

CVE-2023-53588 | Linux Kernel up to 6.1.54/6.5.4 wifi privilege escalation (EUVD-2023-60020 / WID-SEC-2025-2194)

Vuldb Updates
2 weeks 6 days ago
A vulnerability labeled as critical has been found in Linux Kernel up to 6.1.54/6.5.4. Impacted is an unknown function of the component wifi. Such manipulation leads to privilege escalation. This vulnerability is traded as CVE-2023-53588. Access to the local network is required for this attack to succeed. There is no exploit available. The affected component should be upgraded.
vuldb.com

CVE-2023-53589 | Linux Kernel up to 6.3.3 wifi n_channels uninitialized pointer (EUVD-2023-60019 / Nessus ID 276910)

Vuldb Updates
2 weeks 6 days ago
A vulnerability was found in Linux Kernel up to 5.4.243/5.10.180/5.15.112/6.1.29/6.3.3. It has been declared as critical. This issue affects the function n_channels of the component wifi. The manipulation results in uninitialized pointer. This vulnerability is cataloged as CVE-2023-53589. The attack must originate from the local network. There is no exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2023-53587 | Linux Kernel up to 6.3.1 irq_work_sync use after free (EUVD-2023-60021 / Nessus ID 278484)

Vuldb Updates
2 weeks 6 days ago
A vulnerability identified as critical has been detected in Linux Kernel up to 6.3.1. This issue affects the function irq_work_sync. This manipulation causes use after free. This vulnerability appears as CVE-2023-53587. The attacker needs to be present on the local network. There is no available exploit. You should upgrade the affected component.
vuldb.com

CVE-2023-53586 | Linux Kernel up to 6.3.1 scsi deserialization (EUVD-2023-60022 / Nessus ID 297598)

Vuldb Updates
2 weeks 6 days ago
A vulnerability classified as critical was found in Linux Kernel up to 5.10.179/5.15.110/6.1.27/6.2.14/6.3.1. This issue affects some unknown processing of the component scsi. Executing a manipulation can lead to deserialization. This vulnerability is handled as CVE-2023-53586. The attack can only be done within the local network. There is not any exploit available. Upgrading the affected component is advised.
vuldb.com

CVE-2023-53585 | Linux Kernel up to 6.5.2 bpf some_lookup_func reference count (EUVD-2023-60023 / Nessus ID 302981)

Vuldb Updates
2 weeks 6 days ago
A vulnerability, which was classified as critical, was found in Linux Kernel up to 5.10.194/5.15.131/6.1.52/6.4.15/6.5.2. The affected element is the function some_lookup_func of the component bpf. The manipulation results in improper update of reference count. This vulnerability was named CVE-2023-53585. The attack needs to be approached within the local network. There is no available exploit. You should upgrade the affected component.
vuldb.com

CVE-2023-53584 | Linux Kernel up to 6.1.17/6.2.4 ubifs ubifs_releasepage buffer overflow (EUVD-2023-60024 / WID-SEC-2025-2194)

Vuldb Updates
2 weeks 6 days ago
A vulnerability classified as critical has been found in Linux Kernel up to 6.1.17/6.2.4. Affected by this vulnerability is the function ubifs_releasepage of the component ubifs. This manipulation causes buffer overflow. This vulnerability is handled as CVE-2023-53584. The attack can only be done within the local network. There is not any exploit available. It is recommended to upgrade the affected component.
vuldb.com

CVE-2023-53583 | Linux Kernel up to 6.1.39/6.4.4 perf drivers/perf/riscv_pmu.c riscv_pmu_start privilege escalation (EUVD-2023-60025 / WID-SEC-2025-2194)

Vuldb Updates
2 weeks 6 days ago
A vulnerability, which was classified as critical, was found in Linux Kernel up to 6.1.39/6.4.4. Impacted is the function riscv_pmu_start of the file drivers/perf/riscv_pmu.c of the component perf. Executing a manipulation can lead to privilege escalation. This vulnerability is tracked as CVE-2023-53583. The attack is only possible within the local network. No exploit exists. You should upgrade the affected component.
vuldb.com

Notepad++ Vulnerability Allows Attackers to Crash Application, Leak Memory Data

Cyber Security News
2 weeks 6 days ago

A security vulnerability has been identified in Notepad++, one of the most widely used open-source text editors among developers and IT professionals. The vulnerability CVE-2026-3008, which could allow a remote attacker to crash the application or extract sensitive memory address information from affected systems. The vulnerability is a string injection flaw located within the FindInFiles […]

The post Notepad++ Vulnerability Allows Attackers to Crash Application, Leak Memory Data appeared first on Cyber Security News.

Guru Baran

CVE-2006-5937 | Grisoft AVG Anti-Virus up to 7.1.407 CAB Archive integer overflow (SA22811 / OSVDB-30372)

Vuldb Updates
2 weeks 6 days ago
A vulnerability has been found in Grisoft AVG Anti-Virus up to 7.1.407 and classified as critical. This issue affects some unknown processing of the component CAB Archive Handler. This manipulation causes integer overflow. This vulnerability is tracked as CVE-2006-5937. The attack is possible to be carried out remotely. No exploit exists. The affected component should be upgraded.
vuldb.com

CVE-2006-5937 | Grisoft AVG Anti-Virus up to 7.1.407 RAR Archive integer overflow (SA22811 / ADV-2006-4498)

Vuldb Updates
2 weeks 6 days ago
A vulnerability was found in Grisoft AVG Anti-Virus up to 7.1.407 and classified as critical. Impacted is an unknown function of the component RAR Archive Handler. Such manipulation leads to integer overflow. This vulnerability is listed as CVE-2006-5937. The attack may be performed from remote. There is no available exploit. It is suggested to upgrade the affected component.
vuldb.com

CVE-2006-5937 | Grisoft AVG Anti-Virus up to 7.1.407 CAB Archive integer overflow (SA22811 / ADV-2006-4498)

Vuldb Updates
2 weeks 6 days ago
A vulnerability was found in Grisoft AVG Anti-Virus up to 7.1.407. It has been classified as problematic. The affected element is an unknown function of the component CAB Archive Handler. Performing a manipulation results in integer overflow. This vulnerability is cataloged as CVE-2006-5937. It is possible to initiate the attack remotely. There is no exploit available. Upgrading the affected component is recommended.
vuldb.com

CVE-2006-5937 | Grisoft AVG Anti-Virus up to 7.1.407 DOC Document integer overflow (SA22811 / ADV-2006-4498)

Vuldb Updates
2 weeks 6 days ago
A vulnerability was found in Grisoft AVG Anti-Virus up to 7.1.407. It has been declared as problematic. The impacted element is an unknown function of the component DOC Document Handler. Executing a manipulation can lead to integer overflow. This vulnerability is registered as CVE-2006-5937. It is possible to launch the attack remotely. No exploit is available. It is recommended to upgrade the affected component.
vuldb.com

Managed ad